petya
Cybersecurity / Ransomware / Uncategorized

Ransomware Gaining Momentum

Ransomware gaining momentum This post is meant to educate readers about previous and future impact of Ransomware attacks and the lessons learned from them. These are from my own perspective. While I …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

Yahoo Data Breach
Best Practices / Business / Cyber Crime / Cybersecurity / Data Breach / Security Education / Security Policy / Verizon / Yahoo Data Breach

Yahoo Data Breach: What We Know Now

Yahoo Data Breach: What We Know Now If you have been online in the past couple of days, you have likely seen something about a Yahoo data breach, whether it …

About Joe Gray

Joe Gray joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. Joe is currently a Senior Security Architect and maintains his own blog and podcast called Advanced Persistent Security. In his spare time, Joe enjoys attending information security conferences, contributing blogs to various outlets, training in Brazilian Jiu Jitsu (spoken taps out A LOT!), and flying his drone. Joe is the inaugural winner of the DerbyCon Social Engineering Capture the Flag (SECTF) and was awarded a DerbyCon Black Badge. Joe has contributed material for the likes of AlienVault, ITSP Magazine, CSO Online, and Dark Reading.

US Elections Hacked?
2016 Presidential Election / Cybersecurity / Donald Trump / Hillary Clinton / Russia

US Elections Hacked?

First, I would like to thank you for reading this blog post. It is the first of two, maybe more, parts. Before we get started, read the three disclaimers below. …

About Joe Gray

Joe Gray joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. Joe is currently a Senior Security Architect and maintains his own blog and podcast called Advanced Persistent Security. In his spare time, Joe enjoys attending information security conferences, contributing blogs to various outlets, training in Brazilian Jiu Jitsu (spoken taps out A LOT!), and flying his drone. Joe is the inaugural winner of the DerbyCon Social Engineering Capture the Flag (SECTF) and was awarded a DerbyCon Black Badge. Joe has contributed material for the likes of AlienVault, ITSP Magazine, CSO Online, and Dark Reading.

Qatar Bank Breached after Bangladesh
Bank of Bangladesh / Business Management / Cyber Crime / Cybersecurity / Data Breach / Electronic Bank Fraud / Finance Industry / Gramm-Leach-Bliley Act / PCI / Qatar National Bank / Wire Fraud

Qatar Bank Breached After Bangladesh

Qatar Bank Breached After Bangladesh  It’s been quite the week for the banking industry with multiple headlining hacks occurring throughout the world with Qatar National Bank being the latest victim.  …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

Bangladesh Bank Loses 80 Million USD
Bank of Bangladesh / Best Practices / Casino / Cyber Crime / Cybersecurity / Data Breach / Electronic Bank Fraud / Finance Industry / GLBA / Gramm-Leach-Bliley Act / Malware / Software flaws / Wire Fraud

Bangladesh Bank Loses 80 Million USD

Bangladesh Bank Loses 80 Million USD …with a $10 router …and NO firewall …We’re NOT making this up… The Bangladesh’s Central Bank was hacked in February 2016 that stole $80 million (they …

About Joe Gray

Joe Gray joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. Joe is currently a Senior Security Architect and maintains his own blog and podcast called Advanced Persistent Security. In his spare time, Joe enjoys attending information security conferences, contributing blogs to various outlets, training in Brazilian Jiu Jitsu (spoken taps out A LOT!), and flying his drone. Joe is the inaugural winner of the DerbyCon Social Engineering Capture the Flag (SECTF) and was awarded a DerbyCon Black Badge. Joe has contributed material for the likes of AlienVault, ITSP Magazine, CSO Online, and Dark Reading.

Ransomware Infects Android 4.x
Android / Google / Malware / Ransomware / Ransomware / Software flaws

Ransomware Infects Android 4.x

Ransomware Infects Android 4.x and Earlier Ransomware has been sighted infecting older versions of Android in a Blue Coat lab environment. It was discovered using several vulnerabilities to install the malware silently …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

Spotify Allegedly Hacked...Again
Cyber Crime / Cybersecurity / Data Breach / Doxing / Spotify / Spotify Hack

Spotify Allegedly Hacked…Again

Spotify Allegedly Hacked…Again Tech Crunch is reporting streaming music service Spotify has allegedly been hacked…again.  They were previously breached in 2009 and 2014 as well as February 2016 according to …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

Apple
Apple / Cryptography / Cyber Crime / Data Breach / FBI / iPhone / Privacy

Apple Indirectly Assisted the FBI in Hacking Terrorist iPhone?

