That is what PCI(Payment Card Industry) DSS(Data Security Standard) v3.1 April 2015 says at 10.6.2 and 10.6.1 This makes sense right? review your logs for security events, and of all critical components and systems. The list of critical systems: Firewall Any email server (proofpoint, antispam etc) Fileserver IPS/IDS system Intrusion Prevention-Detection System Routers … Read more
This Article made me think how little we realize the hacker economy affects on the world. http://www.darkreading.com/cloud/how-the-hacker-economy-impacts-your-network-and-the-cloud/a/d-id/1320649? Bill Kleyman (writer of article) is a data center expert so he sees things from the data center perspective. The expectation is that the data center companies (otherwise known as cloud companies) will employ new technologies to solve … Read more
Chase.com not verified Commercial.hsbc.hk not verified (Hong Kong) pnc verified. Here are Three examples when clicking on the lock to the left of the URL in the browser … example image follows: Notice where the cursor is hovering : to the left of the URL (https://www.chase.com) Notice the Not verified examples … Read more
(a snapshot of APWG website today) Antiphishing Organization APWG – an organization that is worldwide (Anti-Phishing Working Group) founded in 2003 by Tumbleweed corp as well as financial and ecommerce companies. Is a 501c6 tax- exempt corporation. http://www.antiphishing.org/download/document/245/APWG_Global_Phishing_Report_2H_2014.pdf This is a very interesting document – and deserves more understanding. Top ten targets of phishers … Read more
This “bug” that is now a kind of DOS (Denial of Service) attack is indicative of many Security problems that we have currently. There is a specific problem when somebody texts these quirky unicode characters: (some of them have been struck so as to make it a bit harder to copy) As opposed … Read more
