Browsed by
Författare: rndHashValue

Light my fire – user awareness in cyber and IRL

Light my fire – user awareness in cyber and IRL

This article was going to be about one of the pillars of IT security. One, as it turns out that is  eroded and crumbling. Unfortunately it turns out the same issues apply in real life outside of cyber.   That pillar is `awareness education`.   The unspoken reason for this is that users are the weak link we don’t control. A weak link that can be fixed with proper education. Give the user a PDF to read, 2 hours in…

Read More Read More

How Microsoft ignores basic security principles

How Microsoft ignores basic security principles

Disclaimer The following in no way excuses sloppy security practices. If you, for example, administrate your network as the domain admin you are in trouble and nothing will be able to help you. How design choices made by Microsoft make security hard From a blog entry about (not)Petya, its impact and how to mitigate similar threats [1]: authentication was federated to the on premises Active Directory (AD), which was down. Somebody got their AD DC nuked due to (not)Petya? Everyone…

Read More Read More