Apple Indirectly Assisted the FBI in Hacking Terrorist iPhone? Recently we have all been an audience to the Apple versus FBI debacle that unfolded over the course of a few months with …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

MedStar Health Cybersecurity Fails to Prevent Attack
Business Management / Cyber Crime / Cyber Security Awareness Month / Data Breach

MedStar Health Cybersecurity Fails to Prevent Attack

MedStar Health Cybersecurity Fails to Prevent Attack  According to the Associated Press The MedStar Health hospital chain was the victim of hackers earlier this week. These unidentified hackers broke into …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

Iranian Hackers Hit With Federal Charges
Critical Infrastructure / Cybersecurity / Cyberwar / Data Breach / Department of Energy / Department of Homeland Security / Internet Security / Iran

Iranian Hackers Hit With Federal Charges

Iranian Hackers Hit With Federal Charges Seven Iranians have been indicted by the U.S. Attorney and the FBI in connection with 46 different cyberattacks including the 2013 attack on the …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

Spear Phishermen Target Corporate W-2 Data
Cyber Crime / Cybersecurity / Data Breach / Doxing / Finance Industry / IRS / MoneyTree / Phishing / Seagate / Security Education / SnapChat / Social Engineering / Spear Phishing / Sprouts / W-2 / Whaling

Spear Phishermen Target Corporate W-2 Data

Spear Phishermen Target Corporate W-2 Data The Back Story           As if tax season is not already stressful enough, the season ending April 15, 2016 has …

About Joe Gray

Joe Gray joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. Joe is currently a Senior Security Architect and maintains his own blog and podcast called Advanced Persistent Security. In his spare time, Joe enjoys attending information security conferences, contributing blogs to various outlets, training in Brazilian Jiu Jitsu (spoken taps out A LOT!), and flying his drone. Joe is the inaugural winner of the DerbyCon Social Engineering Capture the Flag (SECTF) and was awarded a DerbyCon Black Badge. Joe has contributed material for the likes of AlienVault, ITSP Magazine, CSO Online, and Dark Reading.

4 Things to Know About Ransomware
Best Practices / Cryptography / Cyber Crime / Cybersecurity / Linux Security / Malware / Microsoft / Ransomware / Security Education / Security Policy / Small Business

4 Things to Know About Ransomware

4 Things to Know About Ransomware Hello everyone! I am still here, I have just been busy behind the scenes for a while. I plan to write more blogs and resume …

About Joe Gray

Joe Gray joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. Joe is currently a Senior Security Architect and maintains his own blog and podcast called Advanced Persistent Security. In his spare time, Joe enjoys attending information security conferences, contributing blogs to various outlets, training in Brazilian Jiu Jitsu (spoken taps out A LOT!), and flying his drone. Joe is the inaugural winner of the DerbyCon Social Engineering Capture the Flag (SECTF) and was awarded a DerbyCon Black Badge. Joe has contributed material for the likes of AlienVault, ITSP Magazine, CSO Online, and Dark Reading.

Critical Infrastructure / Cyber Warfare / Cybersecurity / Federal IT / IRS

IRS Targeted in Another Cyberattack

IRS Targeted in Another Cyberattack IRS recently admitted it yet again had been the target of a sophisticated cyberattack.  In an attempt to steal the E-filing pins of over 460,000 …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

NSA breaks 1024-bit encryption
Best Practices / CISA / Critical Infrastructure / Cyber Security Awareness Month / Cyberwar / Data Breach / Director of National Intelligence / Encryption / NSA

NSA Advice to Prevent Them from Hacking You

NSA Advice to Prevent Them from Hacking You Last week the Rob Joyce the NSA head of the NSA’s Tailored Access Operations-The NSA’s lead team for computer network exploitation used …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

Most of What You Need to Know: Passwords
Business Management / Cyber Crime / Cybersecurity / Data Breach / Internet Security / Security Policy

Will Cyber-Insurance Become the Norm?

