Continuing our Ad Spoof series, the team thought it would be good to highlight what many of our clients consider to be the initial way we stood out to them. They tell us that before they met our team, they constantly struggled to obtain Security and Risk Assessments that were useful to BOTH IT and [...]
Rook Insight* (Our Blog)
We believe that the open exchange of information is critical to solving the IT Risk Management challenges facing business today. We promise to provide timely intelligence and actionable insight to current clients, prospects, competitors and the public. We simply ask for you to remember us when it comes time to send out your RFPs!
Whiteboard Ad – Security Assessments
Wednesday, February 17th, 2010Urgent: New ACH and Wire Payment Trojan Facilities 100K+ Transfers From Small to Mid-Sized Banks
Wednesday, February 10th, 2010This alert is intended for small to mid-sized businesses and banks who may realize $100K plus losses associated with unauthorized external wire transfers originating within the bank from known workstations with valid user credentials. Call us at 888.712.9531 for immediate assistance.
In the past few months, we have noticed an increase in targeted attacks towards our [...]
Whiteboard Ad – IP Football
Thursday, January 28th, 2010Entering into 2010, our team decided to step up our marketing efforts yet again, and instead of the traditional letters, post cards, and direct emails, we wanted to so something that would inject a bit of fun into a somewhat less than fun subject matter. The result: the beginnings of our 2010 Ad Spoof campaign. [...]
JUNOS Kernel Crash Exploit Released
Friday, January 8th, 2010Urgency is now increased as an exploit has been released regarding a report has been received from Juniper under bulletin PSN-2010-01-623 that a crafted malformed TCP field option in the TCP header of a packet will cause the JUNOS kernel to core (crash). In other words the kernel on the network device (gateway router) will [...]
3 AES-256 USB Thumb Drives Vulnerable
Thursday, January 7th, 2010Did your management team opt for a less expensive alternative to IronKeys? If so, its unfortunately time to re-visit that decision. Kingston, SanDisk, and Verbatim all have a vulnerability that allows unauthorized access to password protected, FIPS certified, AES 256-bit encrypted data on their USB thumb drives.
“Cracking the drives is therefore quite simple. The SySS [...]
2010 IT Risk Outlook Coming Soon
Monday, January 4th, 2010Before the end of Q1 2010, Rook will release a 2010 preview that will highlight proprietary survey data on the top challenges faced in our industry as we launch the new year as well as a behind the scenes look at the movers and shakers to watch as we enter into what will likely become [...]
EMC & Archer Pave Way for 2010 Consolidation
Monday, January 4th, 2010Since 2001, EMC has been sitting on cash and slowly but surely playing the ultimate game of chess – working towards a checkmate in the IT solutions space. After acquiring Documentum, VMWare, RSA, Iomega, Datadomain, and now Archer, EMC is positioning to accomplish what Symantec has all but failed to do… leverage complimentary emerging leaders [...]
ISC2 SecureIndianapolis
Thursday, October 8th, 2009Thank you, Indianapolis, for a great event! Rook practice lead J.J. Thompson sat on a panel to discuss compliance strategy & managing P&L for security teams along with other local thought leaders. The panel, moderated by ISC2 featured speaker Brandon Dunlap of Brightfly, discussed industry trends such as:
+ an increase in demand for security professionals [...]
Cornerstones of Trust
Thursday, October 8th, 2009Thank you for joining us for the Cornerstones of Trust conference as Rook team members and top industry thought leaders such as Niall Browne, J.J. Thompson, Brandon Dunlap, Jim Anderson, Irfan Saif, Kim Getgen, Gene Schultz and others presented on the latest and greats in IT Risk Management, Compliance, and Security.
Are the 26 Red Flags a Rx for Compliance?
Monday, September 14th, 2009Some have argued against overly focusing on the 26 Red Flags, citing the fact that the Red Flags are not prescriptive nor are they a checklist. I have to agree with this point. Following the 26 Red Flags myopically does not give “special protection” from regulatory enforcement. Covered entities must conduct a self [...]
Receive Insight* Updates
What Do You Think?