by Terry Crowley | Nov 9, 2017 | InfoSec Strategies
Yet another massive vulnerability that requires fast and widespread patching has just been announced: the KRACK (Key Reinstallation Attack) vulnerability, which exploits a handshake issue in the WPA2 Wi-Fi protocol. Thanks to KRACK, hackers can now potentially decrypt...
by Terry Crowley | Oct 27, 2017 | Penetration Testing
Thanks to the relentless onslaught of phishing, vishing, ransomware and other types of social engineering attacks, your users are the weak link in your network security. Awareness of this fact is growing, and more and more of our customers want to include social...
by Terry Crowley | Aug 29, 2017 | InfoSec Strategies
It’s been almost four months since the infamous WannaCry ransomware cryptoworm swept the planet in mid-May 2017, infecting over 300,000 systems in companies of all sizes, from hospitals to manufacturers, and it’s been about two months since the Petya ransomware...
by Terry Crowley | May 23, 2017 | Security Awareness Training
Despite Google’s quick response, early May’s massive, high-profile OAuth phishing attack impacted about 0.1% of Gmail users, which is over a million people. This “phish of a different color” exploited Open Authorization, a widely adopted open protocol that gives...
by Terry Crowley | Apr 25, 2017 | InfoSec Strategies
Many organizations take advantage of hardware virtualization, and VMware is a market leader in the virtual infrastructure space with its ESXi, vCenter and other offerings. Like Microsoft, VMware is security conscious and routinely provides updates and patches to...
