Collaborate Disseminate
I work in a Software Company. Currently, we don’t have any security software to secure our data in an employee laptop. Now we want to make a policy where any data stored or created on the company laptop and server must not get outside of t… Continue reading Best Way to Isolate Company Data
Consider a blogging platform – example.com and we want to host untrusted content in subdomain1.example.com and subdomain2.example.com.
By default, same origin policy doesn’t allow communication between these two subdomains. Beyond SOP, wh… Continue reading Ideas for subdomains isolation
If i use a pc without any hard disk installed, use a write only live cd connected to external dvd writer to boot and browse infected sites, would there be a risk? everything should be deleted on reboot.
Fileless malware comes to mind tho… Continue reading Use malicious site, dedicated pc, network isolation
The Role of the Dedicated OS in Enforcing PCI DSS Privileged Access Requirements If your business handles credit cards, you know that malicious actors are gunning for the cardholder data your systems process. Perhaps no other digital asset is as… Continue reading Enforcing PCI DSS Compliance Requirements & OS Isolation
I have three SATA hard drives that I use every day. Suppose I disable the corresponding SATA ports of these hard drives through my BIOS, add another storage device to my PC, install another instance of Windows 10 and run unsafe executables… Continue reading Is it safe to disable SATA ports in the BIOS to isolate the corresponding hard drives from malware?
Summary Microsoft recently disclosed a spoofing vulnerability that enables an attacker to sign a malicious executable, making it appear that the file was from a trusted, legitimate source. It also enables attackers to conduct man-in-the-middle network … Continue reading Hysolate workstations NOT impacted by new Windows CryptoAPI Spoofing Vulnerability
What is Zero Trust? Zero trust is a security model based on maintaining strict access control. It has risen in popularity since Forrester coined the term in 2010. Initially, Zero trust referred an enterprise security architecture that relied on a… Continue reading Taking Zero Trust Network Access to The Next Level
Network segmentation is a common and effective cybersecurity countermeasure. As attacks get more sophisticated, however, security tactics need to advance in parallel. For example, endpoints (laptops, desktops and workstations) are often considered amon… Continue reading Endpoints and Network Segmentation Best Practices
Everybody’s talking about the post-perimeter era – an era in which there is no longer a distinction between being inside the perimeter of the organization or outside of it. In this new era, our personal devices mix access to sensitive, corp… Continue reading Living in a post-perimeter era
Tactics for when authorized users need to connect to network resources, or need to venture out to the web to complete important tasks. Continue reading Microsegmentation and Isolation: 2 Essential Strategies in Zero-Trust Security