Collaborate Disseminate
One of the most basic things a company can do to dramatically improve their security posture is to keep very close track of who has what access to which privileged accounts inside the company firewall. This is a best practice of privileged account mana… Continue reading PODCAST: How managing ‘privileged accounts’ can help make ‘digital transformation’ more secure
If you think the cyber threat landscape today is nasty, just wait until the battle front drops to the processor chip level. Related artilce: A primer on microcode vulnerabilities It’s coming, just around the corner. The disclosure in early Januar… Continue reading Q&A: How to prepare for Spectre, Meltdown exploits — and next-gen ‘microcode’ attacks
Hundreds of cybersecurity vendors are making final preparations to put their best foot forward at the RSA Conference at San Francisco’s sprawling Moscone Center next week. This will be my 15th RSA, and I can say that there is a distinctively dark… Continue reading MY TAKE: A breakdown of why Spectre, Meltdown signal a coming wave of ‘microcode’ attacks
In case you thought it had been a suspiciously long time since a massive data breach was announced, well, here you go. Just a couple of days ago, Orbitz (part of the massive travel conglomerate Expedia) revealed that during the second part of last year… Continue reading GUEST ESSAY: How Orbitz’s poor execution of a systems upgrade left data exposed
When Russian botnet controllers deployed their bots on yet another social media blitz last week, they participated in a campaign that took a page from Sen. Joseph McCarthy’s play book, On Feb. 9, 1950, at the height of the Cold War, McCarthy infa… Continue reading MY TAKE: What ace-in-the-hole does Devon Nunes have that McCarthy would have loved?
Week ending Jan. 26, 2017. The use of Russian bots and trolls in social media propaganda blitzes continues . Counter terrorism expert Malcolm Nance minced no words in lambasting the latest deployment of Russian botnets to influence American polit… Continue reading NEWS WRAP-UP: Russian bots conduct social media blitz to discredit Trump-Russia probe
Thanks to U.S. banks abandoning magnetic striped payment cards, in favor of much more secure Europay-Mastercard-Visa (EMV) chip cards, the threat of criminals creating faked “mag-striped” credit and debit cards impregnated with stolen perso… Continue reading GUEST ESSAY: Yes, chip cards are secure — so hackers are taking aim at ‘mag-striped’ gift cards
Week ending Jan. 19, 2018. Don’t look now but the weaponization of the Internet of Things just kicked into high gear. The Mirai botnet, which I first wrote about in December 2016, is back — in two potent variants. Mirai Okiru targets ARC pr… Continue reading NEWS WRAP-UP: Mirai botnet variants take Internet-of-Things hacking to higher levels
We all fret over the smorgasbord of cultural and geopolitical controversies complicating our daily lives. That being the case, not enough public attention is being paid to the increasingly plausible scenario of an ongoing global cyber war. I say this b… Continue reading MY TAKE: Rising hacks on energy plants suggest ongoing global cyber war has commenced
Upon returning from a holiday trip this week, we received unsettling news. There has been a rash of mail theft emanating from our local post office. Our box of held mail seemed lighter than it should have been. And one envelope was slashed open; the gi… Continue reading MY TAKE: How a ‘gift card’ thief spoiled my Christmas