by Bhaumik Shah | Feb 13, 2018 | InfoSec Strategies
Enabling users to upload images, videos, documents and all manner of files is essential for many web applications, from social networking sites to web forums to intranet collaboration portals to document repositories to blog sites. But allowing users to upload files...
by Taylor Smith | Feb 1, 2018 | InfoSec Strategies
Security researchers at the Romanian cybersecurity and antivirus software vendor Bitdefender have spotted what looks like the most sophisticated and potentially deadly botnet yet—possibly signaling a change in how malicious botnets will now be utilized by cyber...
by Lou Romero | Oct 17, 2017 | InfoSec Strategies
In my recent cyber security work with municipalities, I gained an appreciation for the information security challenges K-12 public school systems face. Because they manage troves of personal, health, financial and academic data, every school district is a target for...
by Bob Strunk | Oct 12, 2017 | ISMS Consulting
Bart is the IT director for a hypothetical regional health system that is seeking ISO 27001 certification. He’s the point person assigned to work with third-party InfoSec consultants on his firm’s ISMS internal audit. The goal of the internal audit is to validate...
by Taylor Smith | May 16, 2017 | InfoSec Strategies
On May 12th, 2017 cyber security professionals watched as the world was hit by the largest-scale ransomware attack to date. The ransomware, called WCrypt (aka WannaCrypt, WannaCry, WanaCrypt0r), spread rapidly. By encrypting files and demanding ransom for the...
