What is security awareness training? Security awareness training is a strategic approach IT and security professionals take to educate employees […]
What is security awareness training? Security awareness training is a strategic approach IT and security professionals take to educate employees […]
A blog about how to amplify and improve your human risk management program using AI
What is authentication, authorization and accounting (AAA)? Authentication, authorization and accounting (AAA) is a security framework for controlling and tracking […]
Employees are cited as the weakest link in cybersecurity. Verizon’s “2023 Data Breach Investigations Report” found 74% of all breaches […]
The concept of living off the land is the core of this article. Using native security services in the cloud can help us live off the land and use the tools available to our organization on the CSP we are already using.
In approximately August 2021, hundreds of gigabytes of data produced by Bureau van Dijk (BVD) was obtained and later published to a popular hacking forum. BVD claims to “capture and treat private company information for better decision making and increased efficiency”, and the corpus of data released contained hundreds of millions of lines about corporations and individuals, including personal information such as names and dates of birth. The data also included 28M unique email addresses along with physical addresses (presumedly corporate locations), phone numbers and job titles.
In mid-2022, data alleged to have been sourced from the Russian payment provider PaySystem.tech appeared in hacking circles where it was made publicly available for download. Consisting of 16M rows with 1.4M unique email addresses, the data also included purchases and full credit card numbers and expiry dates. The data could not be independently attributed back to PaySystem.tech and the breach has been flagged as “unverified”.
What is Certified Secure Software Lifecycle Professional? CSSLP (Certified Secure Software Lifecycle Professional) is a certification from ISC2 that focuses […]
What is Microsoft Secure Channel? The Microsoft Secure Channel, or Schannel, is a security support package that facilitates the use […]