Web And Information Security Archives

3 Tips to Secure Your Home Network

By Tony Perez | March 24, 2020 |

Whether we like it or not, we have all become the network administrators of our own home networks. As such, our responsibilities extend beyond protecting our families to helping to be good stewards of the networks we’re connecting to (e.g., Work). To help, here are a few tips that should help you create a safe…

Mitigating Web Threats with DNS Security | CleanBrowsing

By Tony Perez | December 24, 2019 |

On December 18th, DeepInstinct put out a great article outlining the latest Legion Loader campaign. Whether a parent, or organization, this served as a great example to demonstrate the effectiveness of DNS security in mitigating this type of attack. Legion Loader Campaign This campaign is suspected of being a dropper-for-hire campaign because of the number…

DNS Firewall to Enhance Your Networks Security | CleanBrowsing

By Tony Perez | October 7, 2019 |

DNS is the internets lookup table, it builds a bridge between the domain name (e.g., perezbox.com) and the IP address (e.g., 184.24.56.17). The IP address being where you can find the server that hosts the domain. In addition to its job as a lookup table, it can also serve as an effective security control. DNS…

Mozilla Introduces Mechanism to Hijack all DNS Traffic in the Name of Privacy

By Tony Perez | September 16, 2019 |

In September of 2019 Mozilla will begin releasing DNS over HTTPS (DOH) in Firefox via their Trusted Recursive Resolver (TRR) program. A primer on DNS Security. The change is based on a theme we’ve heard before: a) the old protocols don’t take security and privacy into consideration, and b) there is the threat that people…

Rethinking the Value of Premium SSL Certificates

By Tony Perez | August 12, 2019 |

There is an active campaign to reshape how online consumers see SSL certificates, with special interest in shutting down premium certificates by the browsers and security practitioners. This article will shed some light into what is going on, provide some context as to why it’s happening; and it will also offer my own personal opinions…

ANALYZING SUCURI’S 2018 HACKED WEBSITE TREND REPORT

By Tony Perez | April 15, 2019 |

The Sucuri team recently released their second annual security report for 2018 – Hacked Website Report 2018. It looks at a representative sample of infected websites from the Sucuri customer base ONLY. This report helps understand the actions taken by bad actors once they penetrate a website. This report analyzed 25,466 infected websites and 4,426,795 cleaned files; aggregating…