All Articles

We are hosting a session and would request all interested to join us and have your security team members join us too. You could also share it with others who would find value

Workshop : How To Perform Penetration Testing On Industrial Control Systems

This report summarises the top breaches between mid – November till 15th December 2020. The report will help you to keep track of the latest hacks and add insights to safeguard your organization by looking at the trends. 

In the wake of current ranso

The cybersecurity industry is consumed with scale and effectiveness of one of the biggest hacks in recent memory.  The emerging narrative and stories are missing important pieces of the puzzle.  The attackers, likely a nation-state, gained unpreceden

There is an important transition that is happening with law enforcement’s adaptation to digital currencies.   Authorities are seizing billions worth of criminal’s cryptocurrency and their improving skills are proving crypto is not the safe haven that

Even the best security organizations can be hacked!  Watch my message to both the cybersecurity industry as well as those attackers that hacked FireEye and stole the RedTeam tools. 

This skirmish went to the hackers, but the battle continues.

The process of digitizing industrial operations does not only relate to the traditional entities of IT infrastructure. It also plays a role in the area of the Industrial Internet of Things (IIoT), whose components used to be virtually unreachable fo

In today's rapidly changing environment, threat actors are using an arsenal of new and sophisticated techniques that make attacks unrecognizable. With a plethora of products and a rapidly shifting landscape of threat and risk, cybersecurity remains

Apple is instituting new privacy requirements, for all new applications being listed in the App Store, to enhance transparency and educate users. 

It is an important step, but additional measures are needed to ensure compliance. 

Cyber attackers continue to move down the compute stack with the latest variant of TrickBot now targeting firmware for malicious manipulations.  This is when it gets serious.  The firmware sits below the operating system and is a perfect place for ma

You know those spam calls that threaten money is owed to the IRS and if you don’t pay over-the-phone you will be arrested?  How about the call that the US Immigration will deport you if you don’t pay.  All annoying scams.  But, highly profitable for

The holidays are a time for increased online fraud and scams. All of us need to follow the best security practices to keep our holiday from turning into a digital disaster.

Be smart.  Know that the cybercriminals will attempt all manner of fraud.  Be

Governments can still pursue cybercriminals and fraudsters who use cryptocurrency.  China authorities have seized over 4 billion dollars worth of Bitcoin, Ethereum, and several other cryptocurrencies as part of a crackdown on the PlusToken scheme tha

We are surrounded!  Smart devices are everywhere and being integrated into all facets of our lives, from toothbrushes to automobiles.  Entire cities are becoming ‘smart’, as are factories, governments, global retail, freight logistics, and all nation

In our recent CISO Platform Fireside chat in association with FireCompass, we had Matthew Rosenquist, CISO Eclipz, and Bikash Barai, Co-Founder, FireCompass, who discussed a bunch of things related to the cybersecurity practices that are gaining mo

Another vulnerability and exploit named VoltPillager has been published for Intel Corporation's SGX security technology.  The attack itself is simply a hardware version of a previously discovered PlunderVolt software vulnerability where voltage to th

Criminals are offering stalking services, through the use of Moscow’s camera system, to identify and track people for $200.  Customers provide a picture and the criminals will return a report of where that person has been, where they frequent, and mo

The small country of New Zealand is showing great privacy leadership by releasing a tool to help businesses determine if a cybersecurity incident is considered a Data Breach.