June 2011
Financial Fraud Analysis of Automated Clearing House - Boon to Doom
by Mayank Somani and Nikhil Sreekumar
In the beginning, fund transfer between banks was limited locally. To transfer funds internationally, one would have to bring foreign currency into the country and then convert it into local currency. Today, international fund transfer is just a few clicks away thanks to Payment Gateways and Internet Banking. Many of the banks provide Fund Transfer options from foreign countries like the US and the UK to India due to the Automated Clearing House (ACH).… more →
NERC CIP Standards for Bulk Electric System SCADA Networks
by Balaji V, CISSP, CSSA, PCI QSA & PCI ASV
We discussed the security in a SCADA network in previous articles. In this article, we are going to look at some of the compliance requirements for SCADA networks, specifically focusing on NERC CIP standards. This is one of the concerning factors for all utility companies running SCADA systems as they would have to potentially comply with multiple regulatory requirements, industry standards, guidelines, and best practices. But there is no clarity on exactly what standard needs to be followed.… more →
Secret Questions – A soft target
by Ashish Kumar
Security is not only about the product but also about the process and people. When we say ‘people’, it includes the employees of the service provider as well as the end users. Therefore, end users also need to take some responsibility and put in efforts to ensure application security. Traditionally, we have been writing articles for developers, CISOs, system and network administrators, security architects, etc. This time, however, we have written an article for the end user. People in the previously mentioned roles must be using one website or another for financial transactions, storage of personal data or transfer of sensitive information. So, in a way, this article is also meant for them.… more →