Some of you might already know this but for those who have not been notified yet, you can attend 4 online courses and become Splunk certified for free 🙂

Check it out!

Hackers crippled computer systems at a major hospital chain, MedStar Health Inc., one of the the largest health care providers in the Bal […]

Aircrack-ng Suite should be used in a  Linux environment and not in a Windows OS since there is not much support for it. For someone who has not been previously exposed to this tool, the […]

The Institute of Electrical and Electronics Engineers (IEEE) 802.11 is a set of media access control and physical layer for providing connectivity between wireless technology and wired […]

Epicenter, a new hi-tech office block in Sweden, are tr […]

Burp Suite is a tool that allows security testing of Web applications. This framework is very powerful for if it is used properly, it identifies vulnerabilities and exploits them. This tool […]

Keybase last week announced the alpha release of the Keybase app for the iPhone with a cryptographically secure file mount. Users can write data in an […]

CISA
Every company relies on IT to complete its project. Some of the areas that IT aid the process include development, acquiring, integrating, and maintaining application systems that are critical to the company. The SDLC is the process which every company relies on and it works great if one uses at its best capabilities.…[Read more]

Metasploit extended usage includes various capabilities, such as Mimikatz, a user friendly metepreter script composed of various tasks that attackers will want to perform on the initial […]

CISA Review:
3.5.4 – Risk associated with software development
There exist various risks with designing and developing a software, ranging from business risk to project risk. Business risk occurs when the new system may not meet the user’s requirements. On the other hand, project risk occurs when the financial budget is lim…[Read more]

Metasploit Unleashed allows various functions, such as the abilities to conduct MSF Post Exploitation,
Meterpreter Scripting, and Maintaining Access. MSF Post Exploitation allows the user to […]

CISA Review
· 3.3: Project Management Structure

There exist many factors why a project is considered a success or worst, a failure. Some of these attributes include a general approach, the detail workflow of documentation, system view, etc. Therefore, there now exist a number of standards and organization who…[Read more]

CISA Review
· 3.2: Benefits Realization

This section deals with the major factors of a project, such as cost, quality, delivery date, reliability, and dependability. These factors are further analyzed to see which weaknesses or strengths complete and maintain the system. The function of an IS Auditor is to…[Read more]

The Metasploit Unleashed (MSFU) is an open source penetration tool. This ethical training course also has the objective to provide security awareness for the underprivileged children in East […]

Organizations mostly use firewalls and Intrusion Prevention System (IPS) to protect its network infrastructure. IPS is as an evasion technique used to detect any security attacks. […]

Web services is a tactic used to improve productivity in terms of increasing the speed and quality of information flow, as well as to make it easier for producers and consumers of […]

SQL injection is one of the most common vulnerabilities in web applications and that is why it is very crucial to test for vulnerabilities when one creates a website since it […]

Web application hacking is very common through client-submission of unexpected inputs. Knowing how to leverage such vulnerabilities is very important and yet challenging […]

Malware infection is becoming very popular nowadays, ranging from Trojans, Backdoors, Zero-Days, Virus, Worms, and Polymorphic malware. Each organization has its way of handling such an […]

Social Engineering has become a powerful hacker technique that most organizations still ignore, if not, underestimate its true impact. This technique takes into advantage the […]

NetCat is a tool built by Hobbit and made available in a Windows platform by Weld Pond.  It is recommended to test the firewall and router configurations in a test environment and not […]

Packet sniffing can exists in a switched or non-switched environment. Packet sniffing usually arises from an internal threat and it is shares the same concept as the man-in-the-middle attack […]

The Enumeration process identifies valid user accounts or any weak component/resource. Some of the key areas of information include user and groups, network […]

The enterprise often contains firewalls and an intrusion detection system (IDS) to keep the organization secure. However, that is not enough to detect vulnerabilities or web attacks on an […]

In the world of hacking, attackers start with reconnaissance process which has the objective to collect intelligence about the target. This is often accomplished through port […]

All MIS doctoral students are eligible to apply for up to $500 / year in travel funds. Doctoral student travel is managed by the departmental PhD coordinator. The research […]

I still do not have a team member; if you don’t either and would like to work together, please email me at jeta.gjana@temple.edu

Thank you.

Just wanted to share today’s highlight on international hackers stealing $1 billion from more than 100 banks in 30 countries, such as Russia, U.S. and China. 1 This goes along with the topic for this week and perhaps banks should adapt a secure n-tier architecture to secure their transactions and mitigate the risk of being hacked…[Read more]

use of internet is not permitted while you are completing the exam.

Exam MIS 5101

http://www.securityweek.com/google-cloud-platform-receives-pci-dss-compliance-certification

The article discussed about Google cloud platform is compliant with the latest PCI DSS security standard to handle and process credit card payment information. This will enable customers…[Read more]