(a snapshot of APWG website today) Antiphishing Organization APWG – an organization that is worldwide (Anti-Phishing Working Group) founded in 2003 by Tumbleweed corp as well as financial and ecommerce companies. Is a 501c6 tax- exempt corporation. http://www.antiphishing.org/download/document/245/APWG_Global_Phishing_Report_2H_2014.pdf This is a very interesting document – and deserves more understanding. Top ten targets of phishers … Read more
This “bug” that is now a kind of DOS (Denial of Service) attack is indicative of many Security problems that we have currently. There is a specific problem when somebody texts these quirky unicode characters: (some of them have been struck so as to make it a bit harder to copy) As opposed … Read more
Cisco’s survey of Global network traffic is being reviewed by Network Daily, so I thought I would discuss some of its ramifications for IT security. White paper link: http://www.cisco.com/c/en/us/solutions/collateral/service-provider/visual-networking-index-vni/white_paper_c11-520862.pdf Network World Link: “Cisco Sees Internet Half Full” http://www.networkworld.com/article/2928657/cisco-subnet/cisco-sees-internet-half-full.html 24 Billion devices will be on the Internet by 2019 up from 14 Billion in 2014. … Read more
following story says that 32,000 patient records were placed on an insecure server on the Internet within the Cottage Health System. http://www.noozhawk.com/article/class-action_lawsuit_aimed_cottage_hospital_records_breach Unfortunately a simple Google search would reveal these patient records which is against the HIPAA privacy guidelines. Apparently the Hospital did have cyberinsurance from Columbia Casualty insurance according to https://nakedsecurity.sophos.com/2015/05/28/we-dont-cover-stupid-says-cyber-insurer-thats-fighting-a-payout/ Santa Barbara hospital … Read more
What can we do to shore up our defenses? If you already have a firewall, an IDS/IPS, an anti-virus software. Is that all there is to make your network as close to impervious as possible? I.e. the six sigma security that I have discussed in past blogposts: http://oversitesentry.com/assume-you-are-hacked-so-get-6-sigma-security/ How to test your environment? – … Read more
