@amanda-m-rossetti
Active 6 years, 2 months ago-
Amanda M Rossetti wrote a new post on the site MIS 5212-Advanced Penetration Testing 6 years, 6 months ago
In a case of too stupid not to share Commonwealth Bank lost 12 million customers’ data including their financial histories from 2004 to 2014 but this wasn’t your normal breach. The magnetic tape backups just w […]
-
Amanda M Rossetti wrote a new post on the site MIS 5212-Advanced Penetration Testing 6 years, 8 months ago
I never considered that that a health crisis could also cause cyber security issues but this article makes a good point about why it occurs. With anything that causes the volume of what a user is asked to do to […]
-
I like the title for this post – it’s clever! And I can see that happening since the epidemic is causing many problems and when doctors and nurses are rushed, they will ignore protocols. As hospitals are usually targeted by hackers, this situation will definitely not help.
-
-
Amanda M Rossetti commented on the post, Unsecured Network-Enabled Car Components Could Cause Widespread Deaths, on the site 6 years, 11 months ago
There was a Criminal Minds episode a few years ago about just this, a serial killer hacking into cars to force them to kill pedestrians. Obviously hacking is never as simple as it is displayed on the TV but it demonstrated the seriousness of the issue. I think this another case of why the internet of things is so terrifying. I believe automakers…[Read more]
-
Amanda M Rossetti commented on the post, Online Fraud is not a bad thing…, on the site 6 years, 11 months ago
I have to agree with Elizabeth. Just because the fraud occurring benefits the consumer instead of them being the victim doesn’t make the fraud ok. In the same vein, just because brick and mortar stores plan and budget for shrinkage doesn’t make stealing from them ok, no matter how large and greedy the retailer may be. Fraud is a cost of doing…[Read more]
-
Amanda M Rossetti commented on the post, Half of Americans Unsure of Online Shopping Safety, on the site 6 years, 11 months ago
I found a few articles on this when I was looking for an article this week. A lot of the tips given are the same ones people should always use when online such as making sure the URL is spelled correctly and don’t click links from emails without verifying the sender. Hackers are becoming increasingly sophisticated though, making their websites and…[Read more]
-
Amanda M Rossetti wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 6 years, 11 months ago
Research from the European Banking Authority (EBA) says that the majority of EU banks believe their operational risks will increase. Many of them are pointing to to cyber risks and data security to explain why […]
-
In-house is expensive…and outsourcing is risky.
-
comprehensive investigation before making a deal is needed. The organization needs to consider every possibles they come up with.
-
-
Amanda M Rossetti wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 6 years, 12 months ago
On the heels Deloitte’s security vulnerability coming to light another company large in the cyber security space reportedly suffers from lax cyber security themselves. The article explains that Accenture ha […]
-
Amanda,
The issue of having these big companies losing sensitive information is really scary. I think they have to be good examples to other organizations regarding securing data. After Equifax leakage, I won’t be surprise if Accenture confirm in the future of losing sensitive information that is related to this incident. I learned from other similar incidents that happened in the past (Example: Target breach in 2013) that most of these big institutions are not honest with their clients and show that their data is secured even if they get attacked.
Very nice article to learn from. -
Hello Amanda,
This article is quite interesting because it throws light on the fact how big companies can too struggle in protecting their sensitive information. The case of Accenture is quite surprising though, but many corporations ignore threats or instance of attacks and later struggle with breaches.
-
-
Amanda M Rossetti wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 7 years ago
Members of the European Union have drafted a document stating that cyber attacks by foreign nations could be considered an act of war. They say that members of the EU may respond to cyber attacks with […]
-
Amanda M Rossetti commented on the post, Attack of the Hack Back, on the site 7 years ago
I agree with the author that ‘hacking back’ is a terrible idea and should not be legal. There is no way to draw a clean line on what is ‘hacking back’ and was is just plain hacking. The writers of the bill couldn’t even do it, evidenced in the contradictory wording about when ‘hacking back’ is allowed. If you figure out that someone has hacked you…[Read more]
-
Amanda M Rossetti wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 7 years ago
Researchers at Check Point Research are warning that they have found a new Botnet, IoTroop. It users IoT devices similar to the Mirai botnet from last year that shut down the internet mostly for the eastern US, […]
-
Amanda,
I think the IoT is ripe for spreading infection. These devices are not built with security in mind, and are difficult to update / patch (if one is even available). The problem is that people don’t think it will ever happen to them. They think, “Why would anyone want to hack me?” but don’t realize they could be a launch point for complete internet shut down. They think they will never get hacked.
