But more and more organisations are actually welcoming attempts to test their security, in the hope that vulnerabilities will be reported to them responsibly before a malicious hacker exploits a weakness to inflict damage.

Read more in my article on the Tripwire State of Security blog.

It makes you want to weep, doesn’t it? What is the purpose of providing your staff with authentication tokens if they see no problem in sharing token codes with each other?

Read more in my article on the Hot for Security blog.

If the U.S. Department of Homeland Security can be impacted by hackers, it can happen to any business. Protect data now, and follow security best practices.

Learn more in my article on the Intralinks blog.

Can you really justify having Java installed on your main web browser any more? Even if you have installed the latest security patch?

It’s time to rip Java out of your browser for better security… unless you have a really good reason not to.