S.B. 315 uses the term, “unauthorized access,” which is a very murky term. If you’re trying to go through all the proper channels in advance and get authorization for something, it’s not always clear who the person who has the authority to give that authorization is. If it’s a website and you’re testing some part […]
Author: sainate
Partnerships to make the wise wiser; leveraging relationships to advance information security
At the end of the day, our goal is to help our clients see their organization from the perspective of an attacker; the unpatched vulnerabilities, the exposed services, the naive employee, the real-world risk that their security strategy has to address. It seems simple but, for someone that’s internal to the organization and actively engaged […]
More than 591,000 systems in the US available via Remote Desktop with only a username and password
What is RDP? Remote Desktop Protocol, or RDP, is a tool that many organizations leverage to allow users to access systems remotely. It’s built into all modern versions of Windows, is easy to enable, typically uses the same username and password used to access other systems (laptop, desktop, email, etc.) and offers a full desktop […]
Knowing what you don’t know. Some lessons learned from Equifax and WannaCry.
It seems like we’re seeing report after report in the news about so-called ‘cyber attacks’ in organizations that, it seems, should have known better or done a better job at protecting themselves (and our data). What didn’t they know that led to the attack (and subsequent breach)? What could they have done to have prevented […]
How the Wannacry, Petya and ransomeware attacks underscore the need for offensive security
Organizations across the Internet are falling victim to cyber attacks costing not only time, productivity and revenue but also immeasurable damage to reputation and client / vendor / public trust. In some cases, the attacks constitute a failure to maintain regulatory compliance (HIPAA, GLBA, FIRPA, etc.) and in all cases, the attacks confirm that the […]
Even after WannaCry, 5.5 million devices still exposed (up from 4.6 million in 2016).
Rapid7 conducts an annual scan of the Internet (about 3 billion IP Addressable devices) and found about 160 million devices with open ports that should not be exposed to the Internet. Among the ports that were scanned (a total of 30 ports according to the article) was SMB, which is the port that was [ab]used […]
New malware currently targeting restaurants. What you need to know before it targets your industry.
According to this article from Threatpost, a new malware nicknamed FIN7 is using a new technique to spread and avoid detection. The malware is reportedly associated with the Carbanak group and is targeting the restaurant industry. Considering it’s effectiveness though, it’s safe to assume that either this attacker will move to other industry verticals or […]
What can I learn from the recent NSA breach to better protect my organization?
You have probably heard by now that NSA Contractor Reality Leigh Winner used her access to leak classified information to The Intercept. The news media is covering the political angles here but there’s an excellent story on Operational and Information Security (OPSec and InfoSec respectively) that’s being largely ignored and some valuable lessons to learn […]
The Cyber Defense Certainty Act, Active Defense or Hacking Back?
The Active Cyber Defense Certainty Act seeks to “…provide a defense to prosecution for fraud and related activity in connection with computers for persons defending against unauthorized intrusions into their computers, and for other purposes“. The [draft] bill seems well intentioned but overly ambiguous, leaving a lot of room for abuse (and for other purposes […]
Don’t forget the doors, physical controls are important too!
We talk a lot about technical controls but a recent engagement reminded me that physical controls are just as important and, if the physical controls fail or aren’t implemented, technical controls generally fall easily (if an attacker has physical access to an asset, most bets are off). The Gig: The engagement was a penetration test […]