Collaborate Disseminate
Modern-day encryption is surprisingly effective. Take the gold standard: AES 256-bit encryption. It’s military-grade, trusted by governments and top security professionals worldwide. The encryption keys use so many number combinations that itR… Continue reading How Employees Unknowingly Gamble with Your Data
In our previous article, we started to lay out some important social engineering terms, such as phishing, spear-phishing and pretexting. We even introduced to you what we call “Potentially Unwanted Leaks” (PUL) as tidbits of information tha… Continue reading Attacks to Critical Infrastructure Are Real, & They Can be Incredibly Easy
The damage done to a business’s reputation and the long-term financial consequences of a data breach are never a concern that should be treated lightly. While extending an existing database into the cloud can allow users to access sensitive files… Continue reading How to Create And Maintain a More Secure Database
Last time, I spoke with Jelena Milosevic. She’s a nurse who discovered a huge security problem in her hospital and is now on a mission to educate people about improving medical cybersecurity. This time, I spoke with Stephanie Vanroelen. Not only … Continue reading Women in Information Security: Stephanie Vanroelen
The media has been filled with news of identity theft, hacks, and other security woes as of late. In recent months, Uber was hacked, people had their financial information stolen by credit card skimmers, and one woman lost $59,000 to a fake police webs… Continue reading 5 Holiday Scams to Look Out For
Last time, I had a chat with Kristen Kozinski. She’s an expert on web development security, and she also has a pretty cool website for end user security education called Don’t Click on That. This time, I have a very special interview with J… Continue reading Women in Information Security: Jelena Milosevic
November didn’t shape up to be revolutionary in terms of ransomware, but the shenanigans of cyber-extortionists continued to be a major concern. The reputation of the Hidden Tear PoC ransomware project hit another low as it spawned a bunch of new… Continue reading November 2017: The Month in Ransomware
Last year, I wrote a short blog post about tools I had added to my pentesting toolbox. I’ve decided to make this type of article a yearly tradition. In this post, I highlight some of the useful tools I’ve started to use this past year. Doma… Continue reading Pentest Toolbox Additions 2017
Last time, I got to speak with Claudia Johnson. She’s been in the tech industry for a long time, and she got into security the same way Brian Krebs did – by being attacked. Now I got to talk to Kristen Kozinski. She knows about secure code … Continue reading Women in Information Security: Kristen Kozinski
With the cloud rapidly becoming the principal source of computing and data storage resources for organizations of all sizes, new types of exposures and attack paths have emerged. Earlier in the year, security researchers made a series of discoveries ar… Continue reading GhostWriter: MITM Exposure in Cloud Storage Service