Oct 31, 2020
Posted in blog, Information Security, News
There has been a domain scam particularly in Canada that has been going on for quite awhile. When I was introduced to it taking place and being a person, they also tried to target. I decided it would be best to expose how they try to scam people so that people do not fall prey to them. I have heard stories of people falling for this scam. This post is for the ones that end up landing on this blog post for more info.
Why is this important
Personally, reading all the comments and posts online about these scammers. I feel the right thing to do is to create some awareness, so more people do not fall prey to the scam. There are many innocent victims, who may fall for this scam due to the lack of cyber security awareness. So, lets go out there and educate people and let them know about this scam. Hopefully, it can at least prevent a few people from falling prey to this scam.
What did they do
This organization is sending thousands of letters on an ongoing basis to people. These mailed letters show up at your home or offices and make it seem like it is an urgent matter to address right away. The letter will state a domain name you own, the expiry date of the domain, a section to paste your credit card number, and an envelope the mail the form back.
Read more Of This Post
Nov 18, 2019
Posted in blog, Featured, Information Security, News, security awareness, social engineering, The Internet Of Things, Uncategorised
National Cybersecurity Awareness Month 2019
So, I ended up posting this much later than I anticipated. I originally had it ready for October. However, I had to make some final edits and had to delay it. None the less, here it is a month later!
Cyber security awareness month is coming up real soon. In
October, it is nationally known as cyber security month. Many security leaders
present important security topics. This is also a time where many companies,
government units and various organizations educate their members on cyber
security. Many hold training workshops, lectures and send out updates to their
workers.
I’d like to highlight some key points that readers should
try to implement and incorporate in their personal lives and at work.
The US Cert organization has built some excellent cyber
security training.
There detailed reports and educational training can be found all for free à https://niccs.us-cert.gov/national-cybersecurity-awareness-month-2019
Read more About This Post
Jul 22, 2019
Posted in blog, Breaches, Information Security, News
Equifax Breach Lessons Learned
After reading the Equifax breach report released by U.S. House of Representatives Committee on Oversight and Government Reform. This would be a great post to summarize and list out key items that went wrong in the Equifax breach. Hopefully, it will lead to a wake up call for other companies in order to better their own information security.
Security Representative on the Core team
It’s highly important to have someone that understands information security on your core team. Many times, the task gets pushed to the Legal or IT team core team members. This is one of the reasons that led to the breach. IT operational tasks and security tasks need to fall under a specific leader. Ideally, someone that understand security and not just IT. In Equifax’s case, security was represented by the IT team core member. However, their views were not in line with the security team leader. Therefore, something that may be of risk may not reach the CEO’s level and will get missed. However, Read The Full Post
Jan 13, 2017
Posted in Breaches, News
Cellebrite Systems Breeched
Cellebrite (https://cellebrite.com) is an Israeli company that specializes in mobile forensics.
They have created a well known product that is called Universal Forensic Extraction Device (UFED). This tool basically can extract data from most mobile devices. They are able to also unlock mobile devices with a passcode. I have used a much older version of this tool in the past. You may see the catch the details in my Research Project here –> https://www.stealthbay.com/hardening-mobile-phone-devices/
What was taken
Based off a popular website called “Motherboard” who first posted about this breech. Cellebrite has lost over 900GB worth of data. Now, that is a lot of information and data that was taken. My assumption is that a lot of the data is related to tools and software made use of for forensic investigations. (more…)
Sep 5, 2016
Posted in Featured, mobile, New Products, News
Samsung Note 7 Mobile Devices
Samsung recently released a new phone to their existing line of phones.
They released their new device the Note 7, which made some amazing sales in the first week of its release.
The demand was so high, they they ended up selling out all of their preorders.
However, it seems that Samsung now has come head to head with a new global issue.
An announcement was made recently which revealed that the Samsung Note 7 devices can melt, catch on fire and even explode when being charged.
The issue seems to reside from using a battery supplier than possibly did not make high quality batteries.
The models sold in China had a battery made from another supplier, which might be why none of these issues have been heard of in China so far.
(more…)