Security Alerts




Endpoint Security Is Great, but Not Enough Without Network Data

Endpoint security was a hot topic at RSA 2017. While endpoint security is extremely important, it has some significant limitations (like being vulnerable to zero-day attacks). Focusing on endpoint threat data without correlating it to network information can cause serious problems. (more…)

March 23, 2017 — Category: Security Alerts

Phish Your Own Employees… Before Someone Else Does!

WatchGuard’s CTO Corey Nachreiner?recently wrote a?column?for Dark Reading explaining why companies should include fake phishing email in any well-rounded security education program. (more…)

March 23, 2017 — Category: Security Alerts

Fake ICS Firmware – Daily Security Byte

Attacks like Stuxnet, and a few others, proved that very sophisticated threat actors could target industrial control systems (ICS) with malware. However, there are only a handful of cases with any evidence of these types of attacks (more…)

March 23, 2017 — Category: Security Alerts

LastPass Remote Code Execution Vulnerability

Password manager LastPass announced this morning that it had resolved two vulnerabilities in its Chrome and Firefox browser extensions. (more…)

March 22, 2017 — Category: Security Alerts

Massive iCloud Extortion? – Daily Security Byte

According to a Motherboard scoop, hackers claim to have hijacked anywhere from 200 to 500 million iCloud accounts, and have threatened to delete them unless Apple coughs up a ransom by April 7. (more…)

March 22, 2017 — Category: Security Alerts

How Workplace Design Can Make Your Company More Productive

Productivity is extremely important for small businesses. With little room for error or wasted time, business owners need to ensure their employees are always functioning at a high level (more…)

March 21, 2017 — Category: Security Alerts

90s Web Insecurity – Daily Security Byte

In my demos, I often show the most basic web applications vulnerabilities. For instance, I show a SQL injection in a very badly designed web login interface (more…)

March 21, 2017 — Category: Security Alerts

Star Trek Malware Demands Monero Ransom

“For everything, there is a first time,” says Spock in Star Trek II: The Wrath of Khan, and that includes a new Star Trek themed family of malicious malware: Kirk.? According to a recent SC Magazine article, cyber researcher Jakub Kroustek at Avast discovered a Star Trek/SciFi themed piece of malware full of Treky references. […] Read More – Star Trek Malware Demands Monero Ransom (more…)

March 20, 2017 — Category: Security Alerts

Nintendo Switch Hacked – Daily Security Byte

Hacking isn’t a game, even when your target is a video game console. Last week, a teenage researcher found a vulnerability in the brand new Nintendo Switch console. This flaw theoretically allows attackers to gain full control of a Switch (more…)

March 20, 2017 — Category: Security Alerts

Firebox Cloud: Public Cloud Security for Small and Midsize Businesses

The cloud is no longer just for large enterprises. Today, organizations big and small are moving to cloud environments to reduce capital expenditures and benefit from the increased flexibility, scalability, and reliability the cloud offers. In fact, according to RightScale’s 2016 State of the Cloud report, 71 percent of small and midsize businesses (SMBs) are […] Read More – Firebox Cloud: Public Cloud Security for Small and Midsize Businesses (more…)

March 20, 2017 — Category: Security Alerts