Security Compass’s Subu was on CNN Money last week talking about hackers and the banking sector. Here’s the link to the article and the video after the jump. Link: http://hub.am/17uGHEb

Note: At the end of this series, I’ll provide a free tool that you can use to make your own evaluations easier, so keep an eye out for it! With the variety of Computer Based Security Training (CBTs) out there, it can be tough to make a decision around what to consider when choosing the…

We’ve had Java and .NET secure coding CBTs for a number of years now.  If I remember correctly we were one of the first to have Application Security CBTs bundled with hands-on lab exercises (TrueLabs), which was amazing.  This year, I’m excited to say that we’ve brought our Tailored learning format into our .NET secure…

Late last year, I was in on a meeting where our Training team was gathering requirements for a Custom CBT to be built for a huge, recognizable client. This client had offices worldwide and our course would be viewed many teams so it was imperative that we got the details right.  After a productive meeting…

This year at the RSA Conference HP officially released its annual Cyber Risk Report. This report is one among many industry reports that individuals and companies who are concerned about security should pay attention to. By paying attention to these trends your company will be better able to secure your IT assets and more effectively allocate IT…

We love meeting up with security people within the local Toronto community, but there’s a big world out there!  So we’re going a bit more social this year. Follow us, link and share with us your interesting security stories and stay tuned for more exciting tools and resources for the community. Twitter Google+

We work on security assessments daily and see common trends on every engagement.  Recognizing these changes helps us keep on the edge of the security assessments and provides us the insight to give back to the community including our research in Mobile tools (ExploitMe Mobile) and NFC. I’m extremely pleased to say that this year,…

By Nish Bhalla and Nima Dezhkam There are many frameworks that industry has and regulations have tried to put together to help organizations follow and succeed in securing their environment. Health Information Trust Alliance (HITRUST) was born out of the belief that information security should be a core pillar of, rather than an obstacle to, the…

By Ehsan Foroughi and Nima Dezhkam In the past few months we have evidenced frequent news headlines on password breaches at major websites such as LinkedIn, Yahoo! Voices, DropBox, Gamigo, and Phandroid, an Android Forum. The list does not stop there. These incidents motivated us to perform some high-level analysis on the leaked data, review…

Author: +Oliver Ng I’m happy to announce a partnership with ISC2 to bring you our OWASP course complimentary  for CISSP members.  Access is limited to the next 30 days, so get in on it fast and collect your 2 CPEs for watching these videos. These videos also outline our great new training format for CBTs that…