Another week, another Microsoft security update, right?
Before I get into the meat of the round-up I wanted to publicly address some emails I’ve received recently about these posts. Clearly, I’m not the end all be all expert in security. I provide these links because they are things I discovered or learned as I’m immersing myself in this InfoSec world. Also, I’ll be doing more in-depth posts soon; but, they aren’t necessarily regular like these posts. I have lots to learn and some of it isn’t necessarily “post worthy.”
Hot off the presses and filing under the “duh” category is this revelation that most aren’t happy with end-point security. http://www.itworldcanada.com/article/infosec-pros-have-shaky-confidence-in-endpoint-security-survey/393902
Remember the simultaneous power outages in several U.S. cities a few weeks back? Well more research is revealing that Malware is out there and it may have caused outages in Ukraine last year and is primed for Europe, and with a few changes could affect U.S. Power Grid. Got a Generator handy? http://www.huffingtonpost.com/entry/malware-power-grid_us_593fa144e4b0b13f2c6d9285
Need some evidence for your employer to take digital security seriously? These are just the tip of the iceberg: http://www.pymnts.com/today-in-data/2017/today-in-data-true-digital-security-may-not-happen-because-of-cyber-crime/
Under our democracy has been hacked, further evidence to Russian hacker influence in the United States’ election process. http://www.nydailynews.com/news/politics/russian-hacking-prompted-obama-officials-emergency-call-article-1.3244245
As a noob in this world, Linux is like the Holy Grail of operating systems yet has a seeming ancient Sumerian key code as its instruction manual. Yet, this week I learned like any system designed by humans, even Linux is vulnerable. Remember, nerds, nothing is foolproof: http://resources.infosecinstitute.com/sambacry-hundreds-thousands-linux-systems-exposed-campaign-delivers-cryptocurrency-miner/
Bonus this week is my vested interest in creating more opportunities for women in InfoSec. Here’s a scholarship that might help a woman wanting to break into InfoSec (seriously the amount of white dudes in the room at any InfoSec gathering is disproportionate). http://cra.org/cra-w/scholarships-and-awards/scholarships/swsis/
Someone reached out to me recently regarding my “tech journalist” status. In response, I had to do some research and stumbled upon this article which made me raise an eyebrow and got my blood pressure up just a bit: https://boingboing.net/2017/06/13/opsec-in-newsrooms.html
As in weeks past, feel free to leave a comment here about any of those articles. Let’s learn from one another. Okay, have pity on the noob and let me learn from you.
Have another great week InfoSec lovers. See you next time.*
*We’re going on vacation here for a couple of weeks. Be back as soon as things are back to routine.