Microsoft is looking for some people to talk to for ~20 minutes via phone/Skype and as a thank you for sharing, will provide a $10 Amazon gift card after the call.  Read more...

It's hard to build strong security over time, but it's worth the effort. Steve Jones notes that even smart people have problems implementing strong security.  Read more...

Ensuring that your SQL Server is secure is the job of every Database Administrator. In this article I will provide a script to help perform easier audits of your system.  Read more...

Security is always a hot topic, and Steve Jones notes that we should be specific when we work with security.  Read more...

How much of a problem is it when developers can blamed for issues?  Read more...

People have hacked the voyage data recorders in ships. Steve Jones thinks this is a fundamental problem in computing systems.  Read more...

SQL Injection isn't special code. It consists of regular, valid T-SQL that is unexpected by the application. Steve Jones notes that using the principle of least privilege can help to limit the damage from SQL Injection if the application fails to properly check input.  Read more...

We all make mistakes, but it's important that we revise our code to correct them over time.  Read more...

A new series of attacks were proven recently using music files to attach embedded systems in cars. Could this be another attack vector that we need to worry about?  Read more...

Today we have a guest editorial from Andy Warren. We still have many applications runnning under sysadmin accounts, often "sa". Why do people do this? Andy has a few thoughts on the subject.  Read more...

It's 15 years after the beginning of the century. Time to eliminate the security exposure of SQL logins, and implement integrated security. Active Directory Groups make this easy for the DBA.  Read more...

The payment for a lost laptop: $90,000.  Read more...

This article details SMKs, DMKs and certificates in SQL Server as they relate to Transparent Data Encryption and Encrypted Backups.  Read more...

Steve Jones shares a story about losing data today.  Read more...

JP Morgan suffers the largest data breach for a financial institution, but Steve Jones doesn't think this record will stand for long.  Read more...

The move to limit disclosure of vulnerabilities continues, with potential issues for many of us.  Read more...

As yet more personal details are spilled by preventable security lapses, what's   Read more...

As data professionals, we might carry lots of information with us that relates to our organization. Will we get caught up in government issues as we cross borders?  Read more...

The biggest government hack ever occurred recently. At least until the next one happens.  Read more...

Learn how to find who has changed permissions from the default trace   Read more...