Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

World’s first and oldest cybercrime (1830) predates electrical telegraphy.  Read how two French bond traders hacked France’s military semaphore telegraph.

Forget VPNfilter – here’s BACKLASH, a networking hack from way, way back

With a name like BACKLASH, you might think this hack comes from the era of mechanical devices, with gears and pulleys. You’d be right!

A pair of patching articles from Peter Herzog of ISECOM

Security: Getting Off The Patch part one

Security:  Getting Off The Patch part two

How to set up 2FA on eBay – go do it now!

Thankfully, since we first reported on it, eBay has binned its cumbersome 2FA procedure and replaced it a much easier process.

Your Firefox account can now be secured with 2FA

Mozilla is rolling out support for two-factor (or two-step) authentication for anyone who has a Firefox account.

BabaYaga: The WordPress Malware That Eats Other Malware

The team at WordFence published a white paper that provides a detailed breakdown of an emerging malware threat we have analyzed that has some unique capabilities. The malware, which they have dubbed BabaYaga, works to maintain a WordPress site it infects in good working order, including removing other malware variants that it finds.

Apple’s macOS 10.14 Mojave has big security and privacy updates: Here’s the list

Apple is beefing up efforts to protect their users from being tracked and hacked. Here’s how.



About the Author:

Cybersecurity analyst, pen-tester, trainer, and speaker. Serving small business owners in the St Paul, Minneapolis, and western Wisconsin area since 2001. Cybersecurity and hacking have been a passion of mine since I entered the computer and networking business in 2000. I hold several cybersecurity certifications including Certified Information Systems Security Professional (CISSP), Certified Advanced Security Pratitioner (CASP), and Certified Ethical Hacker (CEH). Other computer industry certifications include A+, Network+ and Microsoft Certified System Engineer (MCSE). As Cybersecurity Analyst at The WyzCo Group, I help our clients experience high levels of security on their computers, networks, and websites. In addition to consulting on security products and services, we also conduct security audits, vulnerability assessments and full penetration tests. We also work with companies and organizations that need to certify compliance with regulations such as PCI-DSS (credit card processing), HIPAA/HITECH (medical records), and GLBA. We also provide Cybersecurity Awareness Training for clients and their employees. I am a frequent speakers at cybersecurity conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference, the (ISC)2 World Congress, and the ISSA International Conference, and many local community organizations, Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2008.
  Related Posts

Add a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.