-
Patrick DeStefano (tuc50677) commented on the post, Week 11 Update, on the site 6 years, 6 months ago
Coming from a software development QA background, this scares me that this is even a possibility. Computers don’t do things randomly unless the code or program tells it to (At least Skynet hasn’t taken over yet). This tells me that there has to be certain very corner case scenarios triggering this bit to get flipped. If there is a way to…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 11 Update, on the site 6 years, 6 months ago
Hopefully users of these older machines are able to recognize that their system is one of the vulnerable ones and have the financial means to upgrade or remediate the risk . (Most probably won’t even realize until it’s too late though).
-
Patrick DeStefano (tuc50677) commented on the post, Week 11 Update, on the site 6 years, 6 months ago
Great Article Sev,
I personally wasn’t aware Apple took this particular stance on user privacy, that being said I’m glad they do. It’s funny in that I just got off the phone with my friend. We were talking about Maserati cars with each other. He has android and I have an iPhone. He sent me a screenshot of an ad for a Maserati about 5…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 10 Update, on the site 6 years, 6 months ago
Thanks for this, I’m going to have to check it out. I’ve personally only ever had my credit card information stolen once, however my friend seems to have it happen every few months or so. It would be interesting to find out what is out there on the dark web.
It would be wise for any financial services company such as banks and credit…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 10 Update, on the site 6 years, 6 months ago
Sounds like they need some IT Security Governance. Not getting into politics, but it’s no secret that our government is not exactly a well oiled and efficient machine. It’s one of the slowest acting and one of the last to come up to speed with new technologies and trends (Unless you’re the military). These municipalities, such as Atlanta in…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 10 Update, on the site 6 years, 6 months ago
I agree Jason,
While we must always be mindful of keeping an eye on our financial well being/reporting, when we are in a situation where we don’t have control of an entity having our data or not, such as a person not being in control if a specific credit reporting agency has our PII or not, it’s inherently up to these companies to protect the…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 7 Update, on the site 6 years, 7 months ago
The article discusses spoofing, which occurs when the source IP address is faked to make a destination PC think the packet is coming from somewhere else, possibly a source IP which can get through a firewall if not protected for. This problem is not specific to IP addresses. There has also been a recent surge in Phone number spoofing. This…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 7 Update, on the site 6 years, 7 months ago
A common trend with all of these attacks which seem to be surfacing are due to malware being downloaded unknowingly via email phishing or by inappropriately downloading from non-company sites. The connection here is that employee training to not go to these types of sites and for what to look for in emails is key.
This article explains…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 7 Update, on the site 6 years, 7 months ago
It’s really fascinating/scary that these things can get so advanced to the point where they start camouflaging themselves whenever forensics are run on the infected pc, as the article states. We need to continue to develop and advancing our detection methodologies and applications to be able to keep up with these new types of malware.…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 7 Update, on the site 6 years, 7 months ago
This seems to be referring to script-based malware which is becoming more and more popular these days. As it mentions in the article, a lot of these can be communicated through phishing emails. A combination of continuing employee training, firewall rules, and baselining can all be used to lower the risk of an attack as well as the severity of…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 4 Update, on the site 6 years, 7 months ago
This technology is there and right now most banks in the US have the ability to enable PIN chip transactions, but they just have to roll it out on a card member level. I remember back in 2012, I was studying abroad in Shanghai and I went to Walmart and was asked for a pin when checking out. Fortunately I was able to just press Enter or enter…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 4 Update, on the site 6 years, 7 months ago
It’s always a good idea to check for skimmers whenever using a card swiper. I give you props for using the credit card as opposed to a debit card as gas stations can be a prime location for this type of fraud. I can’t wait for the day where AFDs (Automated Fuel Dispensers) begin allowing mobile wallet payments as they are much more secure than…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 4 Update, on the site 6 years, 7 months ago
Scott, a friend of mine who works in InfoSec for a hospital here in Philly was mentioning that this happened to them a month or two ago (maybe we are thinking of the same thing). He told me that they noticed one of their servers was running at a very high capacity for a prolonged period. After they researched, they found that it was being used…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 4 Update, on the site 6 years, 7 months ago
I would strongly suggest using an emerging technology, mobile wallets, with either your ATM/Debit cards or Credit Cards. The technology used with processing ApplePay, SamsungPay, AndroidPay, or other mobile wallets is far superior to even using chip cards themselves. These mobile wallets work with your bank and setup a token number to use and…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 4 Update, on the site 6 years, 7 months ago
I agree Duy,
Related to which party is responsible for any fraud, there was a liability shift which happened back in October of 2015. Essentially, after Oct 2015, legally, between the merchant and credit card company, whichever party has the lesser security measures will be liable for any fraud which occurred on that account. If an issuer…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 3 Update, on the site 6 years, 7 months ago
This is a really risky situation. If a fraudster is able to get a valid SSN and a Name, or even a birthday, they could easily open all kinds of credit cards, bank accounts, etc, and virtually ruin someones life with credit fraud. With the increases in these types of crime, could it possibly be time to upgrade our government SSN system from a…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 3 Update, on the site 6 years, 7 months ago
From my experience in the industry, generally speaking, bank-owned ATM’s are more likely to be more updated and have better security than non-bank owned ATMs. I know several banks are now rolling out ATMs which have enhanced security features to the point where you don’t even need your ATM card. This new technology can use token technology…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 1 Update, on the site 6 years, 7 months ago
Brock,
I like the approach you took with making the financial case for cyber security enhancements. The more knowledgable cyber criminals are becoming, the more reason for companies to invest in proper security controls to protect their assets as well as their clients/customers. That 20% revenue loss is a scary number for any company. With…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 1 Update, on the site 6 years, 7 months ago
I agree! With all the older technology out there which was introduced before security became as big of a concern as it is today (and some that is still being put into production), its imperative to educate companies developing theses products as well as the users on the proper ways of protecting the devices. Firewalls, password updates,…[Read more]
-
Patrick DeStefano (tuc50677) commented on the post, Week 1 Update, on the site 6 years, 7 months ago
I completely agree Mark,
Change is always going to cause some friction and growing pains. Even in the workplace, I’m sure we all know of times when processes keep changing and we all get frustrated (because of course, we just mastered the old process). The key here is proper and effective communication. Everyone wants to be in control of…[Read more]
- Load More