If a vuln is publicly exploited and ends up in CISA’s KEV catalog, patching is only half the job!!
We also need to know how to determine whether a server has already been compromised
I’m not asking for exploit details or a PoC. I’m asking for defender guidance:
- Relevant log entries
- Observable artifacts
- Child processes
- Event IDs
- File system traces
Without that, orgs can patch a server that was already compromised yesterday and have no reliable way to tell
Microsoft and CISA should make “Defender Detection Guidance” a standard part of every actively exploited vulnerability disclosure
CyberAlert | Starting Feb. 9 a Microsoft patch will enable Domain Controller enforcement mode by default.
Organizations should plan ahead to ensure all non-compliant devices that do not support secure channels are either decommissioned or used with the appropriate safeguards.
Today, every view of this video helps create positive change. All you need to do is watch it and Bell will donate 5¢ more to Canadian mental health initiatives. Retweet to help spread the word! #BellLetsTalk
@vivekramac Developing at least some familiarity with the breadth of technologies in play. Consider offering a course that introduces various technologies and their context. AD, k8s, web apps, programming languages, etc. High level overview. Trends. Pros and cons of each.
Please don’t reuse your passwords. I know passwords are terrible and we all have too many. Password managers can help and knowing what matters to you can make a difference. Anything that touches banking or your private data should be the top tier of what you protect uniquely.
Alright folks, it appears that some are getting incorrect info so here it is again: #COVIDAlert is an #ExposureNotification app, NOT a #ContactTracing app. It does NOT track the user. Your #privacy is protected. The entire code is available to the public on #GitHub
So you’re ok that Starbucks tracks you so you can get pts towards a free latté, but won’t download #COVIDAlert because you don’t trust it even though it involves NO personally identifiable information and *DOES NOT* know your location. 🤷🏻♀️
Why I Installed the COVID Alert App: ”an independent review has found that the privacy risks associated with the app have been addressed and that it is likely to help reduce the spread of the virus. That was reason enough for me to install it.” https://t.co/S5lND89SKz
A complete list of today's 20 honourees belonging to this year's inaugural Top Women in Cyber Security event.
https://t.co/U3LPoFzCUx
#CDNTech#WomenInCyber#cybersecurity
#Reminder - working offline as much as possible will reduce network traffic and ensure essential #GC business operations can continue. This means avoiding large data transfers and minimizing or eliminating downloading of non-essential data.
I know many parents are looking for resources and ideas to help their kids continue learning while home. @khanacademy has created daily schedules with interactive content--exercises, videos and articles--for students in every grade. https://t.co/uxYRoULXF1
Adversaries love taking advantage of a distracted user community to launch attacks. I know there’s a lot to think about right now, but let’s all ensure we’re on heightened alert for suspicious network activity and keeping apprised of the latest scams/techniques.