Archive for the ‘Featured’ category


Premiere of Certified Ethical Hacker Version 7 in India

Pune, India –

Ethical hackers are in high demand due to increasing threats to IT infrastructure.

From March 14-18, over 50 participants, representing five different countries, along with over 15 multi-national corporations, 19 academic institutions, and five government agencies, witnessed the premiere of Certified Ethical Hacker Version 7 in India, at the International Convention Centre in Pune, hosted by the International Council of E-Commerce Consultants (EC-Council) and FLUXONIX, ES, Inc.

Inaugurated by Mr. Rajenda Dahale (Deputy Commissioner of Police, Cybercrime, and EOW) and Mr. Lalit Kathpalia (Director, SICSR), the event was attended by eminent personalities in the information security industry, who shared their experiences with the audience.

Mr. Anshul Abhang (Director, FLUXONIX ES, Inc), speaking to the audience, said, “The new version of CEH covers the latest vulnerabilities, exploits, and tools on platforms such as Windows 7 and Windows Server 2008. It also covers next generation tools for 19 different domains, including session hijacking, denial of service attacks, phishing, and web server hacking.”

CEH is an accepted standard for the United States Department of Defense, via DoD 8570.01-M, Change 2. Directive 8570 sets the baseline requirements for government employees performing information assurance (IA) functions within the Department of Defense workforce. CEH, including its latest version 7, cover this directive’s requirements for Computer Network Defense Service Providers (CND-SP) at the analyst, infrastructure support, incident responder, and auditor levels.

Referring to the event’s CEH v7 training, Mr. Abhang told participants, “We focus mainly on attack concepts, with hands-on labs, followed by attack countermeasures. This is the CEH philosophy, and with CEH v7 covering the fundamental aspects of the latest cyber security attacks and countermeasures, on the latest platforms, it’s a real treat for the global ethical hacking community.”

“You need to think like a hacker to be one [ethical hacker],” Mr. Abhang concluded.

FLUXONIX ES, Inc. is a global EC-Council award-winning company and EC-Council Accredited Training Center (ATC), two years in a row – 2009 (ATC Newcomer of the Year) and 2010 (ATC Circle of Excellence).

About EC-Council:

The International Council of E-Commerce Consultants (EC-Council) is a member-based organization that certifies individuals in cyber security and e-commerce. It is the owner and developer of 20 security certifications, including Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI) and Certified Security Analyst /Licensed Penetration Tester (ECSA/LPT). EC-Council has trained over 90,000 security professionals and certified more than 40,000 members. Its certification programs are offered by over 450 training centers across 84 countries. These certifications are recognized worldwide and have received endorsements from various government agencies including the U.S. Department of Defense via DoD 8570.01-M, the Montgomery GI Bill, National Security Agency (NSA) and the Committee on National Security Systems (CNSS). EC-Council also operates EC-Council University and the global series of Hacker Halted information security conferences. The global organization is headquartered in Albuquerque, New Mexico. More information about EC-Council is available at www.eccouncil.org.


EC-Council Represented at Korea’s Largest IT Security Conference

Seoul, South Korea, April 5, 2011

EC-Council participated in this year’s Codegate, the largest IT security conference and exhibition in Korea. Represented by their Korean distributor, Samyang Data Service, an IT outsourcing and security training company, EC-Council continued to reflect its longstanding commitment to the progression of information security awareness through up-to-date, intensive, real-world training.

Since 2008, Codegate has been held to raise awareness for the information security industry, and provide a platform for experts to exchange information and discuss the latest trends. It also features a hacking competition, where hundreds of ethical hacker teams will attack and defend, vying for the coveted title in the event’s International Hacking Protection Competition.

New this year was the debut of “Yut-nori,” a hacking protection game named after a traditional Korean board game, that gained interest from the event’s 2,000-plus attendees, including CISOs, CIOs, CTOs, and CEOs, along with independent researchers, consultants, and academic faculty and students.

“EC-Council has been invited to participate in Codegate since its inception in 2008, in support of its global public-private partnerships to advance IT security awareness and training,” said Jason Kang, EC-Council’s representative in South Korea.

EC-Council recently launched version 7 of its Certified Ethical Hacker program, which is approved by the U.S. Department of Defense, for DoD 8570.01-M, Change 2. It covers the auditor, infrastructure support, incident responder, and auditor levels of Computer Network Defense Service Providers (CND-SP) who perform information assurance (IA) functions within the DoD workforce.

