October is National Cybersecurity Awareness Month

Today marks the first day of National Cybersecurity Awareness Month. I am pleased to see one of the themes for this year’s National Cybersecurity Awareness Month, is about doing security updates. Only by patching your software in a timely manner, [...]

October is National Cybersecurity Awareness Month2019-11-03T21:09:13-08:00

Notice of Emergency Windows/Internet Explorer Security Patch

Overview of Windows/Internet Explorer Security Patch Microsoft has advised Windows/Internet Explorer users to install an “emergency” out-of-band security patch (i.e. not released on patch-Tuesday) for a recently detected Zero-Day-Exploit (i.e an exploit that has already been actively used prior to [...]

Notice of Emergency Windows/Internet Explorer Security Patch2019-11-03T21:10:22-08:00

Are One in Three Breaches Really Caused by Unpatched Vulnerabilities?

Oli Thordarson, CEO of Alvaka Networks, begs to differ... This is an interesting article I read in ZDnet, Cybersecurity: One in three breaches are caused by unpatched vulnerabilities, about software vulnerability patching. I found it interesting because I took some [...]

Are One in Three Breaches Really Caused by Unpatched Vulnerabilities?2019-11-03T21:10:45-08:00

Who’s to Blame for Ransomware Attacks?

Originally published on TechTarget. Alvaka’s COO and CISO—Kevin McDonald—discusses that, although cyber attackers are the main culprits for ransomware attacks, the companies that release flawed software or those who don’t install patches are not off the hook. In early May, [...]

Who’s to Blame for Ransomware Attacks?2019-09-09T21:40:28-08:00

How Intelligence Data Leaks Has Damaged Infosec

Originally published on June 19, 2017 on TechTarget. Alvaka’s COO and CISO, Kevin McDonald, examines the real-world damage caused by CIA and NSA data leaks, putting dangerous government cyberweapons in the hands of hackers. WikiLeaks' CIA data dump shook a [...]

How Intelligence Data Leaks Has Damaged Infosec2019-09-09T21:43:57-08:00

“Are the risks from Meltdown and Spectre overblown?”…asks an IT professional

I participate in IT professional industry forums, where peers ask questions of other peers. Someone in the forum made a somewhat disjointed post questioning the severity for the recent Meltdown and Spectre security vulnerabilities. I paraphrase his long question: About [...]

“Are the risks from Meltdown and Spectre overblown?”…asks an IT professional2018-03-01T10:55:39-08:00

Cracking your passwords just got faster and easier than ever, here’s how….

Orange County, CA – I just read about a new product announcement, New version of L0phtCrack makes cracking Windows passwords easier than ever. At Alvaka we used to do a hacking demo during a lunch and learn. Rex Frank would usually do the demo by doing a SQL Injection attack and bumping out to the command prompt. From there he would download the SAM (Security Access Manager) file and then use L0phtCrack to decode a password right in front of the eyes of everyone. Nearly everyone was shocked beyond compare. Of course that approach is now a bit dated, but it showed our guests just how vulnerable unpatched and inadequately secured systems can be. From the start of the demo to the revelation of an account password would only take five o

Cracking your passwords just got faster and easier than ever, here’s how….2017-06-27T15:54:24-08:00

Could Your Computer Breach Have Lasted Three Years?

Irvine, CA - Juniper had a flaw in their networking equipment that may have allowed breaches in government networks for as long as three years.  I would presume the same risk applies to Juniper users in private enterprises as well.The [...]

Could Your Computer Breach Have Lasted Three Years?2015-12-19T03:24:37-08:00

BlueCross BlueShield Announces August 5th Data Breach Discovery

Tustin, CA - The most interesting part of this BlueCross BlueShield announcement is not that they found the breach on August 5th.  What is interesting when you read further into the announcement is that they say “Our investigation further revealed [...]

BlueCross BlueShield Announces August 5th Data Breach Discovery2017-09-18T00:38:04-08:00
Load More Posts