Equifax Cybersecurity Incident

Equifax Cybersecurity Incident
Equifax (EFX) announced yesterday a “cybersecurity incident” involving customer data. Although they say that there was “No Evidence of Unauthorized Access to Core Consumer or Commercial Credit Reporting Databases“, what you need to know is that the information important to you, probably was. “The information accessed primarily includes names, Social Security numbers, birth dates, addresses and, ...

Episode 33: Small Business Security Strategy

Episode 33: Small Business Security Strategy
Are you chasing the latest bugs and vulnerabilities, or does your small business have an IT security strategy? Listen in this week to get started on implementing a tried-and-true security strategy to protect your digital stuff. Links Best practices for passwords updated after original author regrets his advice (Verge) NIST’s new password rules – what ...

When Employee Termination Goes Wrong

When Employee Termination Goes Wrong
This week a man in Arlington, TN – just around the corner from me in Memphis – was sentenced to 18 months in prison with two years of supervised release for accessing his former employer’s computer system, pilfering competitive information for his new employer.  Court documents showed he accessed a compromised email account that allowed ...

Security Controls 101 – What You Don’t Know CAN Hurt You; Inventory Your Software

Security Controls 101 - What You Don’t Know CAN Hurt You; Inventory Your Software
In my last blog post I told you why it’s important to know what’s on your network and why it matters. But knowing what devices are connected isn’t enough. You have to know what’s on those devices. What software is installed? What version? What have your users installed that you don’t know about? Who cares? You ...

Security Controls 101 – What You Don’t Know CAN Hurt You; Find Out What’s On Your Network

“If you know the enemy and know yourself, you need not fear the result of a hundred battles. If you know yourself but not the enemy, for every victory gained you will also suffer a defeat. If you know neither the enemy nor yourself, you will succumb in every battle.” – Sun Tzo, The Art ...

New Global Ransomware Attack

New Global Ransomware Attack
If you haven’t heard yet, there’s yet another global ransomware attack spreading around the globe. As of right now (1:40 pm CST) there doesn’t seem to be a consensus on what type of ransomware it is. Some are claiming it’s a modified version of the Petya ransomware strain, yet others are saying it’s a new ...

Gmail Authentication Icon: Do you know about this Google Labs Tool?

Gmail Authentication Icon: Do you know about this Google Labs Tool?
Gmail has a nifty security tool in its lab section called “Authentication icon for verified senders.” Currently, some of the most common, high-profile vendors use it, such a PayPal, Google, Facebook, Twitter, eBay, and others. If you get an email from one of these domains, it will have a “key” icon attached to it and ...

Episode 32: Doesn’t It Make You Wanna Cry?

Episode 32: Doesn't It Make You Wanna Cry?
Yet another ransomware outbreak. Were you prepared for Wanna Cry? Will you be prepared next time? In this episode we do a post mortem of the Wanna Cry ransomware outbreak and give you strategies to protect you from this, and similar outbreaks. Notes from this week’s podcast Disable SMBv1 Using Group Policy UPDATE (6/20/2017): We ...

Keep Yourself Safe On Public WiFi

Keep Yourself Safe On Public WiFi
At Shoestring Networks, we’re all about “securing your digital stuff”. There are lots of ways for your information to “leak”: hacked websites, poor passwords, careless hardware policies to name a few. But a common way you may be giving out personal, banking, or business-related data is by simply using the WiFi at your local coffee ...

Update LastPass Now

Update LastPass Now
If you’ve followed us for very long, you know we think password managers are a smart move. Rather than reusing passwords among sites, or picking terribly simple passwords, or writing them down, allowing a password manager to generate and store your passwords and passphrases is a win. You probably also know that we like LastPass. ...