Wow! This week's been such a busy news week that the information security (InfoSec) stories kept pouring in, long after I finished this week's video. The latest? CERT just warned about some critical vulnerabilities in NTPd, a popular network time protocol (NTP) service that many network devices and software uses. If you use NTPd, look into it (and I'll post more soon). In the … [Read more...]
Poodle’s Back – WSWiR Episode 132
Another week, another batch of information security (infosec) news. Would you like a quick summary, rather than hunting it down yourself? No problem! Just check out our weekly video every Friday. Today's episode covers the Patch Day bonanza, lots of updates on the Sony Pictures breach, and a new twist on the "Poodle" SSL/TLS vulnerability. Press play for the scoop, and check … [Read more...]
Sony Breach & More – WSWiR Episode 131
Operation Cleaver, FIN4, Regin, and Sony Breach Now that cyber attacks have gone primetime, every week is filled with new information security (infosec) news, leaving administrators little time to catch up. If you're falling behind, let our weekly video summarize the biggest security news for you. No vacation goes unpunished. Unfortunately, skipping last week's video due to … [Read more...]
JP Morgan Hacked – WSWiR Episode 119
Gaming DDoS, Malvertising, and U.S. Banks Breached You really need to keep up with the latest attacks to learn how to adjust your defenses to survive. However, with so much infosec news and so little time, it's hard for many administrators to stay current. This weekly videos tries to keep you in the loop by summarizing the top news items each week. Today's show covers a big … [Read more...]
Huge Sony PSN Data Breach; What Should I Do?
On Tuesday, Sony officially disclosed a humongous data breach against the Playstation Network or PSN (recently renamed to Qriocity), which allowed external attackers to get their hands on the Personally Identifiable Information (PII) of around 77 million gamers. Worse yet, they may have even stolen their credit card information, too. If you read security news, or follow me … [Read more...]