Ahmed A. Alkaysi

Many good points Anthony. There are many steps people can take to avoid being in a situation where they will be targeted by an effective social engineering campaign. Too often I see what should be private information made public on social media. The first step of securing ones personal info, don’t post it. Don’t tell them what team you are on at…[Read more]

Wow very interesting article Mengqi. This is concerning as 3d printers are becoming mainstream. Good point on the fact that IT experts as well as industry experts would need to work together in order for this type of attack to be successful. I can see how these attacks can be launched by state sponsored actors with a political agenda, as the…[Read more]

I am super paranoid about connect to any open Wifi network. It is so easy to hijack an open wifi or just have a fake one setup. It is just not worth the risk to connect to an open network. One thing to keep in mind, even you if decide to connect on open wifi and you might not even check your email or social media, you are still connecting using…[Read more]

Interesting article Vaibhav. Very scary, and hopefully people aren’t gullible enough to send a selfie of their ID card, especially if its related to an adult video app..I’m sorry, but if you get tricked into doing this, then its your fault.

Exactly. Agencies need to take a pro-active approach to cyber security, but just deciding to upgrade it because it is “old” is ridiculous.

This is why it is extremely important to have some sort of security control measures in place. Even the most basic will include requirements for 2 factor authentication or knowing what systems are connected to the networks. It always seems like Government entities have the worse security measures in place.

Having a month dedicated to cyber security has been a good idea. At work, we have been bombarded with messages regarding Cyber Security national awareness month. I believe the general public is becoming more aware with IT security in general. Organizations need to continue sending messages out so that more people will become interested in security…[Read more]

Interesting article Mengqi. Companies should do the contrary, making sure their apps are secured before releasing it to the public It doesn’t matter how fast an app is release, if it has security flaws than it will be a terrible product and customers will not use it. Better to be slow and secured, than fast and flawed. As security is now a hot…[Read more]

This will always be an issue when you are using electronic devices to satisfy the election. Maybe its time to go back to paper voting and manually count the votes. Might sound primitive, but at least it will mitigate the fraud that most likely goes on using electronic devices.

Hacking and disrupting nuclear plants is a huge issue. I remember there was a virus called “Stuxnet” that disrupted Iranian nuclear ambitions. It turns out that virus was created by America and Israel. One of the fears with using the virus was the possibility of it getting out and being used on other nuclear facilities. This might be the same type…[Read more]

I can totally relate to this issue. When you need to login to multiple apps and environments, it gets frustrating to create a brand new “strong” password for each. A lot of times I would need to reset a password, just to forget it again. Sadly, to solve this problem, there is little variance between my passwords now, although I try not to keep…[Read more]

This is pretty interesting and really cool Instead of having to manage multiple VM machines, I guess this OS manages it for you. I will definitely check this OS out. Regarding isolation, what you said make sense. It will always be a cat-and-mouse game when it comes to cyber security. Maybe the best thing to do is just isolate and mitigate as much…[Read more]

Good point on the use of business tactics in order to scale their “company”. They run their businesses (cyber Mafias) more effectively than a lot of other legitimate businesses, I have link below that describes the different techniques they use to run their organized crime like a…[Read more]

I get nervous when ever we call code “unhackable.” I don’t believe anything is ever “unhackable.” It’s good we are spending a lot of time to make sure the code is as locked down as possible before it is sent to production. I think following general security standards while developing, will reduce a majority of the vulnerabilities we face today.

I agree Loi. A combination of white/blacklisting is best. The company should know “what is bad”, and certainly should not allow ANY app on its networks. Whitelisting an app should not mean that no attention will be paid to it, I believe it still needs to undergo vulnerability scans and have logs checked every once in a while to insure it has not…[Read more]

You are totally right Loi. The culture at Wells Fargo has really created an environment where salespeople are pressured into opening these fake accounts. I read many articles where former workers felt they were getting fired if they didn’t meet the quota, and how they were stressed out all the time. It was easy for this crook to target 8′ accounts…[Read more]