Are we being too complacent in our feeling of “nothing will happen to us” with regard to Cybersecurity? 2 stories tie this theme together: Phishing awareness training wears off after a few months Apparently retraining is required after 6 months. Ransomware and Observations from Recent IR investigations Businesses are still getting ransomware, not how it […]
Read more >As you may know, Patch Tuesday is the second Tuesday of the month (which happens to be September 8th on this month), literally the earliest it can happen. So today – the 14th of September, we had a little bit of time to evaluate the massive numbers of software pieces that need to be upgraded. […]
Read more >What do I mean by Cybersecurity problems? How about not patching or upgrading your devices, taking inventory of your devices. Making changes to the network or systems and not thinking about security. Or just plain old errors, mistakes, issues that arise after something new happens. Why would we not pay attention to these things? What […]
Read more >Deepfakes are computer generated images and footage of real people. I.e. a computer generated images or video from a program (or algorithm). FireEye has a paper that discusses this phenomenon: https://www.fireeye.com/blog/threat-research/2020/08/repurposing-neural-networks-to-generate-synthetic-media-for-information-operations.html? Instead of talking theory and what happens once the cat is out of the bag, let’s give some good examples: https://www.wsj.com/articles/fraudsters-use-ai-to-mimic-ceos-voice-in-unusual-cybercrime-case-11567157402 “Criminals used artificial […]
Read more >So i was watching youtube and wanted to find a video of a current Cybersecurity conference – instead this video made me realize that what Nick is saying has some value to repeat and expound: The Five Laws of Cybersecurity | Nick Espinosa | TEDxFondduLac So I reduced it to 4 because his number 5 […]
Read more >