“Codegate 2011 provided tremendous value to the attendees,” Kang said. “It featured a wealth of new, innovative ideas and solutions. EC-Council is already sharing solutions with attendees, such as how crucial it is to provide the right, advanced security training to stay abreast of the latest threats and be able to mitigate attacks as they evolve.”

About EC-Council:

The International Council of E-Commerce Consultants (EC-Council) is a member-based organization that certifies individuals in cyber security and e-commerce. It is the owner and developer of 20 security certifications, including Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI) and Certified Security Analyst /Licensed Penetration Tester (ECSA/LPT). EC-Council has trained over 90,000 security professionals and certified more than 40,000 members. Its certification programs are offered by over 450 training centers across 84 countries. These certifications are recognized worldwide and have received endorsements from various government agencies including the U.S. Department of Defense via DoD 8570.01-M, the Montgomery GI Bill, National Security Agency (NSA) and the Committee on National Security Systems (CNSS). EC-Council also operates EC-Council University and the global series of Hacker Halted information security conferences. The global organization is headquartered in Albuquerque, New Mexico. More information about EC-Council is available at www.eccouncil.org.


FOXBusiness: Cybersecurity Tips for Travelers

The summer travel season is almost here, and with it comes an increased risk of hacking.

With all of our smartphones, iPads, laptops, netbooks and Bluetooth-enabled devices, we’re more at risk of online fraud and identity theft than ever before. In fact, a 2011 report from Javelin Strategy & Research found that the average out-of-pocket expense for identity theft victims skyrocketed 63%, from $387 per incident in 2009 to $631 in 2010.

Business travelers often have the most to lose from attacks and airports are hotbeds for identity theft, from rogue Wi-Fi hotspots to new wirelessly-accessible e-passports.

For more information on this, please visit “http://www.foxbusiness.com/personal-finance/2011/05/26/cybersecurity-tips-travelers/“.


Bank Information Security Podcast: Why We Need Ethical Hacking

Ethical hacking” – is the term an oxymoron, or is it one of today’s necessities in the fight against cybercrime? Jay Bavisi, president and co-founder of the EC Council, feels strongly about why we need ethical hackers more today than ever before.

“Many people misunderstand what ethical hacking is,” says Bavisi, who co-founded the EC Council in the wake of the Sept. 11 terrorist attacks.

“I was bombarded by the U.S. media for coming up with such a stupid term as ‘ethical hacking,’” he recalls of the council’s early days. “They said it was an oxymoron, that ethical hacking doesn’t exist …”

In layman’s terms, Bavisi says, an ethical hacker is simply a bodyguard. “But instead of a human bodyguard, an ethical hacker is a computer bodyguard. Their job is to sit there and figure out: If a hacker were to attack a system, how would they do it, and they’re trying to figure out how to protect your systems – if your systems have been sufficiently protected.”

For more information on this, please visit “http://www.bankinfosecurity.com/podcasts.php?podcastID=1145


The Washington Times: Homemade cyberweapon worries federal officials

Two security researchers, working at home in their spare time, have created a cyberweapon similar to the sophisticated Stuxnet computer worm that was discovered last year to have disrupted computer systems running Iran’s nuclear program.

The private efforts by Dillon Beresford and Brian Meixell are raising concerns among U.S. government officials that hackers will launch copycat cyber-attacks that could cripple computer controls at industrial sites such as refineries, dams and power plants.

Officials at the Department of Homeland Security were so distressed by the researchers’ findings that they asked the two men to cancel a planned presentation at a computer security conference in Dallas last week called TakeDownCon.

For more information on this, please visit “http://www.washingtontimes.com/news/2011/may/24/homemade-cyberweapon-worries-feds/“.


Ethical hacking is only for the just

Jay Bavisi, president and co-founder of the EC-Council (The International Council of Electronic Commerce Consultants), speaks in this letter about the boundaries of ethical hacking, and urges the industry not to judge the ethical hacking community by the actions of one security professional:

In a recent ZDNet Australia article, “Qld cops denounce ‘ethical hacking‘”, the author, Stilgherrian, wrote the following:

“Police have spoken out strongly against so-called ‘ethical hacking’ in the wake of the demonstration of a Facebook privacy hack at the BSides Australia conference being held in conjunction with the AusCERT 2011 information security conference. The incident has already seen a journalist arrested and his iPad seized.”


