by Michael Gargiullo | Mar 19, 2019 | InfoSec Strategies
Even this era of near-daily data breach headlines, the Collection 1 trove gives one pause. What is being called the largest public breach ever is apparently just the tip of a gargantuan, 4TB iceberg of unique emails and passwords, all available to hackers worldwide at... by Michael Gargiullo | Jan 22, 2019 | ISMS Consulting
The largest public data breach ever just hit the web, with almost 800 million emails and over 21 million passwords “dehashed” and exposed as plain text. Dubbed Collection #1, this apparent amalgamation of over 2,000 breached data stores offers hackers vast potential... by Terry Crowley | Jun 14, 2018 | InfoSec Strategies
Speaking at the recent CyberUK conference in Manchester, Dave Hogue, senior technical director of the Cybersecurity Threat Operations Center at the NSA, flatly stated: We have sophisticated adversaries using unsophisticated means to cause great damage. In fact, I’ll... by John Verry | May 11, 2018 | Penetration Testing
Editor’s Note: This post was originally published in September 2015 and has been updated for accuracy and comprehensiveness. For some time, CPA firms, qualified security assessors (QSAs) and similar entities that focus on security attestation have been including... by Terry Crowley | Jan 17, 2018 | InfoSec Strategies
As organizations of all sizes flock to public cloud environments like Amazon S3 and Microsoft Azure, an incredible number (one report says up to 40%!) are failing to close the proverbial door behind them—and leaving huge volumes of sensitive data exposed to public...