It is like driving a car. People, sometimes drive a bit crazy on the roads. They weave in and out of cars, switch multiple lanes at a time, and ride the car’s “butt” in front of them. They are aware of the risks, but may not be fully aware of the consequences. The reckless driver may end up in an accident, causing a long traffic jam and affecting other drivers, or even cause their own death.
Well… A user driving on the internet, who isn’t very secure can cause other users to suffer or even destroy their own system.
-
-
Amanda M Rossetti commented on the post, Don't overlook physical controls, on the site 7 years ago
This is both interesting and unsurprising to me. A lot or organizations are so focused on what gets into their building (badges required, metal detectors etc) that they don’t often think of what gets out. I worked in the data center of a major insurance company and a lot of the people I worked with took old pieces and parts home after they were…[Read more]
-
Amanda M Rossetti wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 7 years ago
My article this week discusses the business risks associated with cyber security. It lists many statistics about how many organizations are attacked and the amount of money and reputation lost as a result of these […]
-
Amanda,
I do believe that cyber attacks are not only an IT problem but it can be a big business problem. A good example of that, when Target’s customers credit cards database attacked in 2013, not the only IT department was influenced because it has to work on securing the organization system, but the company lost so much business since the customers stop trusting using their credit cards in the stores or online.
Very interesting article that aware so many companies don’t invert on building a strong IT security department to start soon to do so.
-
-
Amanda M Rossetti commented on the post, Week 3 Presentation, on the site 7 years ago
The free version of CCleaner is also patched, it just does not have auto-update enabled so the user has to manually update it to the patched version, while the paid one does have auto-update so the user doesn’t have to do anything to have the patched version. I do think it was Piriform’s responsibility to ensure that their product does not include…[Read more]
-
Amanda M Rossetti commented on the post, VPN provider assists FBI in arrest, on the site 7 years ago
This is both interesting and scary. I have friends that live in China and use VPNs to get on websites that the government blocks, such as Facebook. Do I think the Chinese government is going to go arrest random citizens for using Facebook? I think it is unlikely, but this does set a dangerous precedent. I’m all for catching the cyber bad guys but…[Read more]
-
Amanda M Rossetti wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 7 years ago
My article discusses the 5 worst cybersecurity habits. The 5 it identifies are: having a lax attitude, not protecting their email, clicking hyperlinks in emails, poor password practices, and not backup up data. […]
-
Hi Amanda:
I think this article is fascinating and try to think like hackers is the best way to prevent any cyber attack
-
Amanda – That’s an interesting article and definitely a good summary by you. It gives a lot of information about common habits when dealing with cybersecurity. Out of all the 5, I was personally able to relate No Data Backups as one of the worst habits I could have because I sometimes fail to do data backups on a constant basis. I wonder what would happen when one wants to recover all the uncorrupted data back. I find this quite interesting and there is a lot to learn from Lax attitude as well, something that I usually find across many people.
-
-
Amanda M Rossetti commented on the post, US pressured North Korea by overwhelming hackers with data traffic, on the site 7 years, 1 month ago
This is very interesting and reminds me of the discussion we had a few weeks ago about cyber laws and whether cyber attacks executed by and against governments should be considered acts of war and therefore bound by the same international agreements. As a US citizen, I’m not upset about North Korea being talked into doing some things favorable to…[Read more]
-
Amanda M Rossetti commented on the post, Week 5 Presentation, on the site 7 years, 1 month ago
My article talks about Equifax’s external auditor, E&Y, and how they failed to uncover the massive security holes that were exploited during the data breach. While E&Y’s primary responsibility is giving and independent opinion about E…[Read more]
-
Amanda M Rossetti posted a new activity comment 7 years, 1 month ago
Deloitte, a ‘big four’ accounting firm and one of the largest cyber security consulting firms, was breached. Attackers got into their global email server, which contained sensitive client data. Deloitte does a lot of work not only for…[Read more]
-
Amanda M Rossetti posted a new activity comment 7 years, 1 month ago
I just posted the Time article about this before I saw your post. It caught my eye because I also use CCleaner and will be updating it today. I’m curious to know what broke down in their internal controls to allow the modified version to be the one released to the public. They should have had multiple levels of testing and approval prior to…[Read more]
-
Amanda M Rossetti posted a new activity comment 7 years, 1 month ago
http://time.com/4946576/ccleaner-malware-hack/
CCleaner, a tool used by many too delete unnecessary filed on their Windows computer and keep it running smoothly, was infiltrated with malware. Piriform, the company that developed CCleaner says they noticed an unknown IP address receiving data from the software on September 12th. They have…[Read more]
- Load More