Cyber-Insurance to Become the Norm?          Let this sink in, by 2019, the cost of cybercrime worldwide will be 2.1 trillion from Juniper research.  In 2012, The Wall Street …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

Vulnerability Fixed in OpenSSH
Cryptanalysis / Cryptography / Cyber Crime / Cybersecurity / Data Breach / Decryption / Encryption / Internet Security / Linux / OpenSSH / Security Policy / Software flaws / Zero Day

Major Vulnerability Fixed in OpenSSH

Major Vulnerability Fixed in OpenSSH One of the most known secure shell programs OpenSSH just fixed a major bug that could leak secret crytopgraphic keys. According to PC World, OpenSSH …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

Casino Sues Cybersecurity Firm
Casino / Cyber Crime / Cyber Warfare / Cybersecurity / Data Breach / PCI

Casino Sues Cybersecurity Firm

Casino Sues Cybersecurity Firm Affinity Gaming has filed a lawsuit against Trustwave. Affinity claims that after Trustwave was hired to investigate and analyze an initial data breach, Trustwave missed a …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

Twitter Hacked?
Cyber Crime / Cyber Warfare / Cybersecurity / Cyberwar / Data Breach

State-Sponsored Hack of Twitter

State-Sponsored Hack of Twitter Twitter this past Friday announced it had found evidence of a possible state-sponsored hack on its networks.  According to Twitter, these “state-sponsored hackers may have tried to …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

Popular Toy Maker VTech Breached
Baby Monitors / Best Practices / Cyber Crime / Cybersecurity / Doxing / Internet of Things / Internet Security / IoT / Privacy / VTech

Popular Toy Maker VTech Breached

Popular Toy Maker VTech Breached Organizations such as the federal government are always on alert for a cyber attack and now companies that cater to children will have to be …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

Top 5 Cybersecurity Holiday Shopping Tips
Best Practices / Black Friday / Business / Business Management / Cyber Crime / Cyber Monday / Cybersecurity / E-Commerce / Small Business / Small Business Saturday

Top 5 Cybersecurity Holiday Shopping Tips

Top 5 Cybersecurity Holiday Shopping Tips As we enter the holiday shopping season at full speed on Friday, with many places as early as Thursday, we will be spending more …

About Joe Gray

Joe Gray joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. Joe is currently a Senior Security Architect and maintains his own blog and podcast called Advanced Persistent Security. In his spare time, Joe enjoys attending information security conferences, contributing blogs to various outlets, training in Brazilian Jiu Jitsu (spoken taps out A LOT!), and flying his drone. Joe is the inaugural winner of the DerbyCon Social Engineering Capture the Flag (SECTF) and was awarded a DerbyCon Black Badge. Joe has contributed material for the likes of AlienVault, ITSP Magazine, CSO Online, and Dark Reading.

Potential Amazon Password Leak
Amazon / Best Practices / Business / Business Management / Data Breach / Privacy

Potential Amazon Password Leak

Potential Amazon Password Leak ZDNet broke the news that Amazon had a potential password leak. Amazon said, “it recently discovered that your [Amazon] password may have been improperly stored on …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

4 Things to Know About Ransomware
Best Practices / China / Critical Infrastructure / Cryptanalysis / Cryptography / Cyber Crime / Cyber Security Awareness Month / Cyber Security Gaming / Cyber Warfare / Cybersecurity / Cyberwar / Data Breach / Decryption / Diffie Hellman / Encryption / Federal IT / Google / Hacktivism / Internet of Things / Internet Security / IoT / Kaspersky / KKK / LTE / Microsoft / NSA / Odd Security News / Privacy / Security Education / Security Policy / Smart Phones / Software flaws / Telecommunications Industry / Zero Day

Top 5 Cybersecurity Threats in 2015

Top 5 Cybersecurity Threats in 2015   In this week’s Top 5 review we will be discussing the Top 5 cybersecurity vulnerabilities and threats in 2015.  This isn’t designed to be …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

Cybersecurity
Best Practices / Cyber Crime / Cyber Security Awareness Month

Top 5 Cybersecurity Myths That May Surprise You

Top 5 Cybersecurity Myths That May Surprise You! Cybersecurity has some of the greatest myths of cyber-security might surprise you a bit if you know anything about cyber-security and if …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

Microsoft State of Security
Microsoft / Uncategorized

Microsoft State of Security Address

Microsoft State of Security Address Microsoft State of Security Address: Microsoft CEO Satya Nadella spoke in Washington D.C. today and discussed how the company is spending more than $1 billion …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

Adobe Patches Exploited Vulnerability
Adobe / Adobe Flash / Flash

Adobe Flash: Hacker’s Best Friend

Adobe Flash: Hacker’s Best Friend Adobe Flash Player is the most targeted by exploit kits. A new report by Recorded Future and posted by ARC shows that eight of the …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

