Symantec buys PGP and GuardianEdge

I’ve been waiting for Symantec to buy GuardianEdge ever since they started selling a rebranded GuardianEdge encryption product. It seems every other endpoint security company bought a dancing partner over the past year or two and Symantec was merely renting. When Symantec bought MessageLabs, I was very concerned. I like MessageLabs and was afraid of …

Continue reading ‘Symantec buys PGP and GuardianEdge’ »

Staging Virus Definition Updates

In the wake of McAfee’s false positive that rendered Windows XP computers unbootable there has been a lot of talk. What I wanted to talk about today was the staging of virus definition updates. I saw a lot of comments that companies took the McAfee update and deployed it company-wide without any testing. I dont …

Continue reading ‘Staging Virus Definition Updates’ »

Protecting Sensitive Data in Email

State laws, company/client policy and common sense mandate the encryption of some forms of data. Whether its company secrets, PII (personally identifying information that isn’t already considered public), or ePHI (Electronic Protected Health Information) it is required that users encrypt this data when sent outside of the company, and it is on the IT Department …

Continue reading ‘Protecting Sensitive Data in Email’ »

Telecommuting Security

After the February snow storms in the DC area there was a plethora of articles advocating the expansion of telecommuting in the Federal Government. The contractors that support the government didn’t close doors. They continued to work because many of their employees already work remotely in structured and unstructured telecommuting. Telecommuting brings new security risks. …

Continue reading ‘Telecommuting Security’ »

Messege Encoding and Blackberry

Last week a user reported trouble reading a message on his blackberry. He would get an error “This S\MIME message was formatted using an encoding that is not supported on handheld.” He could still read the message correctly in Outlook 2007 and in Outlook Web Access. It turned out the commonality to the problem was …

Continue reading ‘Messege Encoding and Blackberry’ »

Zscaler protects against IE Zero Day

On Tuesday, as seems to be the custom, Microsoft released patches and announced a new zero day in Internet Explorer. MSKB 981374 is a remote code execution in IE6 and IE7. Who know that being on IE5 could ever be a good thing. The KB says Microsoft released details to venders in their Microsoft Active …

Continue reading ‘Zscaler protects against IE Zero Day’ »

Stop Emailing Social Security Numbers

Recently we implemented a product to do content control on email. One of the main uses I have is looking for Social Security Numbers (SSN) in outgoing email. I did not like what I found. I expected to just find the occasional person emailing their SSN to a spouse for benefits enrollment. I’ve talked with …

Continue reading ‘Stop Emailing Social Security Numbers’ »