Jason A Lindsley

I agree that ransomware is a top threat right now. I found it interesting that two of three respondents use security standards or frameworks to set their foundational controls, but 65% of respondents also indicated that the lack the ability to enforce their required controls. 93% felt that if they could enforce these foundational controls, it…[Read more]

I agree with this article that there is definitely a skills gap in our field. It is tough for companies to find the right talent at the salaries they are willing to pay. Most have champagne taste and beer money! A lot of the strong talent seems to be getting absorbed by high tech companies, financial industry, and government contracts. These…[Read more]

Interesting article. I’m not really surprise that an individuals voiceprint changes over time. I can usually guess whether I’m talking to an older person or a younger person on the phone. Sometimes I’m fooled. Either way, I agree this isn’t a great form of biometric security. It might be helpful in identifying any individual, but I would not…[Read more]

Thanks for sharing Shain. I think this is one of the many reasons that Facebook has become so successful. They strategically engage their users to share their emotions, interests, passions, and connections in a way they can correlate that data and benefit from it. I think some of the increased benefits they are experiencing from this are…[Read more]

Luckily this was detected and responded to and appears to have had minimal impact. I’m curious as to what triggered the investigation. Usually, an investigation will occur because the card associations (e.g. Visa, MasterCard) identify a fraud trend at specific merchant. Sometimes, however security controls detect anomalies on the network and…[Read more]

Thanks for tracking this down Loi Van. That is pretty ironic that the app I use for this class was at one time vulnerable! I am not very familiar with the low and medium priority apps. Hopefully, the developers fix these apps or the rest are released soon!

I’m not surprised by anything in this article. I assume that any commercial network connected device is tracking my activity and finding a way to profit off of my data. Then I see some of the ad recommendations that are showing up when I browse the web and it’s obvious!

I do believe this is a privacy violation, but I think people have…[Read more]

This is really disturbing news to me. While I’m glad they took down the sites, it’s especially disturbing that they existed in the first place. It also concerns me that they are accepting bitcoin ransom to put the sites back up. If they actual put one of these CP sites back up, they are essentially profiting for them existing in the first…[Read more]

This is really cool what they are teaching the youth in Israel. The tools and content now available to teach computers and coding is very vast. I don’t think it is so much of a challenge to teach kids the basics of coding and cybersecurity. I think the greater challenge is finding teachers in the public school system with the knowledge to teach…[Read more]

This is somewhat concerning, but I do agree with Visa that there are several other fraud prevention and detection techniques that mitigate the risk of guessing credit card details. I think that merchant should have more accountability to detect these types of attacks on their payment processing networks. There is never a reason to allow 60,000…[Read more]

Not sure how I feel about this one. I agree that this is a unique approach and will help to identify users that are vulnerable to leaked passwords, but funding these criminals seems to be enabling to me. When it comes to passwords and authentication, I would prefer Facebook to invest more in cutting edge multi-factor authentication solutions.

I think regulatory standards would help with proprietary IoT devices that are sold and distributed by common manufacturers, however there are millions of devices developed using open-source software. For example, anyone can buy a RaspberryPi and download some common open source application code from github and connect the device to the internet.

Unfortunately, I think we are going to start seeing a lot more of this. Leaks of user information for sites such as Ashley Madison have shown how damaging a users browsing history can be. If attackers start to actual expose this type of information via channels such as social media, we may actually see more people paying the ransom (and…[Read more]