Vodafone
Best Practices / Business / Business Management / Internet Security / Security Education / Security Policy / TalkTalk / Telecommunications Industry / United Kingdom / Vodafone

Vodafone Breached Days After TalkTalk

Vodafone Breached Days After TalkTalk Days after TalkTalk was breached, Vodafone is now admitting that they were attacked as well in what Sky News is reporting as a separate attack. …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

Twitter Hacked
Anonymous / Cyber Crime / Cybersecurity / Doxing / Hacktivism / KKK / Uncategorized

Data from the Anonymous OpKKK released

Data from the Anonymous “OpKKK” released  At 3:26 pm CDT, the infamous hacking group Anonymous finally released the data on the Klu Klux Klan it had been promising for the …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

Best Practices / Business / Business Management / Cyber Crime / Cybersecurity / Data Breach / Internet Security / TalkTalk / Telecommunications Industry / United Kingdom

Arrest in TalkTalk Hack

Arrest in TalkTalk Hack According to CNBC, A 15-year old boy has been arrested in relation to the hack of a U.K. phone company which was feared as one of …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

CIA Director Email Hacked by Teen
CIA / Cybersecurity / Data Breach / Director of National Intelligence / Internet Security / Privacy / Security Policy / Uncategorized

CIA Director Email Hacked by Teen

CIA Director Email Hacked by Teen Earlier this week, a self-proclaimed hack going by the persona “Cracka” hacked the personal email accounts of none other than Central Intelligence Agency director, …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

U.S. House Approves E-Mail Bill
Best Practices / Business / Business Management / CISA / CISPA / Cryptanalysis / Cryptography / Cybersecurity / Decryption / Department of Defense / Department of Homeland Security / Diffie Hellman / Director of National Intelligence / Encryption / Hacktivism / Internet Security / NSA / Privacy / Security Policy

Congress Pushes Revamped CISPA

Congress Pushes Revamped CISPA It seems as if the US Congress is back in the business of making “powerful friends” again. By friends, I mean enemies. This time, it is …

About Joe Gray

Joe Gray joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. Joe is currently a Senior Security Architect and maintains his own blog and podcast called Advanced Persistent Security. In his spare time, Joe enjoys attending information security conferences, contributing blogs to various outlets, training in Brazilian Jiu Jitsu (spoken taps out A LOT!), and flying his drone. Joe is the inaugural winner of the DerbyCon Social Engineering Capture the Flag (SECTF) and was awarded a DerbyCon Black Badge. Joe has contributed material for the likes of AlienVault, ITSP Magazine, CSO Online, and Dark Reading.

T-Mobile/Verizon Android Device LTE Security Vulnerability
Android / AT&T / Google / Lollipop / LTE / Security Policy / Smart Phones / Software flaws / T-Mobile / Verizon / Zero Day

T-Mobile/Verizon Android Device LTE Security Vulnerability

T-Mobile/Verizon Android Device LTE Security Vulnerability Carnegie Mellon University CERT database has published a vulnerability notice regarding the newest security vulnerability that affects Long Term Evolution (LTE) mobile networks. Per …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

NSA breaks 1024-bit encryption
Best Practices / Critical Infrastructure / Cryptanalysis / Cryptography / Cyber Crime / Cyber Security Awareness Month / Cyber Warfare / Cybersecurity / Cyberwar / Data Breach / Decryption / Department of Defense / Diffie Hellman / Encryption / Federal IT / Internet / Internet Security / NSA

NSA breaks 1024-bit encryption | NSA

NSA breaks 1024-bit encryption According to a recent article by Alex Halderman and Nadia Heninger, what most people feared in the cryptography fields looks all too real, the NSA is in the …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

Adobe Patches Exploited Vulnerability
Adobe / Adobe Flash / Business / Business Management / Cybersecurity / Flash / Zero Day

Latest Bug for Adobe Flash the Nail in the Coffin?

Latest Bug for Adobe Flash the Nail in the Coffin? Could the most recent bug spell death for Adobe Flash? Will Adobe Flash live to see 20? Version 20 that …

About Joe Gray

Joe Gray joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. Joe is currently a Senior Security Architect and maintains his own blog and podcast called Advanced Persistent Security. In his spare time, Joe enjoys attending information security conferences, contributing blogs to various outlets, training in Brazilian Jiu Jitsu (spoken taps out A LOT!), and flying his drone. Joe is the inaugural winner of the DerbyCon Social Engineering Capture the Flag (SECTF) and was awarded a DerbyCon Black Badge. Joe has contributed material for the likes of AlienVault, ITSP Magazine, CSO Online, and Dark Reading.

