On October 16 Web.com, Networksolutions.com, and register.com had a breach, and as of Nov2nd there is no mention of anything like a breach on their website (web.com owns the others) The breach information was obtained from the always useful Krebsonsecurity.com site. So what happens when your website’s registrar was hacked? It likely means all […]
Since a picture says a thousand words here is an attempt at explanation of Risk Analysis. The rows are “Impact on Environment”: none, minimal, minor, significant, major, critical The “Likelihood” or “Likely – what is % to happen” is the columns: not likely, low, medium, medium-high, high, will happen. These are not “real” systems in […]
Internet Storm Center discusses an attack by the ‘GoldBrute’ botnet They found 1.5mil servers being used by the botnet. This means that a weakness in Microsoft (CVE-2019-0708) May 14 Customer Guidance page: Specifically: CVE-2019-0708 A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker […]
I did not have to put 100% in the headline: i.e. “We are never going to be 100% Secure” Whenever there is a device that is to be used for your purposes, someone can find a way to use that purpose against you and fight you with it. So it is my assertion: Do not […]
One thing we do know that Hackers are very successful in hacking overall. We don’t really know how they do it? But the headlines say it all: “Yahoo says 500 Million Accounts Stolen” If you study the image above (a bubble representation of all hacked entities) from the website www.informationisbeautiful.net You see Yahoo actually with […]