Welkom!
Gorilla Security is een dienstverlenende onderneming die bedrijven helpt om hun gevoelige bedrijfsgegevens te beschermen.
Onze aandacht gaat uit naar drie belangrijke aspecten bij het uitbouwen van een beveiligingsmodel:
- Mensen zijn de belangrijkste factor in dit proces. Zonder hen is er niets.
- Processen en procedures, dit houdt in alle informatie beveiligingsbeleidslijnen, instructies en algemeen aanvaarde werkmethoden. Terwijl dit zeer belangrijk is, is het echter niet compleet zonder de beide andere elementen.
- Tools en Systemen, deze zijn naar onze mening de ondersteuning van de processen en procedures en vergemakkelijken de uitvoering van de uitgezette beleidslijnen.
We zijn ervan overtuigd dat wanneer deze factoren allemaal samenwerken, dit voor de onderneming een kritische succesfactor is. Onze dienstverlening geeft weer hoe we dit aanpakken.
Contacteer ons en we zullen u met genoegen vrijblijvend onze visie toelichten.
Security News
Adam O'Donnell: The Scale of Security
The Scale of Security
Read more on SecurityFocus News...
|
Brief: Attack on IE 0-day refined by researchers
Attack on IE 0-day refined by researchers
Read more on SecurityFocus News...
|
White House Seeks to Add Internet Activity to List of Information That Can be Demanded With National Security Letters (July 29, 2010)
The White House is seeking to add language to a list of items the FBI can demand without a judge's approval.......
Read more on SANS NewsBites...
|
Google Android Apps Reportedly Stealing Data (July 30, 2010)
Dozens of wallpaper apps being sold for Google Android devices have been found to be gathering personal information and sending it back to the apps' developers.......
Read more on SANS NewsBites...
|
Bugs & Fixes: What's the risk with Citi Mobile security flaw
If you use Citigroup's Citi Mobile iPhone app, make sure you update to the new version released this week. The update fixes a security flaw that, according to a Citi statement, could save data "including account numbers, bill payments and security access codes--in a hidden file on users' iPhones."
Read more on Network World on Security...
|
Free Android apps scrape personal data, send it to China
As many as four million users of Android phones have downloaded wallpaper apps that swipe personal data from the phone and transmit it to a Chinese-owned server, a mobile security firm said today.
Read more on Network World on Security...
|
Apple Releases iTunes 9.2.1
Apple has released iTunes 9.2.1 to address a vulnerability. This vulnerability is due to improper handling of itpc URLs. itpc is the protocol used by Apple iTunes for handling podcasts. By convincing a user to access a specially crafted itpc URL, an attacker may be able to execute arbitrary code or cause a denial-of-service condition.US-CERT encourages users and administrators to review Apple article HT4263 and update to iTunes 9.2.1 to help mitigate the risks associated with this vulnerability.
Read more on US-CERT Current Activity...
|
Oracle Releases Critical Patch Update for July 2010
Oracle has released its Critical Patch Update for July 2010 to address 59 vulnerabilities across multiple products. This update contains the following security fixes: - 6 for Oracle Database Server
- 2 for TimesTen In-Memory Database
- 5 for Oracle Secure Backup
- 7 for Oracle Fusion Middleware
- 1 for Oracle Enterprise Manager
- 7 for Oracle E-Business Suite
- 2 for Oracle Supply Chain Products Suite
- 8 for Oracle PeopleSoft and JDEdwards Suite
- 21 for Oracle Sun Products Suite
US-CERT encourages users and administrators to review the July 2010 Critical Patch Update and apply any necessary updates to help mitigate the risks.
Read more on US-CERT Current Activity...
|