Blog

Social Engineering the Silver Screen: Home Alone Edition
Blog

Social Engineering the Silver Screen: Home Alone Edition

By Tripwire Guest Authors on Sun, 12/15/2019
I have wanted to do a series like this for some time. I frequently watch movies and point out social engineering and OSINT techniques or inaccuracies as well as OPSEC blunders. These blunders, in addition to the matrix style waterfall screens, are equally bad as the "hacking" you see in movies. So, let's level the playing field about the specific...
Vulnerability-Management-Myths-Misconceptions-and-Mitigating-Risk1.jpg
Blog

Vulnerability Management: Myths, Misconceptions and Mitigating Risk

By Joe Pettit on Thu, 04/04/2019
Vulnerability Management is a much-talked-about practice in the IT security industry. Whether it is the debate on vulnerability scoring, how to implement a suitable vulnerability management program based on your own resources or even trying to convince leadership a vulnerability management solution alone won't solve all your cybersecurity issues,...
Vulnerability & Risk Management
Blog

The Election Fix: Upgrading Georgia’s Electronic Voting Machines

By Craig Young on Wed, 03/06/2019
Electronic voting systems are touted as a modern solution for fast and accurate vote tallies, but without appropriate safeguards, these systems run the very serious risk of eroding public confidence in election results. In Georgia, we’ve been using the iconic AccuVote TSX machines from Diebold for as long as I’ve lived here. The way it works with this system is that voters are given a ‘smart’ card...
Fine-Tuning Cybersecurity with the ATT&CK Framework
Blog

Fine-Tuning Cybersecurity with the ATT&CK Framework

By Lane Thames on Mon, 03/04/2019
This Thursday, March 7, 2019, I’ll be facilitating a Learning Lab titled Fine Tuning Your Cyber-Defense Technologies with the ATT&CK Framework at the 2019 RSA Conference in San Francisco, CA. This will be my fourth time speaking at RSA, and this will be my second time facilitating a learning lab, which I'm happy about. I really enjoy the learning...
5 Insights From the 2018 Verizon DBIR
Blog

5 Insights From the 2018 Verizon DBIR

By Tripwire Guest Authors on Sun, 10/28/2018
The 2018 Data Breach Investigations Report digs deep into data-driven findings about the state of global cybersecurity across a number of industries that include manufacturing, healthcare, financial and public administration. Verizon’s 11th annual report revealed the trends behind 53,000 cybersecurity incidents and 2,216 confirmed data breaches. As...
Riviera Beach Pays Nearly $600K to Recover Data after Ransomware Attack
Blog

'Hack the Marine Corps' Bug Bounty Program Announced by DoD

By David Bisson on Tue, 08/14/2018
The U.S. Department of Defense (DoD) and HackerOne together announced the creation of a new bug bounty program called "Hack the Marine Corps." On 12 August, DoD kicked off its new vulnerability disclosure initiative at DEF CON 26 in Las Vegas, Nevada with a live hacking session. For the launch event,...
Preventing Azure Storage Breaches
Blog

Preventing Azure Storage Breaches

By Editorial Staff on Mon, 03/19/2018
In my previous post, I took deep dive into AWS S3 permissions to outline the myriad of ways someone could expose their AWS S3 buckets and objects to everyone on the Internet. As I discussed there, the complexity of the S3 permission system is very powerful and provides users with a lot of flexibility; however, it also makes it very easy to...
New Study Shows 20% of Public AWS S3 Buckets are Writable
Blog

Preventing Yet Another AWS S3 Storage Breach

By Editorial Staff on Mon, 12/18/2017
It seems like everyday you see a new report about a massive data leak caused by someone accidentally exposing files stored in AWS S3 Buckets to everyone on the Internet. Many may remember Verizon’s infamous snafu that leaked data records for six million of their customers due to a misconfiguration in their S3 buckets. Since then, there have also...
Riviera Beach Pays Nearly $600K to Recover Data after Ransomware Attack
Blog

New "Triton" Attack Framework Targeting ICS Systems

By David Bisson on Fri, 12/15/2017
A new attack framework known as "Triton" is targeting industrial control systems (ICS) in an attempt to cause operational disruption and/or physical consequences. FireEye recently detected an incident at a critical infrastructure organization in which an attacker gained access to a Distributed Control System (DCS) that allows human operators to...
Blockchain 101: How This Emerging Technology Works
Blog

Blockchain 101: How This Emerging Technology Works

By Tripwire Guest Authors on Tue, 11/14/2017
Unless you’ve been living in Slab City or off the grid for a while, you’ve probably heard this year’s omnipresent buzzword ‘blockchain.’ But perhaps you're a bit clueless as to what this newer technology entails. In a recent HSBC survey of 12,000 respondents in 11 countries, 80 percent of people could not explain how blockchain works. Don’t worry,...
VERT Research: A Security Review of Freelance Web Development
Blog

VERT Research: A Security Review of Freelance Web Development

By Craig Young on Wed, 06/07/2017
Back in June, Robert Hansen posted an interesting write-up[1] on his Smartphone Exec blog about outsourced web development that was returned with multiple embedded PHP backdoors. While this betrayal of trust by a freelance web developer shouldn’t have been surprising, it was, and it prompted Tripwire’s Vulnerability and Exposure Research Team (VERT)...
An InfoSec Intern Roadmap
Blog

An InfoSec Intern Roadmap

By Bob Covello on Sun, 05/14/2017
The college year is rapidly coming to a close, and for many students who are in their early college years, an internship is usually part of the summer plans. With the growing interest in cyber security and infosec, as well as the increased availability of cyber security programs in many higher education establishments, some students are entering the...
Here's What You Missed at BSidesSF 2017
Blog

Here's What You Missed at BSidesSF 2017

By Editorial Staff on Wed, 02/22/2017
BSides is known for its collaborative and welcoming environment – something that truly sets it apart from the many other security conferences that are held these days. Today, the conference series has spread all across the world, yet its mission remains the same: to provide an open forum for infosec discussion and debate. Tony Martin-Vegue, a...
The Ransomware Decryption Deception: How Various Scammers Trick Ransomware Victims Into Paying More
Blog

The Ransomware Decryption Deception: How Various Scammers Trick Ransomware Victims Into Paying More

By Tripwire Guest Authors on Sun, 02/12/2017
Ever since the first large-scale ransomware attacks started targeting individual users, companies, and government institutions, we have witnessed that the primary malicious actor is usually a hacker or a hacker collective. More and more victims are now browsing the web looking for a way to get rid of the threat by not paying the ransom sum, a trend...
Autofill FUD
Blog

Autofill FUD

By Tyler Reguly on Mon, 02/06/2017
Last week, while browsing various news feeds and websites, I took a scroll through Facebook and saw this video posted from our local morning show, Breakfast Television. They were talking about a Lifehacker post that referenced a github repository belonging to Viljami Kousmanen. The doom and gloom statements of the video are pretty clear evidence of...
Proactive vs. Reactive Compliance Management
Blog

Proactive vs. Reactive Compliance Management

By Tripwire Guest Authors on Wed, 01/25/2017
Much of my time spent working is focused on performing technology assessments against some kind of baseline. Most of the time, these are specific government or industry standards like HIPAA, NIST, ISO and PCI. But when some of my clients reach out to me about evaluating their environment in light of these standards, it’s often done out of a feeling...