maravis.com - Exploring Information Security

You are here: Home » Archives for Compliance

Mar 2011
18

Minimizing the impact of the RSA SecurID breach

Attackers have breached the servers at RSA, the security company, and may have stolen information that could be used to compromise the company’s SecurID 2-factor authentication product line.
Continue reading "Minimizing the impact of the RSA SecurID breach" »
Mar 2011
11

The case for storing passwords in unreadable form

Web-hosting administration software maker InterWorx has been breached and hackers have stolen client credentials. What is worse is that they have used these credentials to get into their clients’ servers and modified them to distribute malware.
Continue reading "The case for storing passwords in unreadable form" »
Jan 2011
31

Clarification on using MD5 and its impact on PCI DSS compliance

I wrote previously on MD5 hashing algorithm and how it is discouraged by PCI DSS. The PCI SSC (Security Standards Council) has now come out with a clarification on the use of MD5 for hashing.
Continue reading "Clarification on using MD5 and its impact on PCI DSS compliance" »

Recent Articles

More articles..

Categories

General (41)
- events (4)
Security (83)
- Apps (3)
- Compliance (27)
- Databases (3)
- Privacy (47)
- Process (20)
- Products (16)

Page 2 of 9 «123 4 5 »...Last »

site stats