Articles by Aaron Weiss 

5 Tips to Protect Networks Against Shodan Searches

While Shodan isn't exactly "the scariest search engine on the Internet," it does present some security risks. Here is how to minimize them.

How to Minimize Enterprise File Sharing Risks

File sharing and sync (FSS) services like Dropbox can expose sensitive corporate data. Luckily, there are enterprise-grade FSS alternatives.

How to Protect PII

Personally identifiable information, or PII, is especially valuable to hackers. Here's how to make sure they don't get their hands on it.

Top Apps for Boosting Mobile Security

Carriers of both iOS and Android mobile devices can improve their mobile security with apps that offer help with password management, encryption and other security best practices.

How to Fight Malvertising Threat

Even security-conscious enterprises like Yahoo can be compromised by attacks in which ad servers are used to deliver malware. How can you fight this 'malvertising' threat?

How to Secure Digital Signatures

Hackers have found many ways to exploit digital certificates. What can you do to defend yourself against digital certificate risks?

Apple iOS7 Management vs. MDM

Though Apple has added MDM-like features to iOS7, many enterprises will find they still need third-party mobile device management solutions.

Lagging Updates Compound Java Risks

Most Windows-based devices are running Java 6. Oracle is no longer releasing patches for this version of the software, which makes machines running it vulnerable to security risks.

Workplace Surveillance Revisited

As revelations about the NSA's security program continue to come, it's a good time to discuss workplace surveillance and when and why it might be used.

Can Your Printer Put Your Whole Network at Risk?

It may not seem like a big deal if an attacker can hack into your printer. But attacks against embedded systems like printers can expose you to larger security risks.

Windows 8 Boosts Security with 5 New Features

Security experts have long held a dim opinion of the Microsoft Windows OS. But Windows 8's lineup of security features may help change their minds.

How to Defend Against Insider Threats

The Edward Snowden affair has made enterprises all too aware of insider threats to data. From policies to software, organizations can take action to mitigate such threats.

Android Malware: Separating Reality from Hype

Reports of Android malware are rampant. Should enterprises be worried?

How to Find and Track Mobile Devices

Mobile devices are great for productivity. For security, not so much. Enterprises can minimize security concerns by using location features and handy apps.

How to Protect Macs in the Enterprise

Mac OS X has developed a reputation for security – which means many people ignore measures they should take to secure Macs in the enterprise.

What Is Lurking in Log Files

A U.S. software programmer made headlines when he outsourced his own job to China. He probably never would have gotten away with it if his employer had been paying attention to its log files.

Cloud Security Standards: What You Should Know

A confusing collection of cloud security standards can make it tough to evaluate cloud provider security.

5 BYOD Risks and How to Manage Them

Mobile device management can help enterprises deal with BYOD. But there are other ways of minimizing BYOD risks as well.

Anatomy of a Hack: A Case Study

Avoiding hacks is perhaps the most essential responsibility for security organizations, which can learn some valuable lessons from this analysis of a real-life hack.

3 Tips for Securing Email Messages (and Avoiding International Scandal)

Former CIA Director General David Petraeus and paramour Paula Broadwell could have made good use of three strategies for keeping private email exchanges private.

Prevent Web Attacks Using Input Sanitization

What do three of the five most common website attacks have in common? Yes, a lack of input sanitization. Find out why it's important and what to do about it.

How to Prevent Password Encryption Exploits

Hackers love to target users' website passwords. Companies can thwart them by using multiple methods designed to make hacking as costly and time consuming as possible.

How to Prevent Remote File Inclusion (RFI) Attacks

RFI inclusion is a simple website attack that nonetheless can make sites vulnerable to data loss or other malice. Using careful code logic will thwart RFI attacks.

How to Prevent Cross-Site Scripting (XSS) Attacks

Input sanitization is key to defending against XSS attacks. Is your company's website secured?

How to Prevent SQL Injection Attacks

Your company's website does not have to be the next victim of a SQL injection breach. Here's how to prevent SQL injection attacks.