Steve Lamb's Blog : Social Engineering

Social Engineering (RSS)

I'm looking forward to debating LINUX and OpenSource Security with the community at LUGRadio this weekend

If you're into Open Source and or LINUX and plan to be in the UK this weekend perhaps you'd enjoy LURadio Live 2006. There's sure to be plenty of lively debate and if last year's event is anything to go by there are likely to be in excess of six hundred Read More

posted Monday, July 17, 2006 10:25 PM by Steve Lamb | 4 Comments
Filed Under: Events, Security Systems, Information, Information Security, Integration / LINUX, Social Engineering

If only all Security messages could be this clear ¦ What will it take to get users to lock their desktops?

Note: I took this picture myself - it's not a fake. Clearly we don't want to use scare tactics for Information Security but my ongoing frustration with users who fail to bother locking their PC desktop sessions when leaving their machines unattended Read More

posted Friday, July 07, 2006 6:13 AM by Steve Lamb | 12 Comments
Filed Under: How to Articles, Security Systems, Information, Information Security, Social Engineering

It may be a Dark Rainy Monday morning but I feel so Lucky - I've won a holiday and a fortune!

I've been browsing through my junk email - I'm not quite sure why I'm bothering to do so though sometimes I find a couple of entertaining messages. I particularly like the one that starts "Dear Member, you've been selected for a free holiday...", which Read More

posted Monday, June 26, 2006 7:59 AM by Steve Lamb | 3 Comments
Filed Under: Security Systems, Information, Information Security, Social Engineering

At last we're producing security messages that real people (the general public) can make sense of!

At last - an interface for real people - i.e. those that aren't technical security experts. The following dialog message is part of Windows Vista The built-in Windows Vista personal firewall settings are automatically configured according to Read More

posted Wednesday, June 21, 2006 11:11 AM by Steve Lamb | 4 Comments
Filed Under: How to Articles, Security Systems, Information, Information Security, Windows Vista, Social Engineering

Announcing Internet Explorer 7+ for Windows Vista

The IE Team blog have announced that Internet Explorer running on Windows Vista will be known as Internet Explorer 7+ (IE 7+) to distinguish it from IE 7 on Windows XP. This makes sense to me as the prime additional feature of Internet Explorer on Read More

posted Tuesday, June 13, 2006 10:36 PM by Steve Lamb | 0 Comments
Filed Under: Security Systems, Information, Information Security, Windows Vista, Social Engineering

Why do we treat Trust as a Binary property?

In security circles we tend to view Trust as a Binary property - either we trust someone or we don't. Our application of security controls tends to mirror this. Surely we should reflect that there are degrees of trust. I trust a very small number of intimate Read More

posted Wednesday, May 10, 2006 7:40 PM by Steve Lamb | 4 Comments
Filed Under: Information, Information Security, Social Engineering

The InfoSec slides ARE NOW available - broken links are now fixed

Browse here to access the slides yourself. This follows yesterday's post which indicated that the links were broken - thanks to Craig et al who verified the problem. Read More

posted Friday, May 05, 2006 11:16 AM by Steve Lamb | 0 Comments
Filed Under: Events, Security Systems, Websites, Information, Information Security, Social Engineering

Information is NOT Power. Effective Security enables Powerful decisions

Information is NOT Power. Timely access to accurate information can give the holder the ability to make powerful decisions. Effective Information Technology can enable the required flow of information. Inappropriate Information Security Policues, Processes, Read More

posted Saturday, April 29, 2006 2:59 PM by Steve Lamb | 1 Comments
Filed Under: Security Systems, Discussions, Information, Information Security, Social Engineering

Internet Explorer 7 Beta 2 is now available - download IE7 here

Click here to download Internet Explorer 7 Beta 2. IE 7 is nearing release bringing with it a wealth of security improvements including significant re-engineering and new features including the anti-phishing filter. Much will no doubt be Read More

posted Tuesday, April 25, 2006 6:12 AM by Steve Lamb | 4 Comments
Filed Under: Security Systems, Beta Products, Information, Information Security, Social Engineering

Will end users turn off Windows Vista's User Account Control feature?

This is the final part of a three part response to a comment made by Matt in his comment regarding the least privilege model in Windows Vista. Part 1 was: Let's review how privilege is used in Windows NT, XP, 2000 and 2003: Part 2 was: Read More

posted Friday, April 21, 2006 10:21 AM by Steve Lamb | 3 Comments
Filed Under: How to Articles, Security Systems, Information, Information Security, Windows Vista, Social Engineering

Secure I.T. or lose IT - an interesting securty blog

Browse here to read a new interesting security blog written by Paul Vincent - he's titled it "Secure I.T or lose IT" which I particularly like.Paul blogs about "Microsoft security and how we can stop the bad guys from stealing our stuff" - it's well Read More

posted Monday, March 27, 2006 5:33 PM by Steve Lamb | 0 Comments
Filed Under: Blogs, How to Articles, Security Systems, Information, Information Security, Social Engineering

What did Bill Gates share as his vision of security at the RSA 2006 conference?

You may have seen the short video clips of Bill Gates' keynote speech at RSA 2006. If you're anything like me you'll want to find out exactly what Bill had to say for the entire speech. The transcripts of most speeches made by Microsoft executives Read More

posted Wednesday, February 15, 2006 5:31 PM by Steve Lamb | 0 Comments
Filed Under: Events, Security Systems, Information, Information Security, Interviews, Social Engineering

How to solve the CreateFile() error encountered when applying SCW policy via the command line (scwcmd configure)

Security Configuration Wizard has a really handy command line as I'll demonstrate in an upcoming BlogCast. To apply an SCW policy you can issue the "scwcmd configure" command. Unlike the other scwcmd commands "configure" does not default to applying Read More

posted Tuesday, January 31, 2006 4:37 PM by Steve Lamb | 0 Comments
Filed Under: Blogs, How to Articles, Security Systems, Information, Information Security, Social Engineering

Do you ever receive telephone calls from your Bank asking for your PIN?

I've heard of this happening from time to time but I've never experienced it myself until just now... I received a telephone call from a Bank with whom I have an account - they asked me to tell them two digits from my security code so that they could Read More

posted Thursday, January 19, 2006 10:25 AM by Steve Lamb | 4 Comments
Filed Under: How to Articles, Security Systems, Information Security, Social Engineering

Here are some great free webcasts covering security and many other topics including Threat Modelling

There's a wealth of webcasts available from TechEd Orlando - I know it's a while since the event but the shear breadth of content makes this a handy source of knowledge. Many of the topics remain highly relavent including the following: Michael Howard's Read More

posted Tuesday, November 29, 2005 11:45 AM by Steve Lamb | 0 Comments
Filed Under: Events, How to Articles, Training, Security Systems, Webcasts, Information, Information Security, Social Engineering

Steve Lamb's Blog

Search

Archives

News

Post Categories

Disclaimer

Interesting Security Blogs

MSFT Evangelists

Other Blogs

Misc