breach Archives - The Silicon Underground

Watering hole attack prevention

Dave Farquhar — Wed, 02 Aug 2017 11:00:04 +0000

A watering hole attack is an indirect attack on a victim. Rather than directly attacking the victim’s network, the attacker attacks a web site that the victim’s employees are likely to visit. Then the attacker attacks the victim’s network, via

The post Watering hole attack prevention appeared first on The Silicon Underground.

What to do about Petya ransomware if you already deployed MS17-010

Dave Farquhar — Wed, 28 Jun 2017 04:59:51 +0000

Got MS17-010 deployed? Good, that means you’re immune to the Petya ransomware. I still want you to do something. Tell your patching team that you’re immune, and they saved the company between $300 and $300 * the number of Windows

The post What to do about Petya ransomware if you already deployed MS17-010 appeared first on The Silicon Underground.

Spot phishing e-mails with Outlook

Dave Farquhar — Mon, 25 Jan 2016 12:00:55 +0000

I got e-mail the other day from Turbotax saying someone had filed my taxes for me. Obviously a cause for concern, right? Here’s how I determined the message was fake in about three minutes. You can spot phishing e-mails with Outlook

The post Spot phishing e-mails with Outlook appeared first on The Silicon Underground.

Password management advice from CSO Online

Dave Farquhar — Wed, 21 Oct 2015 11:00:03 +0000

Over at CSO Online, there’s a nice war story about tracking down and resetting 300 passwords. I could pick nits at a few of his details, but that’s annoying and counterproductive. His overall advice is very good–manage your passwords, set

The post Password management advice from CSO Online appeared first on The Silicon Underground.

What to do after you get breached and sign up for the free credit monitoring

Dave Farquhar — Wed, 14 Oct 2015 11:00:26 +0000

After a large company that has your data gets breached, the standard next step is to give you credit monitoring. It’s not enough to protect yourself, but you can make it enough. I can tell you from my own experience

The post What to do after you get breached and sign up for the free credit monitoring appeared first on The Silicon Underground.

New password advice from GCHQ

Dave Farquhar — Thu, 17 Sep 2015 11:00:59 +0000

The GCHQ is the British equivalent of the NSA. They recently published a new document containing the GCHQ’s new password advice in light of the things we’ve learned in the last few years. It’s worthwhile reading, whether you’re a sysadmin or

The post New password advice from GCHQ appeared first on The Silicon Underground.

The workstation events you want to be logging in Splunk

Dave Farquhar — Tue, 15 Sep 2015 11:00:55 +0000

Every once in a while the NSA or another government agency releases a whitepaper with a lot of really good security advice. This paper on spotting adversaries with Windows event logs is a fantastic example. It’s vendor-neutral, just talking about

The post The workstation events you want to be logging in Splunk appeared first on The Silicon Underground.

Hacktivism is real, and getting more dangerous

Dave Farquhar — Mon, 03 Aug 2015 11:00:33 +0000

Lost in the stories of last week was a story I really don’t want to talk about, but I have to: Planned Parenthood got hacked, and a database of its employees was stolen. I don’t want to talk about it because

The post Hacktivism is real, and getting more dangerous appeared first on The Silicon Underground.

Five things security experts do vs. five things non-experts do

Dave Farquhar — Sun, 02 Aug 2015 11:00:57 +0000

There was a fair bit of talk last week about a study that compared security advice from security experts versus security advice from people who are at least somewhat interested but don’t live and breathe this stuff. There were significant

The post Five things security experts do vs. five things non-experts do appeared first on The Silicon Underground.

Expect a rough road ahead for Flash

Dave Farquhar — Wed, 15 Jul 2015 11:00:05 +0000

Adobe has patched Flash twice in two weeks now. The reason for this was due to Hacking Team, an Italian company that sells hacking tools to government agencies, getting hacked. Hacking Team, it turns out, knew of at least three

The post Expect a rough road ahead for Flash appeared first on The Silicon Underground.