2014 was the “Year of the Breach” they say with the usual credit card breaches: Home Depot, Target and more… The clincher was the ultimate attack with Sony corp that brought the network down completely. It was an unusual attack, since the attackers actually stole data and then deleted it. Thus the network became unusable. … Read more
It’s good to do some reflection, and this is the last Saturday of he month, so here we are. Securosis’ Rich latest post https://securosis.com/blog/summary-heads-up has a decent summary post, which is discussing what to do periodically – review current technologies and methods and see if those methods can improve your current operational methods and … Read more
the biggest one in my book is Windows 2003 no more patches after the summer. http://www.microsoft.com/en-us/server-cloud/products/windows-server-2003/ From the Microsoft website: Windows Server 2003 support will end: 173 Days: 12 Hours :56 Minutes : 29 Seconds 173 days come faster than you think, so please do the right thing – Philotimo update your servers. Our Youtube video (regarding ΦΙΛΟΤΙΜΟ- Philotimo in case you are … Read more
It is good to review this Annual report: http://www.cisco.com/web/offers/pdfs/cisco-asr-2015.pdf (may have to fill out some information to get it) key discoveries: 1) 1% of all high urgency CVE (Common vulnerabilities and Exposure) were actively exploited. This means organizations must prioritize and patch high urgency vulnerabilities. 2) Since Blackhole exploit kit in 2013, it … Read more
SVAPE&C explanation video (special edition of fixvirus security show) Let us know if that helps you understand Pentesting Use the Sigma Scan to do SVA at least. http://oversitesentry.com/solutions/sigma/ Sigma Scan is Alpha Scan + Nessus/Nikto, it depends on what the alpha scan revealed. Contact Us. to help you
