I got an email on one of my domains today. It was sent to an account I don’t have so it fell into a catchall account for that domain and was forwarded to an account I monitor. The email informed me that the sender had hacked some account of mine, monitored me accessing sexually explicit… Continue reading Not Spam, Not Phishing
Category: Information Security
Creatively Exposing Your Business to Risk
There are many ways a business can be exposed to risks and some of them can seem like great ideas. While I visiting a retail location recently, I noticed this sign. The agency’s commitment to resource conservation is commendable and their creative approach seems to empower all customers while lowering the social bar… Continue reading Creatively Exposing Your Business to Risk
FedRAMP Status
Over three years into the program that allows US government agencies to use Cloud Service Providers (CSPs), there are 75 authorized products. Most federal agencies currently use five or less of the authorized cloud offerings, other agencies use these offerings extensively. The top five agencies with the most authorizations are: Department of Defense – 37 authorizations Department… Continue reading FedRAMP Status
Managing Passwords, Securely
I recently wrote about the desire, by many, to see the death of passwords. All negatives considered, if passwords go away, it won’t be because people don’t like them but because they lose their efficacy and cost proposition (they’re effectively free, transportable, satisfy the “something you know” criteria, and they’re easy to replace). After that… Continue reading Managing Passwords, Securely
The Death of Passwords
Good enough. It’s not a concept most people associate with information security people or the approach to information security but it is something we in information security desire. We don’t want to overburden ourselves with unnecessary work or even management of controls. To delve down into one area of security, namely AUTHENTICATION, passwords are… Continue reading The Death of Passwords