Internet Kill Switch for Your Computer, Jay Bavisi, EC-Council


ECABO INTEGRATES EC-COUNCIL CERTIFICATIONS INTO ICT TRAINING PROGRAM

Amsterdam May 15th , 2011,:  Netherlands-based ECABO, a Centre of Expertise on Vocational Education, Training, and the Labour Market, has implemented EC-Council’s certifications into their ICT training program.  This integration of standard education with industry required certifications represents a breakthrough in education.

“You can’t take ICT training seriously if it doesn’t contain the security element“, says Hans Blankendaal, of ECABO.  “It’s crucial that we incorporate security certifications within a solid ICT curriculum as determined by the Dutch government.  There’s no doubt that businesses prefer educated students who have complemented their skills with industry standard certifications.  We’ve made a breakthrough in education, by incorporating EC-Council’s certifications into our ICT training, giving students an all-in-one solution.”

This collaboration better prepares students for the Dutch labour market, and ECABO continues to advise groups like the Dutch Regional Training Center (ROC), in order to determine the needs and wants of the market, and how to better align ROC’s students for them.

Added Vice President of EC-Council, Sean Lim, “ECABO’s move is strategic and visionary and will make important contributions in the Dutch market.  ECABO has begun a thrust of producing IT professionals with a keen sense of information security skills which is lacking not only in this market but across the global markets.  We look forward to working closely with ECABO to bring our latest content and technology to the Dutch market.”

With ECABO’s integration of EC-Council’s certifications, security can no longer be denied on the Dutch market.  EC-Council is a worldwide leader in cybersecurity training and certification, operating in over 80 countries and providing education through its network of over 450 training partners.  “We are working hard to make sure training institutes are aware of what is taking place on the Dutch market, in regards to security.  Despite their knowledge and awareness of the important of security, many institutes are just not integrating security into their training programs,” says Gerard Smak, EC-Council representative in the Netherlands. “We aim to change that, and this cooperative effort with ECABO definitely marks a change.”

ABOUT ECABO
ECABO is the ‘Centre of Expertise on Vocational Education, Training and Labour Market’ for the economic/administrative, ICT and security professions.  ECABO works for the entire range of vocational training. ECABO focuses attention on the levels VMBO (lower secondary vocational education), MBO (senior secondary vocational education) and HBO (higher vocational education), in order to ensure that students are able to achieve the best possible educational level without having to deal with unnecessary impediments in the course of their education.  ECABO’s objective is professional training that matches up optimally to the demands of the labour market. For this reason, ECABO has taken on the role of a bridge between trade and industry and vocational training. ECABO does this by means of a wide range of services; these include the development and maintenance of the national qualification profiles for MBO education, ensuring that there are sufficient good quality work placements available in industry, and supporting educational establishments when they are setting examinations, for example via a test paper database.

ABOUT EC-COUNCIL
The International Council of E-Commerce Consultants (EC-Council) is a member-based organization that certifies individuals in cybersecurity and e-commerce. It is the owner and developer of 20 security certifications, including Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI) and Certified Security Analyst /Licensed Penetration Tester (ECSA/LPT) certification. EC-Council has trained over 90,000 security professionals and certified more than 40,000 members. Its certification programs are offered by over 450 training centers across 84 countries. These certifications are recognized worldwide and have received endorsements from various government agencies including the U.S. Department of Defense via DoD 8570.01-M, the Montgomery GI Bill, National Security Agency (NSA) and the Committee on National Security Systems (CNSS). EC-Council also operates EC-Council University and the global series of Hacker Halted information security conferences. The global organization is headquartered in Albuquerque, New Mexico. More information about EC-Council is available at www.eccouncil.org.


EC-Council Academia Partnership with Ingesup (France)

EC-Council Academia Partnership with Ingesup (France)


IT Institute is committed to ethical hacking

IT institute and Itera Process Consulting have gathered   members of the most important technological enterprises in Spain for the launch of the 7th version of Ethical Hacker Certification.

EC Council, from around the world, has chosen 25 training centers to launch the Ethical Hacker Certification, version 7.  It Institute has been selected in Spain.
The certification   was given at  Itera´s  Process Consulting facilities located  in Madrid´s Technological Park.

At  the closing  event Ariel Súcari, General Manager, from Itera Spain, emphasize how important is to think the same way as hackers do, as an effective method to stop violations  in the security systems of the organizations, as well as, the importance of rely on internationally accepted frameworks to manage the security orderly and effectively.

After this, Álvaro Rodríguez de Roa, Director of Security Information and IT Governance SGS, thanked the attendees for their participation and also explained the need of an appropriate training to ensure information security in the organizations.
The event concluded with the delivery of certificates to the first 17 Ethical Hackers in Portugal and Spain.