Posts Tagged ‘Web And Information Security’
Analyzing Sucuri’s 2017 Hacked Website Trend Report
The Sucuri team just released their first annual security report that looks at telemetry from hacked websites – Hacked Website Report 2017. It uses a representative sample of infected websites from the Sucuri customer base to better understand end-user behavior and bad-actor tactics. It specifically focuses on 34,371 infected websites, aggregating data from two distinct…
Read MoreDiving Into the Dark Web and Understanding the Economy Powering Cyber Attacks
This morning, Armor, a cloud security provider, released a great report into the cyber crime black market. Armor was formerly known as as FireHost – they were one of the leading hosts boasting security first and have dramatically evolved over the years. This report was put together by the Armor Threat Resistance Unit (TRU), whom extrapolated data from…
Read MorePhishing and Ransomware Leads Security Concerns for Organizations
The SANS Institute recently released their 2017 Threat Landscape Survey: User on the Front Line in which they interviewed 263 IT and security professional on the things that keep them up at night. Survey was conducted in May / June of 2017, it’s no surprise Ransomware was top of mind (e.g., WanaCry and Petya dominated…
Read MoreGoogle Begins Campaign Warning Forms Not Using HTTPS Protocol
August 2014, Google released an article sharing their thoughts on how they planned to focus on their “HTTPS everywhere” campaign (originally initiated at their Google I/O event). The premise of the idea was that every website, regardless of what it was doing, should be communicating securely between point A and point B. To help motivate…
Read MorePassword Management
The year is 2017 and we continue to give advice on the process of creating passwords. This must stop. The phrase “These are the tips to creating a secure password” should be stricken from all presentations, articles, tips and side-bar conversations. Managing passwords has never been more streamlined. Organizations have invested countless hours and resources…
Read MoreWe Must Improve the HTTPS Message
HTTPS is as important today as it has ever been. If you are transferring sensitive data you should use HTTPS to encrypt data in transit, that is not up for debate. Understand though that it is but one piece of a larger security conversation, and that’s where the message falls flat on it’s face. I…
Read More