Social Engineering: Errors in Human Mind?

Author: Jens-Michael Marohn Social Engineering is a method to manipulate people into doing something or divulge confidential information. It could be seen as the hacking of the human mind. Compared to for example software, the human mind has far more vulnerabilities and it is significantly simpler to find and exploit these vulnerabilities since it does not require any special expertise like code or computer language. To become aware and protect ourselves against it, we need to look at the psychology and methods used by Social…

Is your Application Development Secure?

As companies more and more rely on more specific business applications in today’s fast paced business environment, the software development facilities serving the company have become a strategic partner. A partner that has become overwhelmingly occupied with projects so detailed and complex that it was just necessary to split up the project phases that developers can concentrate on their core duties… the code itself. So far so good, you have it all; your Project Management Office to coordinate the efforts and assign resources, Business Analysts…

Security As A Service: Do You Get the Service You Expected? (Part 2/2)

Following the first article about why organizations should outsource security services, in this post I would like to address some further considerations. Adding external IT service providers to your company’s IT service portfolio requires a lot more considerations and arrangements.  It is not the intension of this article to be comprehensive in this regards, because many aspects are outside the information security scope.   Therefore the below covers just a few more but important action items when searching for a new security service provider.

When the Cryptolocker Strikes – Reasons for Success of Ransomware

It was at a public sector customer’s site when our shared project mail account received a quite legitimate-looking email with an invoice in a .docm document and a request to verify its contents. The sender seemed to be a lady employed at the customer’s organization. But at second look, something was wrong with it. She was not employed here nor has she ever been. I showed it around the project team and we quickly got very skeptical, deleting it. According to the information security staff…

Population Health Management: Integrating eHealth-Technologies, Health Management and Health Economy

Many eHealth initiatives are pretty much known in the German healthcare system as well as in further European countries. The different scopes range from video-consultation for seriously ill COPD patients, tele-radiology to the electronic health card or certain regional health-supply systems (e.g. “UGOM” in Bavaria, Germany) – some of them already proven in daily practice.

Copyright 2016 21st CENTURY IT · RSS Feed · Anmelden