SAP has released the monthly critical patch update for April 2015. This patch update closes a lot of vulnerabilities in SAP products. Most of them are potential information disclosure vulnerabilities.

The most critical issues found by other researcher

SAP Mobile Platform Security: Introduction

Mobile devices are actively integrated into business processes. Companies have more and more business applications and mobile devices. Employees increasingly bring their own equipment to the workplace (BYOD

Information%20Security%20Communication.docx

Dear Colleagues,

“ Balance Checking Software App “ is an software application is doing rounds on WhatsApp purportedly to facilitate checking of balance in customers' bank accounts. The Reserve Bank of India (RBI) on Saturday (11^th April 2015)warned th

Setting up an Security Incident Response Team (SIRT) is a challenging job.

Things To Keep In Mind:

1.Organization's IT assets and required security measures

2.Log of earlier attacks gives an idea on vulnerable assets and attacks areas

3.Organization'

Each application has several security settings that do not fit into any of the critical issues groups mentioned in our series of articles.Among such settings there are both standard settings (such as password length or the number of attempts given to

The developers of the free & hugely popular encryption program dropped a bombshell at the end of May when they abruptly abandoned the project. The top of their website was emblazoned with the following message in red: "WARNING: Using our Software is

Guideline for Secure Configuring SAP NetWeaver ABAP

What is your Information security posture? Is there a way to put a measurable score for information security? Can I set a SMART Infosec KPI? If these questions ever crossed your mind, then you are probably at the right place.

I try to address these qu

Watch Video: (Webinar) "Advanced Threats In The Enterprise"

( Read more:  Checklist to Evaluate a DLP Provider )

What will you Learn:  

• How to gain endpoint visibility and detection capabilities to expose malware and respond with precision to stop attac

Today we are going on with our series of articles where we describe the 33 steps to security. The subject is of great significance not only to a small group of SAP infosec specialists, but to all those people who work with ERP systems as recent years

The term ‘Cyber Domain’ has been used widely by various experts, sometimes interchangeably with ‘Cyber Space’, to imply – “the global domain within the information environment that encompasses the interdependent networks of information technology inf

Watch Video: (Webinar) Intelligence Driven Security - SIEM & Beyond

( Read more:  Checklist to Evaluate a DLP Provider )

What will you Learn:  

• How to gain Complete Visibility, Rapid investigations, SIEM and beyond
• How added packet collection and

We are happy to announce the results of the annual survey of Security Implementation Status and Industry Benchmarking, in which 410 companies have participated in the enterprise segment. This is a preview of the key findings on the implementation of

We are thrilled to have received so many wonderful ideas and suggestions during the breakfast series specifically focusing on CPI findings. Here are the quick highlights!

What was the objective of the Community Breakfast?

• Preview of CPI Findings: T

Watch Video: (Webinar) RIOT( Raiding Internet Of Things)

(Read more:  Annual Survey on Cloud Adoption Status Across Industry Verticals)

Quick Glimpse

Fairly technical content with demos where Jacob Holcomb speaks on Internet Of Things, Threat Mode

Based on Type of Attack: 

1. Malware : Malicious code has been successfully  logged into business infrastructure
   
   
2. Unauthorized access (user/admin/other privilege escalations) : Any privilege escalations or access gained which should otherwise be denied

For Organization Chart & Module click here

Roles & Responsibilities of IR Team

IR Management-

• Management Staff
• Ownership of Incidents lies with IR Management & IR Core Team
• Presides over information shared with public or customers
• Tracks progress fo

6steps in Incident Response Process: 

1. Preparation
2. Identification
3. Containment
4. Eradication
5. Recovery
6. Lessons learned

Escalation - When an incident is not yet tackled, based on its priority, it is escalated to a higher level. This enables business to f

CISO Platform presents an exciting opportunity to listen to Hugo Teso, who recently “created global news by demonstrating how an aircraft can be compromised and remotely controlled by using an android phone"!

Thought this webinar is super exciting an