Posted in authentication CSO online security worst practices

Two factor authentication on web apps should be the default

tl;dr – If you are using Microsoft Office 365 (or any other hosted email solution) and have not enabled two…

Posted in insider threat

Protecting your nuclear reactor from insider threats

OK, so you may not be protecting a nuclear reactor against insider threats, but this presentation from the International Atomic…

Posted in insider threat

Insider Threat Resources – 01-Feb-2018

I have the privilege as serving as a mentor for a course at SUNY-Albany focusing on the problems posed by…

Posted in online security

Response to Russian government cyber attacks – a lost opportunity?

  Russia’s apparent interference in the United States’ Presidential election marks an escalation in the targeting of state sponsored cyber…

Posted in hacks online security social engineering worst practices

The other big hack of 2016?

According to CSO Online, someone is offering for sale what they claim is a 6GB file of “data enrichment” information…

Posted in online security politics

Today, I want to be a Canadian

This morning, I read an amazing story in the New York Times about a Syrian refugee family building a new…

Posted in help

Sometimes the helpers need help too

I received some very sad news this morning – Melissa Claros (one of my colleagues at the Weehawken Volunteer First…

Posted in online security

Best infosec quote of all time…

Sometimes, saving money can cost you money (like $81 million)…  Apparently the hackers who made off with millions from the…

Posted in awareness online security

typos can lead you to malware

Be careful when typing those URLs!  TypoSquatters register domains which are very similar to those of popular sites and use…

Posted in hacks online security

malware strikes non jailbroken iOS devices

A reminder that while iOS still seems to be safer from malware threats (as long as you don’t jailbreak your…