I keep going to the same topics, since we have the same issues come up again and again. We have discussed the Psychology of Security (all of these topics are also in my book “Too Late You’re Hacked”), in this blog before – just search for Psychology of Security and you will see the posts. … Read more
Patch your software and hardware (portswigger article) Password management – Keep passwords locked – 2FA MFA, Backup and test backups – social engineering – Phishing education (CISA – Cybersecurity& Infrastructure Security AgencyTips) Test your environment Why did i give the patching/upgrade the highest importance, because a policy of upgrading can lead your environment … Read more
Remember the Exchange server hack from a year ago (post from 3/16/21)? “Exchange Server Attacks Just Beginning?” “Attacks exploiting the flaws were first spotted in January. They initially were limited and targeted, seemingly for espionage: the adversaries primarily targeted specific email accounts. Microsoft attributed the activity to a group it calls Hafnium, believed to operate … Read more
So I got this text the other day: Text from unknown number(spoofed anyway no need to put from number it is false – also I modified the link so others will not be able to go to it: WALMART is starting an exceptionally huge research project in your area. This project happens each week, so … Read more
Abilities Identify Security issues based on analysis of vulnerabilities – apply cybersecurity and privacy principles to organizational requirements Knowledge Application vulnerabilities, data backup and recovery, host/network access control mechanisms, system administration, network, and operating system hardening techniques. Skills Detecting host and network intrusions Conduct vulnerability scans and recognize vulnerabilities in security systems. Tasks Keep up … Read more