As if ransomware wasn’t fun enough (threatened GDPR violations! Yet another faux-remorseful retirement announcement! Double-dipping!) they’re decided to start a version of the three-punch combo to hasten the capitulation of their victims. Hey, these are busy criminals – time is money. I’m not talking about a jab-cross-hook sequence. The original approach was to simply encrypt […]
Risk Mitigation for Dummies
An article on ZDNet caught my eye about picking up the pieces in the aftermath of a ransomware infection. (To be fair, they were extensively referencing an article on the UK’s National Cyber Security Centre website.) Essentially, it was about being victimized a second time by failing to investigate and remediate the failure(s) that caused […]
Setting Expectations via Cost vs Reward
Fantastic article by Douglas Ferguson in Dark Reading about the challenges CISO’s face in the C-suite area, battling for money. The challenge of IT and infosec is often that, if things are going well, it’s tough to get investment from higher up to KEEP them going well. After all, if you give an increased budget […]
You’re So Salty
What I like best about the idea of two-factor authentication is the elegant simplicity of the idea – you can’t hack something if you don’t have both parts of the key. And here’s a way to do your own twist on 2FA. In case you don’t already know what salting is, here’s a link to […]
Philly WordCamp…with Lock Picking Kits!
Had a great time with a really nice group of people at Philly WordCamp two weekends ago. I even worked the Happiness Bar for the first time…actually, it was a lounge, which sounds far more glamorous that it actually was. But I was really glad to help people figure out their WordPress issues. And Wordfence […]
Comptia Cybersecurity
Really enjoyed earning a CEU from Comptia by watching (actually re-watching, cause first time I saw it we had a thunderstorm and power went out 3 minutes before end of presentation and I didn’t get credit) the Comptia ChannelCon State of Cybersecurity talk. Some of the points that caught my ear were One speaker posited […]