Cyberwar Begins New Arms Race
China / Critical Infrastructure / Cyber Warfare / Cybersecurity / Cyberwar / Federal IT / Internet Security / Iran / North Korea / Russia

Cyberwar Begins New Arms Race

Cyberwar Begins New Arms Race Per The Register, security guru Bruce Schneier believes we are in the early years of a cyberwar arms race. Schneier is the CTO of Resilient …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

Google Fixes Kernel Vulnerability
Android / Google / Smart Phones / Software flaws / Zero Day

Why the Future of Android Depends on Security

Why the Future of Android Depends on Security: If you own an Android device, you have noticed an increase in the frequency of software updates over the past year.  With …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

Experian Data breach
Best Practices / Business / Business Management / Cyber Crime / Data Breach / Experian / Finance Industry / T-Mobile

Experian Data Breach Follow-up

Experian Data Breach Follow-up: This is a follow-up to the Experian Data Breach that we covered here. Per Bloomberg (2015), “T-Mobile US Inc. and a unit of credit-tracking firm Experian Plc …

About Joe Gray

Joe Gray joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. Joe is currently a Senior Security Architect and maintains his own blog and podcast called Advanced Persistent Security. In his spare time, Joe enjoys attending information security conferences, contributing blogs to various outlets, training in Brazilian Jiu Jitsu (spoken taps out A LOT!), and flying his drone. Joe is the inaugural winner of the DerbyCon Social Engineering Capture the Flag (SECTF) and was awarded a DerbyCon Black Badge. Joe has contributed material for the likes of AlienVault, ITSP Magazine, CSO Online, and Dark Reading.

Dow Jones Subject to Data Breach
Best Practices / Business / Business Management / Cyber Crime / Data Breach / Dow Jones / Finance Industry / Internet Security / Software flaws / Zero Day

Dow Jones Subject to Data Breach

Dow Jones Subject to Data Breach: Per The Wall Street Journal, Dow Jones & Co. (Ticker: DJI) are the next name in a long line of victims of cyber attacks and data …

About Joe Gray

Joe Gray joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. Joe is currently a Senior Security Architect and maintains his own blog and podcast called Advanced Persistent Security. In his spare time, Joe enjoys attending information security conferences, contributing blogs to various outlets, training in Brazilian Jiu Jitsu (spoken taps out A LOT!), and flying his drone. Joe is the inaugural winner of the DerbyCon Social Engineering Capture the Flag (SECTF) and was awarded a DerbyCon Black Badge. Joe has contributed material for the likes of AlienVault, ITSP Magazine, CSO Online, and Dark Reading.

Nuclear Facilities At Risk of Cyber Attack
Best Practices / Critical Infrastructure / Cyber Crime / Energy Sector / Internet of Things / Internet Security / Iran / Kaspersky / Russia / SCADA / Zero Day

Nuclear Facilities At Risk of Cyber Attack

Nuclear Facilities At Risk of Cyber Attack It appears as if Nuclear Facilities At Risk of Cyber Attack. According to a new report by Chatham House (2015), nuclear facilities are …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

Scottrade Victim to Data Breach
Data Breach / Finance Industry / Scottrade / ScottTrade

Scottrade Victim to Data Breach

Scottrade Victim to Data Breach Per Wired, (2015) “FOLLOWING NEWS THIS week that hackers stole data on 15 million T-Mobile customers comes a new report that 4.6 million customers of the …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

Most of What You Need to Know: Wi-Fi
Best Practices / Cyber Crime / Data Breach / Hacktivism / Internet / Internet of Things / Internet Security / Malware / Odd Security News

The Helpful Hacker?

The Helpful Hacker? A new hacker or virus of sorts is making it’s rounds. Normally, when we write about these, we discuss how the wiley cyber criminal made off with …

About Joe Gray

Joe Gray joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. Joe is currently a Senior Security Architect and maintains his own blog and podcast called Advanced Persistent Security. In his spare time, Joe enjoys attending information security conferences, contributing blogs to various outlets, training in Brazilian Jiu Jitsu (spoken taps out A LOT!), and flying his drone. Joe is the inaugural winner of the DerbyCon Social Engineering Capture the Flag (SECTF) and was awarded a DerbyCon Black Badge. Joe has contributed material for the likes of AlienVault, ITSP Magazine, CSO Online, and Dark Reading.

