Firewall software is another way to protect computer. This article will compare some of the top firewalls.

What is a Firewall?
A firewall is an information technology (IT) security device which is configured to permit, deny or proxy data connections set and configured by the organization’s security policy. Firewalls can either be hardware and/or software based.

A firewall’s basic task is to control traffic between computer networks with different zones of trust. Typical examples are the Internet which is a zone with no trust and an internal network which is (and should be) a zone with high trust. The ultimate goal is to provide controlled interfaces between zones of differing trust levels through the enforcement of a security policy and connectivity model based on the least privilege principle and separation of duties. Read the rest of this entry »

First steps toward a secure network environment. All in one PDF file! Created by National Security Agency.
Contents include:

• Security policy
• operating systems and applications: versions and updates
• Know your network
• TCP/UDP servers and services on the network
• Passwords
• do not run code from non-trusted sources
• read e-mail as plain text
• other malicious code countermeasures
• follow the concept of least privilege
• application auditing
• network printers
• simple network management protocol (SNMP)
• network security testing

Also some in-depth guides:

• Perimeter routers and firewalls
• windows 2000 and above operating systems
• microsoft web server
• unix systems and networks
• unix web servers
• intrusion detection systems (IDS)

Download the pdf here: The 60 minute network security guide

In information security , computer virus is a manmade program or piece of code that is loaded onto your computer without your knowledge and runs against your wishes. From behavior computer virus in a way is a similar biological virus which pervasions by inserting itself into living cells. Cell by cell and all organisms (computer) is ridden virus cells.
Without computer viruses there are separated two other types of malicious computer programs - viruses.

Trojan Horses

As already from this virus type name we can imagine, Trojan horses are programs that pretend to be legitimate software, but actually carry out hidden, harmful functions. Trojans can’t replicate themselves that mean, they can’t expand so fast as other virus types. But often they work together with viruses.

Worms

Worms are similar to viruses but do not need a carrier program or document. Worms simply create exact copies..

Read full article at infosecuritylab

The U.S. Government’s National Information Assurance Glossary defines Information Security as: Protection of information systems against unauthorized access to or modification of information, whether in storage, processing or transit, and against the denial of service to authorized users or the provision of service to unauthorized users, including those measures necessary to detect, document, and counter such threats.
But in this article will be same information about one of the unauthorized access types - internet attacks! That’s makes more easily understand how these attacks work and click why so important get there own information security Read the rest of this entry »

Sour time is coming. Spy programs are stealing information more easily. The reason is weak algorithms, which provide systems safety, for example data encryption and hashing. Information security awareness training is important: spend more time to verify page security level, when using internet for transactions.
If the page is secured, it does not mean that it is safe. Almost in all Read the rest of this entry »

Anti-virus software takes much importance in information security. After posting article on Anti-virus software comparison I decided to test Active Virus Shield by AOL which is for free. Since the software engine is the same as Kaspersky anti-virus software, there is a strong trust brought in. I tested it on my laptop which had some mysterious virus (explorer.exe generating files like “g51697234.dll”, “g897543123.dll”) that Dr.Web didn`t detect at all, but AntiVir Personal edition detected though couldn`t cure. Active Virus Shield cleaned my PC from the virus  Read the rest of this entry »

Article about security awareness:

Are you aware of the need for security?

Your awareness of the need for security, is the best place to begin a discussion on physical property security. What is security awareness? Our definition is multi-faceted, and includes the ability to identify known and unknown threats, being aware of the technologies, products and services that can defuse those threats, knowing how to operate the products and systems you have, and most importantly the awareness that these systems must be used, and must be used all of the time. This security awareness may be more important to the security of your home and business than any of the security hardware or systems you Read the rest of this entry »

Virus.gr tested quite a few different software companies to see how they would stack up against each other. How did the 147,000+ virus test pan out? Here are the results:

1. Kaspersky version 6.0.0.303 - 99.62%
2. Active Virus Shield by AOL version 6.0.0.299 - 99.62%
3. F-Secure 2006 version 6.12.90 - 96.86%
4. BitDefender Professional version 9 - 96.63%
5. CyberScrub version 1.0 - 95.98%
Read the rest of this entry »

Some nice posters can be found infosecuritylab.com. Put them in your office or school!

See them here: information security awareness posters

Feature-rich email is not only a powerful way of communication, but also a major security threat. The more features an email service provides the security holes are made for hackers. In addition to the usual email security headache - executable attachments - HTML messages introduce new problems. HTML is not a plain text, it is rendered and it may contain executable code. You get dozens emails daily. Every time you read an HTML email message - something could be executed. It is just like you would execute dozens of unknown programs Read the rest of this entry »

Security awareness is knowledge and attitude members of an organization possess regarding protection of the physical and information assets of that organization. Many organizations require formal security awareness training for all employees when they take up sensitive assignments and, in some cases, periodically thereafter.Topics covered in security awareness training include:

• The nature of sensitive material and physical assets they may come in contact with, such as trade secrets, privacy concerns and government classified information

• Employee and contractor responsibilities in Read the rest of this entry »