KrebsonSecurity has a post that mentions that the department of the Treasury has a Ransomware Advisory pdf. The Treasury is advising you not to pay Ransomware if your device is ransomed (encrypted unless you pay for a decryption key): Companies that facilitate ransomware payments to cyber actors on behalf of victims, including financial institutions, cyber … Read more
As you may know, Patch Tuesday is the second Tuesday of the month (which happens to be September 8th on this month), literally the earliest it can happen. So today – the 14th of September, we had a little bit of time to evaluate the massive numbers of software pieces that need to be upgraded. … Read more
Is cybersecurity a problem to be dealt with or is it to be managed? (these questions were slightly changed from the presentation at RSA Conference in Asia – https://www.rsaconference.com/apj/agenda/how-to-tell-the-right-cyber-story-to-executives-and-board-members Ian Yip CEO of Avertro – he brings up some good questions. Let us delve a bit deeper into this question. Why should we care … Read more
Yes there are lots of Beer bug scams going around. Whenever the emotion is high with a lot of new events going on around the country, the criminal hackers are having a field day. scams about contact tracing – If someone call, emails, or texts about contact tracing – i.e. identifying who got in touch … Read more
Palo Alto Networks has a Zero trust explanation: “Zero Trust is a strategic initiative that helps prevent successful data breaches by eliminating the concept of trust from an organization’s network architecture. Rooted in the principle of “never trust, always verify,” Zero Trust is designed to protect modern digital environments by leveraging network segmentation, preventing lateral movement, … Read more
