Brock Donnelly

I wonder how many people who pay a ransom for their data actually get it returned. I seem to remember from previous discussions that some hacker groups are using ransomware designed by others with no intention of providing a resolution. I think it was Krebs that found a fair amount of found ransomware had a consistent account as to where to send…[Read more]

https://thehackernews.com/2018/04/cisco-switches-hacking.html

Critical flaw leaves thousands of Cisco Switches vulnerable to remote hacking

Security researchers have found a base Common Vulnerability Scoring System (CVSS) score of 9.8 (critical) vulnerability in Cisco’s IOS software. With this flaw, an unauthorized remote hacker could…[Read more]

Sadly patches for some of these IoT devices is not possible and we will have to wait for them to “time out” in this world. Most of these devices are from lower end manufactures that are not worried with security but rather profit and cost. One of the articles I read about his from Krebs stated that the firmware from one manufacturers is not…[Read more]

I really don’t think that chipped based transaction take all that long. I would say that they feel to take the same time. Sometimes I wonder if this magnification of time measurement is due to the fact that people can’t handle “uncomfortable” silence. Have you ever had to trouble shoot a computer issue in front of an audience? Have you ever ha…[Read more]

I was wondering if we would see malware to assist in cryptocurrency mining. It’s brilliant really. I don’t have nougat computers to mine, nor enough money to acquire them… well just steal everyone else memory resources.

I always thought A library at a major education institution would make a good coin mining operation. Looks like I am not t…[Read more]

I don’t see this at too much of a security concern for IOS current OS or iBoot. As the article mentioned it is an older version for OS9. It is possible they are still using portions of iBoots OS9 code but generational changed to this type of code is a swift way to mitigate vulnerabilities.

Apple’s real problem lays with their employees eth…[Read more]

I don’t know enough about the full functions of an ATM machine. What do they store in their Electronic Journals? How long? Seeking answers on the internet I found this pdf of ATM Software
Security Best Practices Guide from ATIMA an independent, non-profit trade association for ATM connivence and growth.…[Read more]

$1 million loss is still a large loss to any organization. It might cost a lot to perform upgrades and especially a redesign… BUT NOW Diebold Nixdorf is at least -$1 million in the hole and is still holding the bag for a solution. This is another example of a failure to address security concerns or a lack auditing. Upgrades and patches are…[Read more]

File taxes early is probably the most efficient way to keep you tax return in your name but it is a highly improbable outcome. I have never been able to file early. Forget your employer, if you invest in stocks it takes until March to see your documents. That has been my experience at least. When we are at the mercy of other, larger entities, what…[Read more]

Wow, imagine the size of the botnet if printers became the zombies of a DDoS attack. It is a long list of manufactures out there and a lot of printers:
Canon, Fujitsu, HP, Konica Minolta, Lexmark, Xerox, Sharp, Kyocera Mita, Kodak, Brother, Samsung, Toshiba…

I would have to agree with you regarding the class action law suit. I would imagine it would be international law. That sounds like a nightmare of dead ends.

I think with the scope of the average consumer the responsibility of protection will fall on the manufacturer. Poor development or foresight is at fault here. There are IoT devices out…[Read more]

Since a large portion of these devices have no possible fix in sight. Scary but our months and years to come will transition into timeframes of equipment upgrades, failures and passing technology.

Wow so Google wants to start offering services (Chronicle) to increase cybersecurity intrusions ten fold. I wonder if this service is born of their own necessity much like AWS began to Amazon. To which Amazon is now the majority leader in cloud services. This is really interesting news but so much of it seems to be based on Alphabets best hopes…[Read more]

Physical security falls short when it comes to pacemakers. The common connections to the pacemakers recalled during this time communicate through bluetooth, or at least an earlier version of it. It was so new that security was an afterthought. yes another one of these mishaps.

check out these three reasons as to why pacemakers are vulnerable…[Read more]

This is a good list of what we should do, but what can we do when manufacturers with a minimal overhead don’t include a way to change default credentials. In response to telnet and SSH on these devices:
“The issue with these particular devices is that a user cannot feasibly change this password,” Flashpoint’s Zach Wikholm told Krebs…[Read more]

I was able to get into the Imagine link but the oldest version of windows available to me was Windows 8. Did anyone find Windows 7 when they logged in?

My choice is purely on preference as I use and enjoy apple computers. Linux. I might be biased in that respect but I also agree with open source code. Regardless of service my choice is based upon the availability of resources and the community support that comes with linux.