Blog

By Eric Corcoran, Posted in Technology Week in Review

Monday 6/17 5 Things to Do First During a Ransomware Attack (Pure Storage) Knowing the challenges you’ll face first and the immediate steps you can take during the early stages of an attack can help minimize loss, cost, and risk. https://blog.purestorage.com/perspectives/a-6-point-plan-for-the-during-of-a-data-breach/ Triage Your Cloud Security: Risk Prioritization Methods (CyberArk) Effective risk prioritization requires a nuanced understanding of risk dynamics and a strategic, adaptive approach... read more.

• June 28, 2024

By Ryan Lee, Posted in Security

Let's face it, we’ve all been targeted by scams at some point these days. It happens so often, that I am able to spot it pretty quickly. But this time, I was almost fleeced. Let me set the stage before I share my story here. I am an IT consultant/architect and have been in this field for over 20 years now. I consider myself pretty knowledgeable, more than your typical savvy tech user. In my line of work, security is paramount. Whether it’s around architecture, implementation, ongoing management... read more.

• June 24, 2024

By Steve Gold, Posted in Security

Danny Ocean, played by George Clooney in Ocean’s 11 shows the complexity, timing, and sometimes ease of leveraging social engineering for an attack. This film provides a compelling look into the art of deception and manipulation, showcasing strategies that are surprisingly relevant to cybersecurity training. In "Ocean's Eleven," Danny Ocean and his team use sophisticated social engineering tactics to rob a casino. They employ pretexting when posing as technicians or officials to access restricted are... read more.

• June 19, 2024

By Eric Corcoran, Posted in Technology Week in Review

Monday 6/10 Announcing the inclusion of XenServer 8 in all new Citrix subscriptions! (Citrix) XenServer provides our Citrix platform customers the premium hypervisor capabilities optimized for Citrix workloads. Leveraging XenServer for your Citrix workloads helps you save money on 3rd party hypervisor solutions, while getting the most out of your Citrix deployment, with optimizations for Citrix only available from XenServer, such as PVS Accelerator, Intellicache, and MCS Read Cache. https://www.citrix.co... read more.

• June 14, 2024

By Hank Smith, Posted in Security

I wanted to share a personal experience about how artificial intelligence (AI) was almost used to exploit the elderly. I recently received a troubling call from my father, inquiring if my partner had been involved in a car accident and placed in jail. Knowing this wasn't true, I probed for more details. It turned out my father had received a call from somebody claiming to be my partner with a voice that sounded exactly like hers. The caller, impersonating my partner, said she caused an accident that harmed... read more.

• June 12, 2024

By Eric Corcoran, Posted in Technology Week in Review

Monday 6/3 Major Botnets Disrupted via Global Law Enforcement Takedown (Proofpoint) Per Europol, in conjunction with the malware disruption, the coordinated action led to four arrests, over 100 servers taken down across 10 countries, over 2,000 domains brought under the control of law enforcement, and illegal assets frozen. https://www.proofpoint.com/us/blog/threat-insight/major-botnets-disrupted-global-law-enforcement-takedown Tuesday 6/4 Endpoint Management Upleveled: New device list functionality (C... read more.

• June 11, 2024

By Eric Corcoran, Posted in Technology Week in Review

Tuesday 5/28 Creating a Security Program with Less Complexity and More Visibility (Palo Alto Networks) The greatest misconception about cybersecurity is that programs can catch up overnight with silver-bullet solutions. There’s no substitute for a strong foundation and daily maintenance. https://www.paloaltonetworks.com/blog/2024/05/creating-a-security-program/ AI and Automation in the Race to Reduce Attack Dwell Time (Check Point) As cyber threats continue to evolve, so too must the strategies a... read more.

• May 31, 2024

By Eric Corcoran, Posted in Technology Week in Review

Monday 5/13 CrowdStrike Enhances Cloud Asset Visualization to Accelerate Risk Prioritization (CrowdStrike) The massive increase in cloud adoption has driven adversaries to focus their efforts on cloud environments — a shift that led to cloud intrusions increasing by 75% in 2023, emphasizing the need for stronger cloud security. https://www.crowdstrike.com/blog/enhanced-cloud-asset-visualization/ CISA opens its malware analysis and threat hunting tool for public use (CSO Online) https://www.csoonl... read more.

• May 24, 2024

By Eric Corcoran, Posted in Technology Week in Review

Monday 5/6 Prisma SASE 3.0 — Securing Work Where It Happens (Palo Alto Networks) This unrestricted approach empowers users, but it also increases risk due to a lack of consistent security, control and visibility across devices. Security strategies must catch up, and Palo Alto Networks is once again leading that charge. https://www.paloaltonetworks.com/blog/2024/05/prisma-sase-3-0/ Understanding Risk-Based Vulnerability Management (Arctic Wolf) For all the concern about phishing, insider threats,... read more.

• May 10, 2024

By Eric Corcoran, Posted in Technology Week in Review

Monday 4/15 Understanding APIs and How Attackers Abuse Them to Steal Data (CyberArk) While essential and prevalent, APIs are potential attack vectors when not properly protected via machine identity security best practices. They can be exploited to expose sensitive data (e.g., customer lists, personally identifiable information (PII) and credit card details) while enabling application-to-application communication. https://www.cyberark.com/resources/blog/understanding-apis-and-how-attackers-abuse-them-to-... read more.

• May 03, 2024