Collaborate Disseminate
October was National Cybersecurity Awareness Month. Since today is the last day, I figured now is as good a time as any to take a contrarian perspective on what undoubtedly many organizations just did over the past few weeks; namely,…
The post Design… Continue reading Design For Behavior, Not Awareness
October was National Cybersecurity Awareness Month. Since today is the last day, I figured now is as good a time as any to take a contrarian perspective on what undoubtedly many organizations just did over the past few weeks; namely,…
The post Design… Continue reading Design For Behavior, Not Awareness
Carleton University fell victim to a ransomeware attack in November. Continue reading Someone Left USB Keyloggers on Computers Across a University Campus in Canada
No matter how well-designed it is, a security program will never prevent every digital attack. But an assault need not escalate into a data breach. Organizations can reduce the likelihood of a major incident by investing in key security controls. One such fundamental security component is FIM. Short for “file integrity monitoring“, FIM helps organizations […]… Read More
The post FIM: A Proactive and Reactive Defense against Security Breaches appeared first on The State of Security.
Continue reading FIM: A Proactive and Reactive Defense against Security Breaches
While not nearly as forceful and ‘tidal-like’ as evidenced in the tidal forces first-year physics diagram above, Rich Mogull (of Securosis fame) has released the second post in a typically erudite series appropriately titled ‘Tidal Forces: Endpoints Are Different—More Secure, and Less Open‘ (the first series post is available here). The Securosis Team’s latest output is most certainly todays’ Must Read.
Continue reading Rich Mogull, Releases Tour d’ Force Endpoints Thought Piece
In large churches that still use real bells in their bell towers, a large number of them ring bells using a method called full circle ringing. In order to get the bells to sound at exactly the right time, the bells are rung by swinging the entire bell in an almost complete 360-degree arc. This helps to mitigate the fact that often times, the bells weigh more than the person ringing the bells. However, if you don’t have access to a belfry, you can practice ringing bells using this method with your own full circle bell simulator.
The frame for …read more
Change the DVD drive letter with a few lines of PowerShell.
read more Continue reading Change DVD drive letter using PowerShell
I’m not completely sure why, but I’ve been holding off writing this post for a couple months now. Maybe, in part, I didn’t want to jinx myself. Maybe, in part, I didn’t want to open myself up to criticism or… Continue reading It’s Time For (A) New Context
In a world where we must assume our enterprises have already been breached, monitoring the perimeter is too little, too late. Continuous monitoring, a la CDM, tells you where you are vulnerable and what to fix, but not where you are already bleeding. In my post on why change detection is so important, I talked about […]… Read More
The post 5 Tips for Detecting Suspicious Changes in Your Network appeared first on The State of Security.
Continue reading 5 Tips for Detecting Suspicious Changes in Your Network
