Securing Tiffany’s Move
January 16, 2020 Welcome Ed Gardner 0
Story of how Tiffany & Company moved all of its inventory from one store to another. Short summary: careful auditing and a lot of police….
ToTok Is an Emirati Spying Tool
The smartphone messaging app ToTok is actually an Emirati spying tool: But the service, ToTok, is actually a spying tool, according to American officials familiar with a classified intelligence assessment and a New York Times investigation into the app and its developers. It is used by the government of the United Arab Emirates to try to track every conversation, movement,…
Security Vulnerabilities in the RCS Texting Protocol
Interesting research: SRLabs founder Karsten Nohl, a researcher with a track record of exposing security flaws in telephony systems, argues that RCS is in many ways no better than SS7, the decades-old phone system carriers still used for calling and texting, which has long been known to be vulnerable to interception and spoofing attacks. While using end-to-end encrypted internet-based tools…
Security Awareness- Wizer Review
An important part of any information security program is having empowered and aware users. They are integral to any organizations defense against Bad Things ™. Users who can recognize something being “not right” and then know what to do when their spider sense goes off. Folks who think about the communications they receive, and ask […]
Incident Response as a Game
Incident Response training and testing is always a bit of a black art. When a client suggested I look at Black Hills’ Backdoors and Breaches as a way to stage their annual incident response tabletop exercise, I was a bit skeptical. But I was also excited to try to find a way to make my […]