Archive | Editorial Articles RSS feed for this section

LastPass Hacked – Daily Security Byte EP.98

I often recommend you use a password vault to manage your passwords, but this week a popular password vault company’s network was breached. The good news is you don’t need to panic if you’re a LastPass customer. Your passwords are probably still safe. However, you do need to change your master password and use two factor authentication. Watch today’s video to learn more.

 

(Episode Runtime: 3:12)

Direct YouTube Link: https://www.youtube.com/watch?v=99Y0DYoROJk

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

APTs, Updates, and OPM – WSWiR Episode 156

Information Security is a hot topic right now; unfortunately not for all the right reasons. Nowadays, it’s not unusual to have a big data breach, new zero day malware, and a ton of security updates all in the same week. If you’re part of an IT organization that’s concerned with protecting your network, but that doesn’t have time to keep up with the deluge of InfoSec news, this weekly video is for you.

Last week’s episode covered a nasty new variant of point-of-sale (POS) malware, Microsoft and Adobe’s monthly security updates, and a significant network breach of a well-respected security company. If you want to learn about all these stories and more, watch the episode below. Also, take a peek at the Reference section if you are interested in other InfoSec items from the week.

(Episode Runtime: 13:25)

Direct YouTube Link: https://www.youtube.com/watch?v=52reUvOR6FE

Show Note: On some occasions, I will not be able to post the blog update associated with these videos immediately, even though the video is already online. If you’d like to know about the latest video as soon as it’s posted, subscribe to my YouTube channel. Also, if you want email updates for each blog post, don’t forget to subscribe to this blog in the top right corner.

EPISODE REFERENCES:

EXTRAS:

— Corey Nachreiner, CISSP (@SecAdept)

OPM Breach Gets Worse – Daily Security Byte EP.97

You thought 4 million stolen federal workers’ records was bad? Well, Friday we learned the Office of Personnel Management (OPM) breach might be even worse than first suspected. We also learned a small time cyber criminal has tried to take credit for the attack. Watch the video for these updates, and to learn why PII theft is so dangerous.

 

(Episode Runtime: 3:13)

Direct YouTube Link: https://www.youtube.com/watch?v=vnPWDLbuBsY

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Kaspersky Gets an APT – Daily Security Byte EP.96

Kaspersky, one of the most effective antivirus companies out there, admitted that its network was breached by nation state actors. Watch today’s video to learn about the advanced threat that compromised this security vendor, and what I think about nation states that attack private security companies.

 

(Episode Runtime: 3:45)

Direct YouTube Link: https://www.youtube.com/watch?v=_JHX5son-aM

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Microsoft Posts Critical Patches – Daily Security Byte EP.95

It happens every month… Microsoft released their June patches on Tuesday, fixing 45 vulnerabilities in a range of popular products. If you manage a Windows network, you should watch this video to get the Patch Day highlights, and to learn which products to update first. As an aside, I recorded this video Wednesday, but was not able to edit and post it until today due to travel.

 

(Episode Runtime: 2:07)

Direct YouTube Link: https://www.youtube.com/watch?v=1dUGG1eP3A8

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

US Federal Sites Use HTTPS – Daily Security Byte EP.94

HTTPS usage has skyrocketed over the last few years, largely due to the “Snowden effect.” Today, the US government mandated that federal web sites must use HTTPS. Ultimately, this is a good thing. However, malicious actors can hide in HTTPS too. Watch today’s video to learn what you should do to secure HTTPS.

 

(Episode Runtime: 2:48)

Direct YouTube Link: https://www.youtube.com/watch?v=sceDGVyyQXw

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

MalumPOS Targets Oracle MICROS – Daily Security Byte EP.93

If you work at a restaurant, hospitality service, or retaileror you help support the IT needs of such organizationsyou should be on the look out for Point-of-Sale (POS) malware. Today’s daily security video covers a new POS malware variant called MalumPOS, which targets Oracle MICROS POS systems. Watch it to learn how to protect yourself.

 

(Episode Runtime: 1:58)

Direct YouTube Link: https://www.youtube.com/watch?v=iVk8KhWFiIk

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

US & Japan Gov. Hacked – WSWiR Episode 155

A few years ago we’d be surprised to learn about a public data breach once a month. However, nowadays two nation states can suffer major hacks in the same week. If you have trouble keeping up with the weekly security news yourself, let our vlog help you with a short recap.

This week’s episodes shares two stories about nation states losing their citizen’s data, as well as a more light-hearted story about a researcher hacking garage door openers. Press play on the YouTube video below for all the details, and check the Reference section for links to other interesting news.

(Episode Runtime: 8:52)

Direct YouTube Link: https://www.youtube.com/watch?v=kmzOZPnSg8k

Show Note: I’m attending Gartner’s Security and Risk Management Summit with week, so I may not be able to do my daily videos every day. I’ll return to the normal schedule next week.

EPISODE REFERENCES:

EXTRAS:

— Corey Nachreiner, CISSP (@SecAdept)

Japanese Pension System Pwned – Daily Security Byte EP.92

If you want to know why spear phishing is a big threat, ask the managers of Japan’s Pension System. They recently had attackers steal 1.25 million records due to a user clicking on the wrong attachment. Watch today’s video to learn more.

 

(Episode Runtime: 2:29)

Direct YouTube Link: https://www.youtube.com/watch?v=jtUGQREjjgU

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Hacking Nation States & Crashing iPhones – WSWiR Episode 154

Unfortunately, lots of security news suggests lots of cyber crime. If you want to stay protected, you need to keep up to date; but who has time? Hopefully our weekly InfoSec video can help.

Last Friday’s episode covered an IRS data leak, a mysterious text message that crashed iPhones, some scary new crowd-sourced ransomware, and more. Watch the YouTube video below for all the details, and check out the References for other stories.

(Episode Runtime: 11:53)

Direct YouTube Link: https://www.youtube.com/watch?v=85fEsnnTf7E

Show Note: I’ll be traveling for the next two weeks to attend various security conference. I’ll try to keep up with semi-daily videos, but will not post as regularly, or at the normal times. 

EPISODE REFERENCES:

EXTRAS:

— Corey Nachreiner, CISSP (@SecAdept)

Follow

Get every new post delivered to your Inbox.

Join 7,964 other followers

%d bloggers like this: