Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.


CISA and FBI Release ESXiArgs Ransomware Recovery Guidance

Original release date: February 8, 2023

Today, CISA and the Federal Bureau of Investigation (FBI) released a joint Cybersecurity Advisory, ESXiArgs Ransomware Virtual Machine Recovery Guidance. This advisory describes ...

Continue Reading →
0

SQL Injection

This post is for my cybersecurity students, and anyone else taking a cybersecurity class or studying for a certification exam.

From Jason Dion: “The most common type of code injection is SQL injection. An SQL injection attempts to modify one or more of an SQL query’s four basic functions: select, insert, delete, or update. Two common methods of performing an SQL injection are either using a single apostrophe (‘) or submitting an always true statement like 1=1.  As a penetration tester, you ...

Continue Reading →
0

How to help ensure your project meets its deadline

Managing a project is not for the faint hearted, as there is potentially so much that could go wrong and many things you will need to monitor – some of which will be entirely out of your control. In situations like this, nobody would blame you for throwing in the towel and not bothering – but all is not lost.

By using certain tools and services, you can sidestep some of the pitfalls that could easily cause you to fail – ...

Continue Reading →
0

Ports and Protocols

As you know from taking my classes, computers prefer numbers and humans prefer letters or words.  Port numbers are numerical placeholders for protocol names.  The best way to learn them is through daily professional use, or memorization.  Flash cards can be helpful if you are preparing for an exam that is heavy in ports and protocols, such as the CompTIA A+ or Network+.

Here is another study aid provided by Rich Muldoon.  Click on the image to enlarge to full size ...

Continue Reading →
0
Page 3 of 8 12345...»