A professional associate of mine alerted me to the Bump Card. The fundamental concept seems to make sense; replace the business card with a phone app that allows you to exchange professional information including links to your web site, or even a special purpose web page. This exchange happens over your near-field communications (NFC) radio in your phone. This can be phone-to-phone, ...
A quick Saturday digest of cybersecurity news articles from other sources.This week a lot of content from Schneier on Security.
Earlier this month, we learned that someone is disrupting the TrickBot botnet network. Read full story.
What if you could eliminate 95% of cybersecurity exploits by doing one thing better? Would you do it? Social Engineering in its many forms accounts for 95% to 99% of common exploits that cybercriminals use to gain initial access to your information assets. There are two simple security controls that you can put in place that would virtually eliminate the threats caused by social engineering.
Social engineering is the use of ...
Continue Reading →
Be sure to expand this article by clicking on the article title, so you don’t miss the funny questions below the image.
This is from an older post from McSweeny’s. We have all set up a number of these “secret security questions” like the ones one the left, and the appropriate answer. These questions are generally used for password ...
Continue Reading →A quick Saturday digest of cybersecurity news articles from other sources.Microsoft just released an update that includes over 100 fixes and a Zero-Day patch. The Zero Day must be a doozy, my old, out-of-support Windows 7 machine was updated too. Run your updates!
Did you know that wireless devices almost always present a security vulnerability? Wireless signals pass through the air and can be intercepted and read by a savvy attacker. To protect wireless communication sessions, usually the wireless link is protected with some form of encryption. Last week I was teaching a CISSP class, and we were discussing the security vulnerabilities inherent in wireless networking, when one of the students asked if wireless keyboards are secure. The research I did while answering ...
Continue Reading →
As we enter the silly season of another Presidential Election, and possibly because of a psychological condition that I am calling COVID Mania*, the government is once again making boneheaded moves to introduce and pass legislation that would allow the federal government and law enforcement agencies easier access to encrypted messages from criminal sources. This issue comes up every five to ten years. It seems that agencies such as the ...
A quick Saturday digest of cybersecurity news articles from other sources.Every 5 to 10 years, the government and law enforcement agencies try to pass a law that provides easy access or a “back door” to encryption keys because criminals use encryption and this makes arrest and prosecution harder. The problem is that anything that weakens encryption for criminals weakens ...
Continue Reading →
Are you concerned about telemedicine and healthcare security? Today’s article provides a list of resources from the National Cyber Security Alliance.
The convergence of the internet and healthcare has created many benefits for patients and healthcare providers, but has also created vulnerabilities that cyber criminals regularly attempt to exploit. Download NCSA’s Week 3 infographic and video to learn some of the most common ways patients and medical practitioners ...
Continue Reading →
Are you using an implantable medical device such as a pacemaker, defibrillator, or infusion pump? These devices are not as secure as you might expect. October is Cybersecurity Awareness Month, and this week’s theme is “Securing Internet connected devices in health care.” Parts of this article appeared previously in posts from January 16, 2016 and April 11 2016. We have come ...
Continue Reading →