Kategorie

Mike Mimoso talks to Chris Vickery of Upguard of the recent rash of Amazon S3 data leaks.

The bug allows the extraction of an affected site's credentials "in seconds"

Adobe suffered at a minimum a PR black eye on Friday when one of its private PGP keys was inadvertently published to its Product Incident Security Response Team (PSIRT) blog.

The latest SecurityIQ update includes nine new security awareness modules for healthcare professionals, and custom course notifications to help you increase program completion rates. Read on for complete release details. 9 New Security Awareness Modules for Healthcare Professionals Staying compliant with HIPAA and PPI regulations just became simpler with SecurityIQ’s new security awareness modules for […]

The post SecurityIQ Update Adds Healthcare-Specific Modules, Custom Course Notifications appeared first on InfoSec Resources.

SecurityIQ Update Adds Healthcare-Specific Modules, Custom Course Notifications was first posted on September 25, 2017 at 7:37 am.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com

Typing "Facebook security" into your block list won't reveal their names

From Apache bleeding to Equifax shooting itself in the foot. Again.

LinuxSecurity.com: The number of phishing attacks reach a record rate in 2017, but the majority of the phishing sites remain active for just four- to eight hours.

LinuxSecurity.com: One of the saddest and most fascinating things about applied cryptography is how 6689264031_4c7516b3e1_zlittle cryptography we actually use. This is not to say that cryptography isn't widely used in industry - it is. Rather, what I mean is that cryptographic researchers have developed so many useful technologies, and yet industry on a day to day basis barely uses any of them.

Počítače s logem nakousnutého jablka, smartphony, ale například i chytré hodinky. Aktuálně prakticky neexistuje produkt od společnosti Apple, jehož software by neobsahoval nějakou bezpečnostní chybu. Americký počítačový gigant totiž naráz záplatuje prakticky všechny své operační systémy.

** V Brně se konal CyberCon ** CCleaner má ohromnou ostudu ** Google u nás vypustí Android Pay

If you generate an encryption keypair and you get a public key and a private key, which one do you think you should keep to yourself?

For quite some time now, phishing has been a preferred method for malicious hackers to gather from users the information that allowed them to penetrate systems. The surge in use of social networks is now making their job even easier; scores of personal details, photos, videos, ideas and posts of any kind are available often […]

The post Tips to Avoid Social Media Website Phishers appeared first on InfoSec Resources.

Tips to Avoid Social Media Website Phishers was first posted on September 22, 2017 at 6:44 pm.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com

For years Digital Forensics has played a significant role in the security domain. Being an integral part of the process, various tools have been developed over the years to make the forensic investigator’s work easier. Since most people are aware of tools such as EnCase, The Sleuth Kit, Caine, etc. that are used in the […]

The post 10 Digital Forensics Tools – The Lesser Known appeared first on InfoSec Resources.

10 Digital Forensics Tools – The Lesser Known was first posted on September 22, 2017 at 5:41 pm.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com

** Nejprve to vypadalo jako vážný, ale jen izolovaný problém ** Pak se to nafouklo do obřích rozměrů ** CCLeaner má problém a Avast ostudu

1. Introduction An ethical obligation is a standard that defines a moral course of action. Many professions are subject to comprehensive sets of ethical obligations which, if violated, may lead to sanctions. For example, the Code of Medical Ethics adopted by the American Medical Association sets forth the values to which every physician commits himself/herself […]

The post Cybersecurity as an ethical obligation appeared first on InfoSec Resources.

Cybersecurity as an ethical obligation was first posted on September 22, 2017 at 4:59 pm.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com

Is There a Need for Mobile Device Forensics? The use of Mobile devices in criminal investigations and similar activity has been present and widely recognized for some years. The forensic method and study of mobile devices is relatively new dates from the early 2000s. Just as the regular population uses mobile devices, so do the […]

The post Computer Forensics: Mobile Forensics appeared first on InfoSec Resources.

Computer Forensics: Mobile Forensics was first posted on September 22, 2017 at 4:32 pm.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com

The tech world has been stricken with digital assaults this year and ransomware has been at the focal point of everything. So far, this year we have seen two record-softening attacks occur up to a matter of months. In May the WannaCry ransomware contaminated a huge number of PCs, disturbing doctor’s facilities, banks, and organizations. […]

The post Expected Ransomware Evolution in Coming Years appeared first on InfoSec Resources.

Expected Ransomware Evolution in Coming Years was first posted on September 22, 2017 at 4:08 pm.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com

Cybersecurity is a growing issue. The greater frequency of attacks and their higher sophistication require companies to utilize the services of true subject matter experts readily available to apply best practices for securing business assets. Many are the professional figures sought nowadays to help secure networks, but lately, Cybersecurity Analysts are in high demand. The […]

The post Become an Entry-Level Cybersecurity Analyst appeared first on InfoSec Resources.

Become an Entry-Level Cybersecurity Analyst was first posted on September 22, 2017 at 3:29 pm.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com

IT security is vital to organizations as cloud computing, and mobile devices have revolutionized the way we do business. With the immense amounts of data transmitted and stored on networks all over the world, it is necessary to have effective security practices in place. That is where CompTIA Security+ comes in. CompTIA Security+ certification is […]

The post Security+ Exam Information: Performance-Based Questions appeared first on InfoSec Resources.

Security+ Exam Information: Performance-Based Questions was first posted on September 22, 2017 at 3:09 pm.
©2017 "InfoSec Resources". Use of this feed is for personal non-commercial use only. If you are not reading this article in your feed reader, then the site is guilty of copyright infringement. Please contact me at darren.dalasta@infosecinstitute.com

Verizon is the latest company to leak confidential data through an exposed Amazon S3 bucket.