Posted in best practices online security social engineering useful stuff

Security risks from domain typo squatters

One of the ways that hackers get users to click on malicious links or believe false emails is to use…

Posted in authentication best practices online security useful stuff

Even with security flaws, you should be using a password manager

Yesterday, the Washington Post ran an article about some important security research on password managers, describing a number of serious…

Posted in authentication best practices online security useful stuff

What does your password say about you?

Using what we security experts call “crappy passwords” can be the first step in a journey to identity theft and…

Posted in authentication hacks privacy risk useful stuff

No, you don’t need to close your LastPass account…

Yesterday, at ShmooCon, security researcher Sean Cassidy announced a vulnerability in the popular LastPass password manager.  He demonstrated a way…

Posted in best practices CSO malware useful stuff

Great DerbyCon talk on hunting for the bad guys

It sometimes seems to me that a lack of data is not the issue when patrolling your networks for signs…

Posted in best practices hacks malware useful stuff

quick and dirty malware analysis

There are a number of web based tools that allow you to safely analyze the behavior of potentially malicious files…

Posted in authentication deep thoughts online security risk useful stuff

galaxy s5 fingerprint authentication and lastpass

Interesting blog post from Graham Cluley on LastPass’ support for using the Galaxy S5’s fingerprint reader as the key to…

Posted in best practices CSO law useful stuff

more (and better) social media guidance from the nlrb

A while back, I wrote about how US organizations writing social media policies need to beware of the National Labor…

Posted in best practices CSO hacks law useful stuff

sec breach reporting requirements for publicly traded companies

If you are an information professional at a publicly traded company, I would strongly suggest reading a recent blog post…

Posted in my travels useful stuff

doing the shmoo

Greetings from Washington, DC – the home of corrupt politicians, sleazy lobbyists, democracy destroying SuperPACs and Moby Dick House of…