Earlier this year, CISA (Cybersecurity and Infrastructure Security Agency) launched a new program to help protect critical infrastructure institutions by safeguarding their information systems from ransomware cybercriminals. The two main purposes of this new program, called Ransomware Vulnerability Warning Pilot [...]
Firewall patching (updating firmware) is one of the most prudent aspects of network security management that, if neglected, can have dire consequences for your company. Now more than ever, consistent firewall patching is a must have for every business, big [...]
Today marks the first day of National Cybersecurity Awareness Month. I am pleased to see one of the themes for this year’s National Cybersecurity Awareness Month, is about doing security updates. Only by patching your software in a timely manner, [...]
Overview of Windows/Internet Explorer Security Patch Microsoft has advised Windows/Internet Explorer users to install an “emergency” out-of-band security patch (i.e. not released on patch-Tuesday) for a recently detected Zero-Day-Exploit (i.e an exploit that has already been actively used prior [...]
Oli Thordarson, CEO of Alvaka Networks, begs to differ... This is an interesting article I read in ZDnet, Cybersecurity: One in three breaches are caused by unpatched vulnerabilities, about software vulnerability patching. I found it interesting because I took [...]
Originally published on TechTarget. Alvaka’s COO and CISO—Kevin McDonald—discusses that, although cyber attackers are the main culprits for ransomware attacks, the companies that release flawed software or those who don’t install patches are not off the hook. In early May, [...]
Originally published on June 19, 2017 on TechTarget. Alvaka’s COO and CISO, Kevin McDonald, examines the real-world damage caused by CIA and NSA data leaks, putting dangerous government cyberweapons in the hands of hackers. WikiLeaks' CIA data dump shook a [...]
I participate in IT professional industry forums, where peers ask questions of other peers. Someone in the forum made a somewhat disjointed post questioning the severity for the recent Meltdown and Spectre security vulnerabilities. I paraphrase his long question: About [...]
Orange County, CA – I just read about a new product announcement, New version of L0phtCrack makes cracking Windows passwords easier than ever. At Alvaka we used to do a hacking demo during a lunch and learn. Rex Frank would usually do the demo by doing a SQL Injection attack and bumping out to the command prompt. From there he would download the SAM (Security Access Manager) file and then use L0phtCrack to decode a password right in front of the eyes of everyone. Nearly everyone was shocked beyond compare. Of course that approach is now a bit dated, but it showed our guests just how vulnerable unpatched and inadequately secured systems can be. From the start of the demo to the revelation of an account password would only take five o
Beware of Jigsaw, the newest ransomware trojan. It does not wait for you to pay a ransom. Within the first 24 hours it deletes files and then accelerates the process exponentially to show you they mean business in the nastiest [...]
Skip to content
