Jun 27 2020
Three ways that security teams can improve processes and collaboration, all while creating the common ground needed to sustain them.
Source: Good Cyber Hygiene in a Post-Pandemic World Starts with Us
Cyber ‘hygiene’ could resolve 90% of cyber attacks | FT Business Notebook
httpv://www.youtube.com/watch?v=3Qm0NgDBR3w
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
Take an awareness quiz to test your basic cybersecurity knowledge
Jun 26 2020
German Police have arrested 32 individuals and detained 11 after a series of raids targeting users of an illegal underground economy forum.
Source: Police arrested 32 people while investigating underground economy forum
Exploring the Dark Web
httpv://www.youtube.com/watch?v=BN1NU0ivzj8
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
Take an awareness quiz to test your basic cybersecurity knowledge
Jun 24 2020
Maersk is the world’s largest integrated shipping and container logistics company. I was massively privileged (no pun intended) to be their Identity & Access Management (IAM) Subject Matter Expert (SME), and later IAM Service Owner. Along with tens (if not hundreds) of others, I played a role in the recovery and cybersecurity response to the events of the well-publicised notPetya malware attack in 2017.
Source: Maersk, me & notPetya – gvnshtn
Petya/NotPetya Ransomware Spreading via LAN
httpv://www.youtube.com/watch?v=Vor9sWpJQHw
Global Ransomware Attack | Petya/NotPetya
httpv://www.youtube.com/watch?v=KdgCwCuBUp4
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
Take an awareness quiz to test your basic cybersecurity knowledge
Jun 23 2020
The proposed legislation is Congress’ latest attempt to weaken encryption from tech giants.
Source: Republicans push bill requiring tech companies to help access encrypted data
Jun 23 2020
Experts found tens of thousands of printers that are exposed online that are leaking device names, organization names, WiFi SSIDs, and other info.
Source: A daily average of 80,000 printers exposed online via IPP
Exploiting Network Printers
httpv://www.youtube.com/watch?v=DwKzSO4yA_s
How To Hack A Printer And See All Documents Printed
httpv://www.youtube.com/watch?v=6JFP_gUIZZY
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
Take an awareness quiz to test your basic cybersecurity knowledge
Jun 22 2020
Aerospace and military companies in the crosshairs of CyberSpies | CyberWar
ESET research uncovers attacks against several high-profile aerospace and military companies in Europe and the Middle East, with several hints suggesting a possible link to the Lazarus group.
This blogpost above will shed light on how the attacks unfolded. The full research can be found in this white paper, Operation In(ter)ception: Targeted attacks against European aerospace and military companies.
Confessions of a cyber spy hunter | Eric Winsborrow | TEDxVancouver
httpv://www.youtube.com/watch?v=YiUN35Ikdfw
Spyeye : Script To Generate Win32 .exe File To Take Screenshots
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
Take an awareness quiz to test your basic cybersecurity knowledge
Jun 21 2020
Digital Downfall: Technology, Cyberattacks and the End of the American Republic…
Source: Digital Downfall: Technology, Cyberattacks and the End of the American Republic:
Is America on the brink of civil war?
Could foreign cyber plots turn Americans against one another and cause a disastrous domestic conflict?
What would happen if the lights went out and the technology we rely upon to run American life is no longer available?
The present dangers are real. The US is more vulnerable to destructive foreign interference today than it has been in over a century. As Russia and China realize they can’t win shooting wars against the US, they have devised new and cunning ways to destabilize American politics and cripple the US economy. Cyber meddling in elections, disinformation campaigns, abuse of social media to widen racial and political divides, and the theft of military data are just some of the malicious acts threatening the Republic. Digital Downfall examines the potential effects of such attacks, with a look at:
And more…The dangers posed by external sources can only be real when the internal politics of the United States is in a fragile state. The past four years bear testimony to this political decline as does every passing day of the Trump presidency.The perfect storm of external interference, a rampant and deadly pandemic, and a culture of racism that will no longer be tolerated is upon us.Who knows where it will lead to, or what will be left at the end.
Digital security – threats, risks and how to protect yourself
httpv://www.youtube.com/watch?v=QbyAVsbtGh0
How to protect your online privacy in 2020 | Tutorial
httpv://www.youtube.com/watch?v=jxeeKKfjb5o
Take an awareness quiz to test your basic cybersecurity knowledge
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
Jun 19 2020
An information technology specialist at the Federal Emergency Management Agency (FEMA) was arrested this week on suspicion of hacking into the human resource databases of University of Pittsburgh Medical Center (UPMC) in 2014, stealing personal data on more than 65,000 UPMC employees, and selling the data on the dark web.
Source: FEMA IT Specialist Charged in ID Theft, Tax Refund Fraud Conspiracy
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
Jun 18 2020
The lawsuit alleges that a data scraper took login credentials from about 5,500 people and then harvested phone numbers of their friends.
Source: Facebook sues developer over alleged data scraping abuse
What Is Web/Data Scrapping ? How To Scrap Large Data From A Website
httpv://www.youtube.com/watch?v=bp73TqGcY9c
Would like to know more on InfoSec Awareness…
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
Jun 17 2020
The previous record for the largest DDoS attack ever recorded was of 1.7 Tbps, recorded in March 2018.
