Nathan Aw – Page 3 – WindowsTechs.com

Zero day vulnerabilities & Cybersecurity Supply Chain Risk Management – how to move from a reactive posture to a proactive posture? [duplicate]

Posted on December 12, 2021 by Nathan Aw

I refer to the Log4j logging framework vulnerability – Source: https://www.wired.com/story/log4j-flaw-hacking-internet/
Since software vulnerabilities is an inevitable part of life, and speed is of an essence when it comes to patching vuln… Continue reading Zero day vulnerabilities & Cybersecurity Supply Chain Risk Management – how to move from a reactive posture to a proactive posture? [duplicate]→

Passwordless Authentication vs 2FA/MFA [closed]

Posted on November 8, 2021 by Nathan Aw

What is the difference between Passwordless Authentication and 2FA/MFA? Is Passwordless more secure than 2FA/MFA?

Continue reading Passwordless Authentication vs 2FA/MFA [closed]→

Why is 0-day called a 0-day? [closed]

Posted on November 6, 2021 by Nathan Aw

Why is 0-day called a 0-day? Why not just call 0-day a previously unknown vulnerability (PUV)?

Continue reading Why is 0-day called a 0-day? [closed]→

Vulnerabilities type: arbitrary code execution (ACE) vs remote code execution (RCE)

Posted on November 6, 2021 by Nathan Aw

Like to understand the specified difference between arbitrary code execution (ACE) vs remote code execution (RCE)? and which of it is more commonly/easily exploited?

Continue reading Vulnerabilities type: arbitrary code execution (ACE) vs remote code execution (RCE)→

As Multi-Factor Authentication (MFA) seems to be the holy grail to much of the threats, are there any cases where MFA is compromised? [closed]

Posted on November 6, 2021 by Nathan Aw

As Multi-Factor Authentication (MFA) seems to be the holy grail to much of the threats we see today, are there any cases where MFA is breached or compromised? What are the threat vectors to MFA?

Continue reading As Multi-Factor Authentication (MFA) seems to be the holy grail to much of the threats, are there any cases where MFA is compromised? [closed]→

Quantum computing and its impact on malware/ransomware [closed]

Posted on October 29, 2021 by Nathan Aw

Are there any applications of quantum computing that can render malware/ransomware a thing of a past? E.g., Shor/grover algorithms to crack the encryption used by malware/ransomware.

Continue reading Quantum computing and its impact on malware/ransomware [closed]→

Security in the metaverse – is it just IOT Security? [closed]

Posted on October 29, 2021 by Nathan Aw

As we move towards a metaverse (3D virtual spaces), I want to ensure that cybersecurity safe guards are in place in the metaverse.
What are some guidelines and tools to secure the metaverse?
Or is metaverse security just plain old IOT/oper… Continue reading Security in the metaverse – is it just IOT Security? [closed]→

Why is SMS OTP not as secure as Authenticator Applications such as Microsoft Authenticator? [duplicate]

Posted on October 25, 2021 by Nathan Aw

Why is SMS OTP not as secure as Authenticator Applications such as Microsoft Authenticator, etc? Is it because of snooping of mobile communications? or?

Continue reading Why is SMS OTP not as secure as Authenticator Applications such as Microsoft Authenticator? [duplicate]→

Other than Shor’s algorithm, what is Quantum computing impact on information security?

Posted on October 24, 2021 by Nathan Aw

Other than Quantum Computing Shor’s algorithm impact on public-key cryptography, what are other Quantum computing impact on information security?
https://en.wikipedia.org/wiki/Shor%27s_algorithm

Continue reading Other than Shor’s algorithm, what is Quantum computing impact on information security?→

As the networks service mesh sits on the layer 3, can a IPSec VPN used for communication across the public network? [closed]

Posted on October 21, 2021 by Nathan Aw

As the network service mesh sits on layer 3 of the OSI model (the network layer), can a IPSec VPN be used for communication across the public network?
https://networkservicemesh.io/

Continue reading As the networks service mesh sits on the layer 3, can a IPSec VPN used for communication across the public network? [closed]→