Resources

Blog

LinkedIn Scam Wants Job Seekers to Hand Over Their CVs

Fraudsters have designed a new LinkedIn scam that uses phishing emails and a fake website to trick job seekers into handing over their CVs. The scam begins when a user receives a phishing email disguised as a LinkedIn email. In their message, the fraudsters inform the recipient that a company is "urgently seeking for immediate employment" in their...
Blog

Graduating in Information Security: Part Two

In part one of this series, I posited that additional integrity on a resume, as well as in interview situations, can benefit the entire information security profession by highlighting the specific disciplines in our industry. This, in turn, could serve to stop the perception of a cyber skills-gap by driving awareness that the InfoSec field is...
Blog

Microsoft Says "So Long" to Windows Vista

Microsoft has announced the end of Windows Vista support and is urging customers who still use the operating system to upgrade as soon as possible. The Redmond-based technology giant finalized Windows Vista's end of term in a blog post on 11 April: "Windows Vista customers are no longer receiving new security updates, non-security hotfixes, free or...
Blog

VERT Threat Alert: April 2017 Patch Tuesday Analysis

Today’s VERT Alert addresses the Microsoft April 2017 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-720 on Wednesday, April 12th. With the elimination of Security Bulletins, the VERT Alert will be changing. This shortened version will act as a placeholder until the launch of the improved...
Blog

Foundational Controls for Common Attack Types

In January 2017, Tripwire completed a survey of 403 IT Security professionals about the most common attack types and how prepared organizations are to defend against them. You can read about the details here. There are two important conclusions from the research that I have to share for the purposes of this post. First, the top five attack types...
Blog

Insider Threats as the Main Security Threat in 2017

Alphabet, Google's parent company, recently filed a lawsuit against its former engineer Anthony Levandowski, who is now working with Uber. The company accused Levandowski of copying more than 14,000 internal files and taking them directly to his new employer. While this case is far from over, it brings about a very interesting and important...
Blog

Web Scraping for Fun (and Profit)…

There are many websites on the internet that are known to receive regular traffic from hackers, including a number of public forums, which are often used to release their stolen information. Hackers may release some of this information to take credit for a breach, attract buyers for the rest of the stolen information, or increase the damages to the...
Blog

Encryption Works Great, But Only When Done Right

In an article we wrote for Tripwire, we discuss the advantages of encryption and tokenization. The premise of our argument is as follows: slow down your adversary by making your data meaningless to them. In other words, make yourself a “goes nowhere” project forcing your adversary to seek out a target that does not cause them the grief you do....
Blog

Make Yourself a "Goes Nowhere" Project for Adversaries

Before we jump in, we need to make clear the following: no single solution will ever offer complete and total security. In fact, even multiple solutions designed to provide overlapping layers of security to your crown jewels will not provide “complete and total” security. But what any reasonably implemented solution should do is the following: slow...
Blog

Cyber-Attack Activates Over 150 Emergency Sirens Across Dallas

A cyber-attack reportedly set off all 156 emergency sirens across the city of Dallas, Texas, late Friday night. According to reports, the sirens were activated more than a dozen times between approximately 11:45 p.m. and 1:20 a.m. on Saturday until engineers manually shut down the sirens’ radio system and repeaters. Dallas’ siren warning system is...
Blog

Wonga Says Incident May Have Compromised Customers' Personal Data

Payday loan company Wonga has confirmed that a security incident may have affected some of its customers' personal and financial information. The Britain-based lender says it's currently working to notify affected customers that the incident may have compromised their names, e-mail addresses, home addresses, phone numbers, the last four digits of...
Blog

The Challenge Facing Digital Forensics

As new means consumers and the general public can increasingly use services such as Silent Circle, Talk a Tone, Frogger and Guerrilla Mail, digital forensics experts are being challenged to take a deeper dive into how to obtain information from devices, networks and computers. The more of these types of technologies there are, the more time it takes...
Blog

Women in Information Security: Dr. Jessica Barker

My last series of interviews on women (and non-males) in information security was really popular. I spoke to some amazing minds in the cybersecurity field last fall. As spring arrived, I figured that there are probably a lot more professionals in our field who also have interesting stories to tell. Encouraging more non-males to enter the industry...
Blog

March 2017: The Month in Ransomware

Whatever the reason is, ransomware activity skyrocketed last month. An influx of crude, unprofessionally tailored samples bombarded home users and enterprises, sometimes simply destroying data beyond recovery due to broken crypto. Meanwhile, high-profile threats like Spora, Sage, Cerber and Jigsaw became more sophisticated. The statistics for March...
Blog

Book Review: The Art of Invisibility by Kevin Mitnick

I was fortunate enough to meet the author, Kevin Mitnick, while attending RSA in February. I was given a signed copy of The Art of Invisibility, one of The State Security's must-reads for infosec pros, so I made it a point to read the book. I knew a bit about Kevin’s past and had seen a few of his DEF CON talks, so I had a general idea as to the...