by Mike Gargiullo | Jul 19, 2018 | ISMS Consulting
The US Department of Homeland Security’s Industrial Control Systems Cyber Emergency Response Team, ICS-CERT, just published a medical device security advisory for products from Silex Technology and GE Healthcare. These products are the mainstay of EKG monitoring in...
by Mike Gargiullo | Apr 25, 2018 | InfoSec Strategies
A number of threat researchers are now reporting a massive and sustained spike of almost 500% in the volume of illicit cryptocurrency mining transactions on corporate networks. Trend Micro is hypothesizing that crypto mining could quickly rise to become “the new...
by Mike Gargiullo | Oct 5, 2017 | InfoSec Strategies
On September 13th, the threat intelligence group Cisco Talos discovered that a hugely popular free software, CCleaner, had at some point in the last month been compromised during development. A malicious “backdoor” (an entryway into the software that allows...
by Mike Gargiullo | Mar 7, 2017 | ISMS Consulting
“Internet of Things” (aka IoT) is a new buzzword for something that’s been around for a long time: any network device that’s not a desktop computer or a server. There are more and more of these kinds of devices, many of which people don’t associate with IoT—like web...
by Mike Gargiullo | Jun 14, 2016 | Ethical Hacking, Penetration Testing
About 2 weeks ago I had an in-depth conversation with a client after performing a low-intensity penetration test. We offer a low-cost penetration test option that we call a “Validate” level engagement. Basically, a Validate level test involves an automated...
