Response & Remediation Archives - Page 7 of 9

Why every business needs a WISP

Michelle Drolet

Non-compliance is a risk, and the Attorney General’s office carries a big stick for those who don’t follow the rules. If you don’t have a written information security program (WISP) in place for your business, then you could be risking data theft, legal action, and punitive fines. The law in many states now dictates that

3 Minute 55 Second Read

Towerwall Security/Vulnerability Alert Vol 13.96

Michelle Drolet

The “Stagefright” hole in Android – what you need to know Provided by Paul Ducklin at Sophos, Inc. The conference circuit can be a competitive arena, especially when there are multiple parallel streams. For example, back in 2010, I was at Black Hat in Las Vegas, and I attended the talk next door to the late Barnaby Jack’s now legendary

5 Minute 22 Second Read

Software vulnerabilities hit a record high in 2014, report says

Michelle Drolet

Are you patching quickly enough? How safe is the software you use? Do you have a system in place to identify vulnerabilities and patch them when they are discovered? How quickly do you react to vulnerability reports? There’s evidence that software vulnerabilities are on the rise, and few companies are taking the necessary action to

3 Minute 10 Second Read

Using third-party vendors? Keep a close eye on them

Michelle Drolet

Cybersecurity is only as strong as the weakest link. If your organization is using third-party vendors, policing their activity is critical to cybersecurity. Few can forget the theft of 110 million customer credit cards from Target in December 2013. But not as many know how hackers gained access to such a vast amount of sensitive

3 Minute 45 Second Read

Don’t be mad at ransomware attackers, be grateful

Michelle Drolet

Falling victim to a ransomware attack is most definitely inconvenient, but it could also serve as a wake-up call to the importance of backing up important data. You’re minding your own business, sitting at your office computer. Suddenly, a pop-up appears – with the logo of the FBI – warning that you’re under investigation for

4 Minute 26 Second Read

Securing Your Future with a Virtual CISO

Michelle Drolet

The enterprise is facing a dangerous combination of mounting cybersecurity threats of increasing subtlety, and a widening gap in the skills required to identify and combat them. Having someone that knows how to lead the charge in identifying and analyzing threats, creating strategic security plans and ensuring compliance, requires the right level of expertise. Many

3 Minute 43 Second Read

Known vulnerabilities pose biggest IT security threats

Michelle Drolet

Cyber risk report cites server misconfigurations as the No. 1 vulnerability. It’s often said, “There’s nothing new under the sun.” And that appears to be the case in the world of cybersecurity where hackers most often exploit known vulnerabilities to gain access to private computer files, according to HP’s 2015 Cyber Risk Report. Maintaining strong computer security,

2 Minute 26 Second Read

Data Privacy Alert Vol 13.82 – The GHOST vulnerability – what you need to know

Michelle Drolet

The funkily-named bug of the week is GHOST. Its official moniker is the less catchy CVE-2015-0235, and it’s a vulnerability caused by a buffer overflow in a system library that is used in many, if not most, Linux distributions. A buffer overflow is where you assume, for example, that when you handle a four-byte network number written out as

3 Minute 41 Second Read

Towerwall Information Security Update Vol 13.78 – 3 ways to make your Outlook.com account safer

Michelle Drolet

3 ways to make your Outlook.com account safer by John Hawes Following on from our detailed guide to securing your webmail, here’s a quick breakdown of how to make the most important fixes for users of Microsoft’s Outlook.com (formerly known as Hotmail and, for a while, Windows Live Hotmail). Controls affecting Outlook.com security are mainly found in

4 Minute 49 Second Read

Shellshock , The Latest Mac OSX and Linux Vulnerabilty—

Michelle Drolet

By: Solange_Desc1 Security researchers have discovered a new software bug known as the “Bash Bug” or “Shellshock,” or to those more technically “in-the-know” as GNU Bash Remote Code Execution Vulnerability (CVE-2014-6271)(link is external). This bug, more correctly termed, ‘vulnerability’, potentially allows attackers to gain control over targeted computers. The bug is present in a piece of computer

4 Minute 10 Second Read

Our Cybersecurity Solutions

Virtual Security Officer

We Advise

Industries

Trends & Threats

Knowledge Hub

Our Company

Solutions: Response & Remediation

Towerwall Security/Vulnerability Alert Vol 13.96

Software vulnerabilities hit a record high in 2014, report says

Using third-party vendors? Keep a close eye on them

Don’t be mad at ransomware attackers, be grateful

Securing Your Future with a Virtual CISO

Known vulnerabilities pose biggest IT security threats

Data Privacy Alert Vol 13.82 – The GHOST vulnerability – what you need to know

Shellshock , The Latest Mac OSX and Linux Vulnerabilty—

Talk with us now about:

Your security needs.

Call 774.204.0700

Email Us