Towerwall Security/Vulnerability Alert Vol 13.62

By Michelle Drolet . 9 Jan 2014

Recent vulnerabilities for which exploits are available compiled by the Qualys Vulnerability Research Team. This is a list of recent vulnerabilities for which exploits are available. System administrators can use this list to help in prioritization of their remediation activities. The Qualys Vulnerability Research Team compiles this information based on various exploit frameworks, exploit databases, … Continue reading Towerwall Security/Vulnerability Alert Vol 13.62

Establishing Security Goals

By Michelle Drolet . 8 Jan 2014

Implementing security practices in your organization’s employees’ daily work habits, and ensuring the integrity and confidentiality of information security, the goals of the Security Awareness Program are: Put information security and its importance into the forefront of your staff’s minds. Spread information security policy and awareness throughout corporate ranks. Build security awareness into the technical … Continue reading Establishing Security Goals

10 Things I Know About … Passwords

By Michelle Drolet . 6 Jan 2014

10. Be clever Create passwords from easy-to-remember sentences, such as < Patriots Win the Super Bowl>, using the first letter of each word and adding numbers and special characters at the beginning or end. (e.g., <12=PwtSB!>) 9. Create a management system Consider creating one, very strong password and appending it with identifiers, such as <!Kr0y-W3n$TOM> … Continue reading 10 Things I Know About … Passwords

MetroWest Chamber of Commerce: 118th Annual Meeting

By Michelle Drolet . 18 Nov 2013

Well, it was certainly a night to remember and much to celebrate With over 325+ people coming to celebrate the 118th MetroWest Chamber of Commerce Annual Meeting! It was a great night with much money raised for United Way’s Feed a Family and our hero’s  – Military Veterans. Watch some of the fun we had:

Sophos expert talks about Cryptolocker and bitcoin ransom on CNBC (Video)

By Michelle Drolet . 13 Nov 2013

And it keeps getting worse… A widespread outbreak of a sneaky, file-encrypting piece of ransomware called Cryptolocker has many people talking. One very important question raised by Cryptolocker’s success to date: Should you ever pay a ransom to a cybercriminal? Sophos security expert James Lyne, head of global security research at Sophos, went on cable … Continue reading Sophos expert talks about Cryptolocker and bitcoin ransom on CNBC (Video)

Join us for Sophos’ Upcoming Event: Today’s Threat Landscape – How to Stay Safe

8 Nov 2013

Join us for Sophos’ upcoming event: Today’s Threat Landscape – How to Stay Safe Learn how today’s cybercriminals target your computer, identity and money and get practical advice on how to combat anything that comes your way. Sophos security expert John Shierwill explore how malware threats actually work and what you can do to protect your … Continue reading Join us for Sophos’ Upcoming Event: Today’s Threat Landscape – How to Stay Safe

Towerwall Information Security Alert Vol 13.50 – Making phishing more complex – on purpose

By Michelle Drolet . 25 Oct 2013

Earlier this week a colleague pointed out an intriguing phishing sample that he had come across. It was interesting not because of any great sophistication or complexity, but rather that it illustrated the reuse of an old social engineering trick. The brand being targeted in the phish campaign is Poste Italiane, a well-known Italian group … Continue reading Towerwall Information Security Alert Vol 13.50 – Making phishing more complex – on purpose

Could Syria Launch a Major Cyberattack Against the U.S.?

By Michelle Drolet . 15 Oct 2013

Cyber-attacks take many forms, from cybercrime, to hacktivism, to cyber warfare, and espionage. We’re all used to hearing about phishing attacks and the threat of malware, but organized cyber-attacks perpetrated by groups with political motivations, and sometimes affiliated with foreign governments, are on the rise, and they could represent a much graver threat. Major concerns … Continue reading Could Syria Launch a Major Cyberattack Against the U.S.?

Critical fixes for Office, Outlook and IE in September Patch Tuesday

By Michelle Drolet . 11 Sep 2013

Windows admins will have their hands full with the large number of security updates in this month’s Patch Tuesday. There are fixes for 47 vulnerabilities in 13 bulletins for September’s Patch Tuesday cycle. Four of this month’s bulletins are critical. This year’s total for bulletins is up to 79, a considerable increase from 62 at … Continue reading Critical fixes for Office, Outlook and IE in September Patch Tuesday

First malicious apps to exploit critical Android bug found in the wild

By Michelle Drolet . 29 Jul 2013

Researchers have spotted the first in-the-wild apps to exploit a critical Android vulnerability allowing attackers to inject malicious code into legitimate programs without invalidating their digital signature. The two apps, distributed on unofficial Android marketplaces in China, help people find doctors and make appointments, according to a blog post published Tuesday by researchers from security … Continue reading First malicious apps to exploit critical Android bug found in the wild

Tags