Blog

Blog

User Groups, and Forums, and Blogs, Oh My: Top 7 Linux Resources to Increase Your Expertise

By Bob Erdman on Mon, 01/14/2019

Find what you need in our compiled list of Linux resources.

Blog

Microsoft Launches Windows Sandbox

Wed, 12/19/2018

Microsoft unveiled a new sandbox for Windows this week that can allow users to run untrusted software without having to do so in a virtual machine.

Blog

Cyber Risk Ratings: How Would Your IT Environment Score?

By Bob Erdman on Wed, 12/12/2018

Find out the type of cyber threats that endanger organizations (and their ratings), and how they can protect themselves.

Blog

Nine Steps to Effective and Sustainable Payment Card Security

Tue, 12/11/2018

These nine steps can help can help organizations looking to achieve PCI Security compliance detect weak spots in their security systems and evolve in the face of challenges.

Vulnerability Research

Analysis of NUUO NVRmini2 Stack Overflow Vulnerability

Mon, 12/10/2018

Exploiting CVE-2018-19864- Samuel S., Senior Vulnerability ResearcherDuring an audit of NUUO’s NVRmini2, a stack overflow vulnerability was discovered in a request handling function in the ‘lite_mv’ custom SIP service binary. The NUUO NVRmini2 runs a custom SIP service on TCP ports 5160 and 5150 via a binary at /NUUO/bin/lite_mv. In order to examine this bug more closely, we analyze the function...

Blog

Enterprise Security: Best Practices and Tips

By Bob Erdman on Mon, 12/03/2018

How much security is really necessary to protect yourself? Read on for tips on how to best protect your organization and avoid becoming a headline.

Vulnerability Research

NUUO Firmware Disclosure

Thu, 11/29/2018

NUUO Zero-Day BlogA vulnerability identified in NUUO NVRmini2 Network Video Recorder devices discovered by our Vulnerability Research Team (VRT). We commend NUUO for their prompt response to the identified flaws and their engineering team’s work with VRT to provide fixes for these cyber security issues.NUUO has provided a patch for the vulnerability identified on the application. The patched...

Blog

What is PIPEDA (Personal Information Protection and Electronic Documents Act)? Understand and Comply with the Data Privacy Act

Mon, 11/26/2018

Learn about the Personal Information Protection and Electronic Documents Act (PIPEDA), what type of data it covers, and how to comply with the act's new data breach notification rules, in Data Protection 101, our series on the fundamentals of information security.

Blog

The History of Data Breaches

By Juliana de Groot on Mon, 11/12/2018

As the wave of data breaches continues to crash down on companies, let’s take a look back at some of the largest and most damaging data breaches on record. Read on for a historical walk through breaches over time as well as resources for preventing data breaches.

Blog

HSBC US Customers Hit by Data Breach

Wed, 11/07/2018

HSBC, one of the largest banks in the world, confirmed this week that some of its US customers' bank accounts were hacked in October, possibly by stolen credentials.

Blog

What Is the California Consumer Privacy Act?

Mon, 11/05/2018

Learn about the California Consumer Privacy Act and its larger implications for the rest of the United States.

Blog

Cloud Watching: Ensuring Security in Every Cloud Environment

By Bob Erdman on Fri, 11/02/2018

Read on to learn about the different types of cloud environments, and the biggest security obstacle each presents.

Blog

Biggest Manufacturing Data Breaches of the 21st Century

Mon, 10/29/2018

Learn about some of the most important data breaches in the manufacturing industry in Data Protection 101, our series on the fundamentals of information security.

Blog

Top Considerations When Choosing a DPO (Data Protection Officer)

Thu, 10/25/2018

We asked 18 privacy and security experts what companies should look for when choosing a Data Protection Officer.

Blog

20 Information Security Tips for Payment Processors

Mon, 10/22/2018

We countdown 20 information security tips for payment processors.

Blog

Arcserve Zero-Day Disclosure

Fri, 10/19/2018

We are disclosing four previously undisclosed vulnerabilities within the Arcserve Unified Data Protection platform. The vulnerabilities can open the door for potential compromise of sensitive data through access to credentials, phishing attacks and the ability for a hacker to read files without authentication from the hosting system.________________________________________TitleDDI-VRT-2018-18 -...

Blog

Authentication Bypass in libSSH Leaves Servers Vulnerable

Wed, 10/17/2018

An authentication bypass in the SSH library libSSH disclosed this week could allow attackers to takeover vulnerable servers without authentication.

Blog

Ten Key Questions CEOs Should Ask About Cybersecurity Readiness

Mon, 10/08/2018

Learn how a CEO can support their company's cybersecurity in Data Protection 101, our series on the fundamentals of information security.

Blog

Network Scanning for Complicated, Growing or Distributed Networks

Sun, 10/07/2018

Upgrade Your Network ScannerFree scanners are great – up to a point. That point is when your network reaches a critical size, your assets have acquired a critical value or your company, industry (or Uncle Sam) has set new compliance requirements that those freebee tools just can’t handle.Running multiple network scanning tools is a painEveryone has a half dozen network scanners sitting around and...

Blog

Port Scanning Tools VS Vulnerability Assessment Tools

Sat, 10/06/2018

Port scanning tools – just the first step to network securityYour port scanning tools are nice, but...When your network reaches a critical size, your assets have acquired a critical value or when new compliance standards hit, your port scanning tools may have reached their limit. It’s the job of vulnerability assessment and management tools to combine port scanning with the investigation of...

User Groups, and Forums, and Blogs, Oh My: Top 7 Linux Resources to Increase Your Expertise

Microsoft Launches Windows Sandbox

Cyber Risk Ratings: How Would Your IT Environment Score?

Nine Steps to Effective and Sustainable Payment Card Security

Analysis of NUUO NVRmini2 Stack Overflow Vulnerability

Enterprise Security: Best Practices and Tips

NUUO Firmware Disclosure

What is PIPEDA (Personal Information Protection and Electronic Documents Act)? Understand and Comply with the Data Privacy Act

The History of Data Breaches

HSBC US Customers Hit by Data Breach

What Is the California Consumer Privacy Act?

Cloud Watching: Ensuring Security in Every Cloud Environment

Biggest Manufacturing Data Breaches of the 21st Century

Top Considerations When Choosing a DPO (Data Protection Officer)

20 Information Security Tips for Payment Processors

Arcserve Zero-Day Disclosure

Authentication Bypass in libSSH Leaves Servers Vulnerable

Ten Key Questions CEOs Should Ask About Cybersecurity Readiness

Network Scanning for Complicated, Growing or Distributed Networks

Port Scanning Tools VS Vulnerability Assessment Tools

Privacy Policy

Cookie Policy

Terms of Service

Accessibility

Impressum