If you click on the wrong link this is what can happen: But besides losing all your data if you have other peoples information on your computers now that data can be stolen and deleted or unable to be retrieved if it is encrypted. Ransomware is a scourge that is difficult to fix, if not … Read more
Today there was an interesting VISA BlackPOS informational webinar today. What I got out of it is some more information to make sure and keep in mind these items when looking for Indicators of Compromise(IOC). VISA¹ has a great program to help small businesses protect themselves against cyber attacks There were a lot of good … Read more
If the theory says that Offense will always find a way into your environment (somehow) with a mistake or just better attacks then we must get better at developing Logs and react to attacks as fast as we can. This interesting and well thought out guide from Crest-approved.org¹ discusses what should be done in the … Read more
As we get ready for 2016 From the www.timessquarenyc.org/events/new-years-eve/sponsor-new-years-eve website (with additional Text “2016”). It will look similar to the image above – maybe a different font for the numbers. So before the new year is tomorrow and it is too late to make plans… How should one improve the cybersecurity situation at your company? Of … Read more
Reading the Oversitesentry 30 Security Analysis posts I was struck by the recurring theme of detection avoidance and obfuscation is the name of the criminal game. Specifically: Rapid7’s Blog post¹ on how attackers evade SIEM (Security Information event Manager) and the interesting post by Drops² about obfuscation by Windows programs that run in the 64bit … Read more
