October2015 Patch Tuesday: Including Windows Shell Vulnerability
https://technet.microsoft.com/en-us/library/security/ms15-oct.aspx Has several patches including MS15-106 ” One memory corruption vulnerability (CVE-2015-6056) has been publicly disclosed.” from the following link: https://msisac.cisecurity.org/advisories/2015/2015-121.cfm As far as Microsoft patches go – the ones…
Expirian Board of Directors: Growth Through Acquisition – But Without Security Testing
David Krebs story: http://krebsonsecurity.com/2015/10/at-experian-security-attrition-amid-acquisitions/ I want to focus on Board of Directors decisions to grow through acquisition, wanting to do growth securely, but in practice has lots of problems. The…
Hackers Wiped Out Casino Computers 10min
http://arstechnica.com/security/2014/12/iranian-hackers-used-visual-basic-malware-to-wipe-vegas-casinos-network/ A very interesting story of Iranian hackers (whether government sponsored or sanctioned does not matter) attacked and deleted a lot of files using Visual Basic. (I know from 2014…
Defeat Phishing: Train Emotional Detachment to Scams
Here are some great articles that showed how some unsuspecting people get sucked into online scams: http://www.wired.com/2015/10/online-dating-made-woman-pawn-global-crime-plot/ Everyone has to learn how to defeat their own potential phishing attack… Are…
Study: Cybercrime Up 19% USA
The New Ponemon study (sponsored by HP) http://www8.hp.com/us/en/software-solutions/ponemon-cyber-security-report/index.html?jumpid=va_rmaig2786p Global Study at a Glance 252 companies in 7 countries 2,128 interviews with company personnel 1,928 total attacks used to measure total…