Today there was an interesting VISA BlackPOS informational webinar today. What I got out of it is some more information to make sure and keep in mind these items when looking for Indicators of Compromise(IOC). VISA¹ has a great program to help small businesses protect themselves against cyber attacks There were a lot of good … Read more
If the theory says that Offense will always find a way into your environment (somehow) with a mistake or just better attacks then we must get better at developing Logs and react to attacks as fast as we can. This interesting and well thought out guide from Crest-approved.org¹ discusses what should be done in the … Read more
Another day another Zero-Day Attack: From Sucuri Blog¹ which found a remote Code Execution attack on Joomla a CMS(Content Management System) software The hackers are interested in these all the time: Because a Zero-day attack means that an attack on susceptible software can be easily taken over. Zero day exploits are sought after in the darknet. … Read more
As we get ready for 2016 From the www.timessquarenyc.org/events/new-years-eve/sponsor-new-years-eve website (with additional Text “2016”). It will look similar to the image above – maybe a different font for the numbers. So before the new year is tomorrow and it is too late to make plans… How should one improve the cybersecurity situation at your company? Of … Read more
Reading the Oversitesentry 30 Security Analysis posts I was struck by the recurring theme of detection avoidance and obfuscation is the name of the criminal game. Specifically: Rapid7’s Blog post¹ on how attackers evade SIEM (Security Information event Manager) and the interesting post by Drops² about obfuscation by Windows programs that run in the 64bit … Read more