Fake Facebook Ads, Twitter Bots, and Fraudulent LinkedIn Accounts If you haven’t heard by now, many fake accounts exist on Twitter, Facebook, and LinkedIn. A social media bot refers to an account that programmatically posts content. Many bots serve good purposes such as reporting and gathering information. The data from bots can help businesses, governments, news agencies … [Read more...]
Teri Radichel
Teri Radichel is the Directory of Security Strategy and Research at WatchGuard Technologies. She was on the initial team that helped Capital One move to the cloud, implementing security controls and networking for multiple lines of business. She joined WatchGuard Technologies to help architect a cloud platform. Prior to that she ran a consulting business for over ten years. Teri runs the Seattle AWS Architects Engineers Meet Up and is on the advisory board for SANS cloud curriculum. She holds multiple security certifications. You can follow her on twitter @teriradichel.
The Insider Threat: History and Defense
In cyber security, the “Insider Threat” refers to potential actions taken by people within an organization that can cause harm, as opposed to hackers attacking from the outside. Sometimes an insider takes actions maliciously with intent to steal data or cause damage. In other cases, the insider takes actions accidentally by clicking a link or sharing information because they … [Read more...]
Were the US Navy Ship Collisions the Result of Hacking?
With the recent string of US Navy ship collisions including the USS McCain and Fitzgerald, the mind of a security professional will instantly think of all the possible malicious ways an attacker could target naval systems to cause a vessel to crash. Multiple collisions with similar factors will lead to even more speculation. Although professionals should not claim attribution … [Read more...]
Packet Capture on AWS ~ New Solutions to Old Problems
Security professionals often attach a packet capture security appliance to a span port on hardware network equipment to capture network packets in a data center. On AWS customers do not have access to span ports and physical networking equipment. This led some security professionals to believe it is not possible to implement a packet capture solution on AWS. In fact, packet … [Read more...]
Using Firewall Policies to Auto-Block Rogue Hosts on External Networks
Automatically preventing all traffic from hosts that attempt to connect to blocked ports can help prevent further malicious actions from those IP addresses as explained in Auto-Blocking Suspicious Hosts Found in Traffic Logs. After posting that article, one WatchGuard customer sent me a note about using the auto-block feature to help prevent DDoS attacks. By reducing the … [Read more...]
