Who is Will McLauglin? The Campaign for Privacy? or Dennis Anon and Privacy.net?
I’ve been writing this blog long enough that I receive regular submissions for guest content, infographics and other sort of suggestions for article topics. As long as the submissions are legitimate and on topic, I am generally happy to post them. My next post is one of those times. My efforts at verifying the source has been an interesting ...
Continue Reading →
Your IT manager comes to you with a look on his or her face that is a combination of panic, shock, and depression. “We’ve been breached, and it looks like they got into the customer database, but I’m not sure how long they’ve been on our network, and what else they might have done.” Do you know what you need to do next?
In previous articles we have covered Continue Reading →
In the middle of the day your cell phone mysteriously goes dead. Later on, when you call the cell phone carrier, you find out that someone else pretending to be you has visited a store and claimed to have lost your phone. Customer service agents moved your mobile number to a new SIM card on a new phone, and using your phone and other personal information gathered earlier through phishing ...
We are a big proponent of cybersecurity awareness training for your employees. Humans are always the weakest link in the cybersecurity chain, so enlisting your employees in the fight against cyber-attacks has to begin with some basic training, and ideally continue with periodic refreshers, and activities like phishing simulation exercises.
Today’s infographic is a guest post by security training firm Everycloud Technologies.
Have you ever wondered just what an attacker can do once they gain access to your computer? A 21 year old software coder is facing prison time for developing the ultimate Swiss Army knife of an “administrators'” tool-kit. This tool was sold to over 6,000 people through an extensive affiliate marketing network. Many of his customers were cyber-criminals who used ...
Cyber-criminals are using a botnet to send phishing emails with the apparent purpose to test a new email attachment type. Over the course of three weeks starting August 10th, this cyber-gang released seven different types of phishing emails to over 3,000 banks around the world. They appear to be testing which of these several approaches is most successful at tricking recipients into opening the email attachment.
The attachment itself is also something different – Microsoft Excel Web Query files that use ...
Continue Reading →
Often, when I am dealing with a malware-infected computer, I find that the malware has compromised the currently installed anti-malware product, and simply scanning the computer with the installed software does not work. When that happens, my go-to choice for malware remediation has been to download and install a copy of Malwarebytes, and run scans until the Malwarebytes reports the system is clean.
In the course of research for another article, ...
Continue Reading →While the US Cyber Command has been focusing on the Chinese, North Koreans, and the Russians, and their respective intrusions into the networks of US companies, energy utilities, our military, and government agencies, Iran has been creating a world-class cyber-ops unit of their own. Details about what is being called “Operation Cleaver” has been released by security company Cylance.
The ...
Continue Reading →
In our last post we looked at a great way to set up a pen-testing lab. Fortunately, the quandary over finding a safe place to practice your pen-testing skills has led to the creation of dozens of hacker-friendly learning sites. Several have been provided by OWASP, and there are other contributors out there with multiple sites. Here are a bunch of good ...
I have been fortunate to have had time to pursue a couple of information technology certifications recently. I have added CompTIA’s Network+ and CASP (Certified Advanced Security Professional), and I am working on the brand new CompTIA Pentest+. The certification is so new there are no text books yet, and the exam was just released on July 31. I have been taking ...