Source: AWS said it mitigated a 2.3 Tbps DDoS attack, the largest ever | ZDNet
Was the US hit by a massive ‘DDoS attack’?
httpv://www.youtube.com/watch?v=54IJil_rZkY
What is DDOS? Is America Under a Foreign Cyber Attack?!
httpv://www.youtube.com/watch?v=Sp5ZgIGunTc
Would like to know more on InfoSec Awareness…
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
Jun 16 2020
Would like to know more on InfoSec Awareness…
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
Jun 16 2020
The publication of ‘Vault 7’ cyber tools by WikiLeaks marked the largest data loss in agency history, a task force concluded.
The theft of top-secret computer hacking tools from the CIA in 2016 was the result of a workplace culture in which the agency’s elite computer hackers “prioritized building cyber weapons at the expense of securing their own systems,” according to an internal report prepared for then-director Mike Pompeo as well as his deputy, Gina Haspel, now the current director.
Wikileaks Vault 7: What’s in the CIA Hacking Toolbox?
httpv://www.youtube.com/watch?v=X45Bb8O-gMI
CIA Hacking Tools Released in Wikileaks Vault 7 – Threat Wire
httpv://www.youtube.com/watch?v=5LYSjLwkAo4
Download a Security Risk Assessment steps paper!
Take an awareness quiz to test your basic cybersecurity knowledge
Subscribe to DISC InfoSec blog by Email
Jun 15 2020
3somes, Gay Daddy Bear, and Herpes Dating are among the nine services that leaked the data of hundreds of thousands of users. Researchers find a developer running multiple dating services left 845GB of explicit photos, chats, and more exposed in AWS buckets
Source: Dating Apps Exposed 845 GB of Explicit Photos, Chats, and More
Download a Security Risk Assessment steps paper!
Take an awareness quiz to test your basic cybersecurity knowledge
Subscribe to DISC InfoSec blog by Email
Best Practices for Amazon S3 Security with S3 Access Management Tools and S3 Block Public Access
httpv://www.youtube.com/watch?v=7M3s_ix9ljE
AWS S3 Bucket Security 👮- Restrict Privileges🔒to User using IAM Policy | Grant User Access
httpv://www.youtube.com/watch?v=vtz3ruCebH8
Jun 14 2020
Amazon, IBM and now Microsoft ban the sale of facial recognition technology to police departments and are urging for federal laws to regulate its use.
Source: Tech firms suspend use of ‘biased’ facial recognition technology
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
Why Cities Are Banning Facial Recognition Technology | WIRED
httpv://www.youtube.com/watch?v=sYftT5YgwVI
Facial-recognition technology: safe or scary?
httpv://www.youtube.com/watch?v=-yvxbi5GMnA
ARTIFICIAL INTELLIGENCE Dangers to Humanity: AI, U.S., China, Big Tech, Facial Recogniton, Drones, Smart Phones, IoT, 5G, Robotics, Cybernetics, & Bio-Digital Social Programming
Jun 13 2020
Academics record light variations in a light bulb to recover the sound waves (speech, conversations, songs) from a room 25 meters (80 feet) away.
Source: Lamphone attack lets threat actors recover conversations from your light bulb | ZDNet
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
Jun 12 2020
Facebook says deepfakes are not currently a big issue, but it wants to be prepared.
Source: Facebook contest reveals deepfake detection is still an “unsolved problem”
Best Of Deep Fakes Compilation
httpv://www.youtube.com/watch?v=xkqflKC64IM
Funniest DeepFakes *Compilation* II.
httpv://www.youtube.com/watch?v=RpRlrrNwr4U
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
Jun 11 2020
Encryption is a critical component of a defense-in-depth strategy, which is a security approach with a series of defensive mechanisms designed so that if one security mechanism fails, there’s at least one more still operating. As more organizations look to operate faster and at scale, they need ways to meet critical compliance requirements and improve […]
Source: The importance of encryption and how AWS can help | Amazon Web Services
Why is Encryption Important? – Why is Cybersecurity Important Episode 1
httpv://www.youtube.com/watch?v=EZSjs8A7lmA
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
Jun 10 2020
In the months and years ahead, deepfakes threaten to grow from an Internet oddity to a widely destructive political and social force.
Source: Deepfakes Are Going To Wreak Havoc On Society. We Are Not Prepared.
Best Of Deep Fakes Compilation
httpv://www.youtube.com/watch?v=xkqflKC64IM
Funniest DeepFakes *Compilation* II.
httpv://www.youtube.com/watch?v=RpRlrrNwr4U
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
Jun 09 2020
Microsoft has fixed a vulnerability in all current Windows versions that allow an attacker to exploit the Windows Group Policy feature to take full control over a computer. This vulnerability affects all Windows versions since Windows Server 2008.
Source: Windows Group Policy flaw lets attackers gain admin privileges
Windows Security: The dashboard for device protections
httpv://www.youtube.com/watch?v=e_Z2bk7Cp1g
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
Jun 08 2020
Fear of the coronavirus is speeding up efforts to allow voting from home, but some of them pose security risks and may make it easier for Vladimir V. Putin, or others, to hack the vote.
Source: Amid Pandemic and Upheaval, New Cyberthreats to the Presidential Election
Tech giants meet with government agencies to talk 2020 election security
httpv://www.youtube.com/watch?v=iXpL7A35hX0
The Trouble With Election Security
httpv://www.youtube.com/watch?v=TgKPkfuNV4s
Download a Security Risk Assessment steps paper!
Subscribe to DISC InfoSec blog by Email
