Webinar: Attack Simulation TTPs: Group Policy and Audit Setting Enumeration with Carlos Perez

June 11, 2019 | By:

Join us Wednesday June 19th at 1PM Eastern Situational awareness is key when one lands access on a target system as part of an attack simulation. Knowing what controls are present and which are likely present allows performance of a proper threat assessment for the access that has been obtained. This information is critical because…


TrustedSec Podcast Episode 3.15 – Let us Diagnose Your Information Security Failings

June 07, 2019 | By:

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bollinger, and Steve Maxwell! Stories Title: Quest Diagnostics Says Up to 12 Million Patients May Have Had Financial, Medical, Personal Information Breached URL: https://www.nbcnewyork.com/news/local/Quest-Diagnostics-12-Million-People-Data-Breach-510754611.html Author:…


Tech Tuesdays: Hacking A City

May 28, 2019 | By:

GRC Practice Lead Alex Hamerstone joins WOSU radio for their Tech Tuesday to discuss Baltimore’s government computer systems and Cleveland’s airport falling victim to ransomware attacks. Listen to the full radio clip “Tech Tuesdays: Hacking A City” now!


Are free phone charging stations in airports safe?

May 28, 2019 | By:

Hackers are using airport USB charging stations to steal your information. Remediation Services Practice Lead Paul Sems shares what you should know with WKYC 3 in their story “Are free phone charging stations in airports safe?”


Number of ATMs globally drops

May 23, 2019 | By:

News 5 Cleveland talks with GRC Practice Lead Alex Hamerstone on the number of ATMs worldwide being down for the first time ever. View the full article “Number of ATMs globally drops for the first time ever, more people using mobile peer-to-peer payment services” here.


Webinar: You’ve Been Framed! Using Frameworks to Improve and Defend your Security Program

May 21, 2019 | By:

Please note this webinar took place on Thursday, May 30th The majority of organizations that are in the process of building a security program are starting with a security framework. Frameworks seek to provide a reference for planning but also ensure that an organization can benefit from the learnings and successes of the security community…


Google Has Stored Some Passwords in Plaintext Since 2005

May 21, 2019 | By:

CEO David Kennedy talks with WIRED about another password storage problem from a large tech company. G Suite users should pay attention! Read more about what happened in the article “Google Has Stored Some Passwords in Plaintext Since 2005“


Your phone is spying? The truth behind the strange phenomenon

May 20, 2019 | By:

GRC Practice Lead Alex Hamerstone talks with Fox News about eerie tales of your phone ‘listening’ to what you say. “It’s easy to feel like our phone is spying on us. It is actually spying on us, but it is not eavesdropping.” – Hamerstone. Read the full article “Your phone is spying? The truth behind…


Ransomware Attack Cripples Baltimore’s City Systems

May 15, 2019 | By:

Watch the full news clip HERE. CEO David Kennedy is quoted on Fox News as they investigate Baltimore’s ransomware attack. City leaders says there’s no end in sight as hackers hold Baltimore city’s files hostage; Gillian Turner reports.


Owning O365 Through Better Brute-Forcing

May 14, 2019 | By:

TL;DR: User Enumeration is key. Done enumerating? Do more. The classic passwords still work. Once you get some credentials, get more. Office 365 (O365) has become a trend in organizations. More and more, administrators are offloading their mail to The Cloud™. No longer are admins shackled to their Exchange servers, executing patch after patch in…