If we had to start somewhere in computer security (or Cybersecurity) what should be done? First: start with performing minimum compliance standards (this objective also doubles as a documentation of compliance) Second: Improve security by spending some time on Cybersecurity (an ounce of prevention is worth a pound of cure) Third: Integrate Governance Risk Compliance … Read more
GRC = Governance, Risk & Compliance Currently on front page: https://fixvirus.com/ Governance is difficult and there is a reason, as the constant patching of thousands of vulnerabilities and bugs create organizational problems for many IT departments. Especially if one does want to do things in a correct manner. Obviously one can just “wing it” and do … Read more
Most people do not think about security in general. We ignore risks when they cost money and time due to our inherent impulse for this phenomena I have discussed this before in the last post of 2016: How bad is it? Will Cybersecurity get worse? The problem is one of business decisions which means … Read more
Sure Connect ABC device to Internet!!?? Amazing to note that many companies are creating devices to connect to the Internet and thus open these devices up to a variety of attacks. Note the following Blog MWR Labs The default root password has been disclosed by Packetstorm last year January 12th, 2016. Login to telnet with … Read more
Planning Security? You must know TTP In this new year of 2017 it is good to know your past so as not create the same situation in the future. But what is TTP you say? TTP – Tactics, Techniques, and Procedures. By that I mean the tactics and procedures … Read more
