Normally there is a feeling that “Our sites/ applications are safe”:Because
Myth 1: We have firewalls in place.
Myth 2: We encrypt our data.
Myth 3: We have a privacy policy.
Myth 4: The IDS (Intrusion Detection System) protects my web server and database.
Myth 5: Our application meant for internal user.
Monday, February 28, 2011
Internal Threats
Why application owner/ business takes internal threat lightly
The one threat is externally,where applications are open to the public and accessible to all at least home page and search options if not all the modules are accessible.
If you are thinking threats are only externally then careful, threats are internally as well. Various published reports have been proven that security risk to the application will be more internally than externally. How means, take the example which is our internal application so internal employee will be more aware of this application than external.
Insider driven fraud costs US enterprises over $600 billion annually.
The one threat is externally,where applications are open to the public and accessible to all at least home page and search options if not all the modules are accessible.
If you are thinking threats are only externally then careful, threats are internally as well. Various published reports have been proven that security risk to the application will be more internally than externally. How means, take the example which is our internal application so internal employee will be more aware of this application than external.
Insider driven fraud costs US enterprises over $600 billion annually.
Thursday, February 24, 2011
MY ARTICLE PUBLISHED IN "SECURITY ACTS MAY 2010 ISSUE 3"
You can download it from
http://www.securityacts.com/securityacts03.pdf
http://www.securityacts.com/securityacts03.pdf
Subscribe to:
Posts (Atom)