09 Dec Network Security Why the Latest Raspberry Pi CVE is (Almost) Completely Bogus January 19, 2024 By Mike Gargiullo Twitter and various InfoSec outlets just blew up over a CVE (Common Vulnerabilities and Exposures) database entry C... Continue reading
21 Oct Application Security | Category - Pivot Point Security Two-Factor Authentication and the New OWASP ASVS 4.0 January 15, 2024 By Mike Gargiullo The OWASP Application Security Verification Standard (ASVS) Version 4 updates and extends the previous ASVS 3 release. We’ve been using... Continue reading
06 Nov ISMS Consulting 3 Reasons Why “Project Verify” Scares Me January 4, 2024 By Mike Gargiullo A media buzz is building around an initiative by the “big 4” US mobile phone carriers (AT&T, Verizon, Sprint, T-Mobile) to replace ... Continue reading
19 Jul ISMS Consulting EKG Device Hacks Underscore Growing IoT Risks in Healthcare January 18, 2024 By Mike Gargiullo The US Department of Homeland Security’s Industrial Control Systems Cyber Emergency Response Team, ICS-CERT, just published a medical d... Continue reading
25 Apr InfoSec Strategies | Category - Pivot Point Security Why Cryptocurrency Mining Malware is Targeting Corporate Networks—and Why You Should Care January 12, 2024 By Mike Gargiullo A number of threat researchers are now reporting a massive and sustained spike of almost 500% in the volume of illicit cryptocurrency m... Continue reading