Experian Data breach
Best Practices / Business / Business Management / Cyber Crime / Data Breach / Experian / Internet / Internet Security / Malware / Software flaws / T-Mobile / Zero Day

The Next Massive Data Breach-Experian

The Next Massive Data Breach-Experian   Apparently, the relationship between T-Mobile and Experian has soured for the immediate future. Per CNET (2015) “Hackers stole the personal data of 15 million …

About Joe Gray

Joe Gray joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. Joe is currently a Senior Security Architect and maintains his own blog and podcast called Advanced Persistent Security. In his spare time, Joe enjoys attending information security conferences, contributing blogs to various outlets, training in Brazilian Jiu Jitsu (spoken taps out A LOT!), and flying his drone. Joe is the inaugural winner of the DerbyCon Social Engineering Capture the Flag (SECTF) and was awarded a DerbyCon Black Badge. Joe has contributed material for the likes of AlienVault, ITSP Magazine, CSO Online, and Dark Reading.

Beware: US Elections Phishing, Malware, & Hoaxes
Best Practices / Business / Business Management / Cyber Crime / Data Breach / Donald Trump / Hilton / Internet / Internet Security / Luxury Hotels / Malware / Security Policy / Software flaws / Trump Hotels / Zero Day

Donald Trump’s Hotels Infected with Malware

Everything seems to be going the right way for Presidential Candidate Donald Trump lately, until yesterday that is. Trump Hotel Collection (“THC”) released a legal statement (Trump Hotel Collection, 2015) …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

China / Critical Infrastructure / Cyber Crime / Data Breach / Department of Defense / Department of Energy / Federal IT / Internet Security / Russia / Security Policy

Chinese and US Cyber Relations Remain Cold at Best

Chinese and US Cyber Relations Remain Cold at Best Cyber relations with China have never been very warm; perhaps cordial at best, but this past week’s meeting between President Obama …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

Apple iPhone
App Store / Apple / Best Practices / Business / Business Management / China / iPhone / iTunes / Malware / Security Policy / Smart Phones / Software flaws

First Major Attack on Apple’s App Store

First Major Attack on Apple’s App Store Apple has been subjected to it’s first major attack on the App Store. The company with a stringent app review process had to …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

Adobe Patches Exploited Vulnerability
Adobe / Adobe Flash / Flash / Internet / Internet Security / Software flaws / Zero Day

When will Flash stop being the exploit of choice

When will Flash stop being the exploit of choice? Adobe Flash has long been something of a controversy among security personnel due to its massive amount of known vulnerabilities. Both …

About Matthew Eliason

Matthew Eliason was born in Houston, Texas.  Upon graduating from high school, he joined the Navy.  His first tour was as an Information Systems Technician of a 130 client DOD network where he developed the documentation and maintenance procedures from 2007-2012.  In 2012, he transferred shore duty where he serves as a system and security administrator.

He graduates with a Bachelor’s of Science in Information Technology from American Military University in November of 2015. He holds the CompTIA Security+ certification and has extensive experience in DOD Information Assurance (IA) and Cyber Security compliance and procedures.  He enjoys golf, hiking, watching football in his spare time.

Most of What You Need to Know: Wi-Fi
Business / Business Management / China / Cyber Crime / Data Breach / Healthcare IT / HIPAA

Excellus Blue Cross and Blue Shield Hacked

Excellus Blue Cross and Blue Shield Hacked Another health care provider has been the subject of an attack. Excellus Blue Cross and Blue Shield (BCBS) was the target of what the Washington …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

Nuclear Facilities At Risk of Cyber Attack
Best Practices / China / Critical Infrastructure / Cyber Crime / Department of Energy / Iran / Malware / Russia / SCADA / Security Policy

Cyber attacks Plague US Department of Energy

Cyber attacks Plague US Department of Energy Cyber attacks Plague US Department of Energy, to the tune of over 150 times between 2010 and 2014. It shouldn’t come as a …

About Joe Gray

Joe Gray joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. Joe is currently a Senior Security Architect and maintains his own blog and podcast called Advanced Persistent Security. In his spare time, Joe enjoys attending information security conferences, contributing blogs to various outlets, training in Brazilian Jiu Jitsu (spoken taps out A LOT!), and flying his drone. Joe is the inaugural winner of the DerbyCon Social Engineering Capture the Flag (SECTF) and was awarded a DerbyCon Black Badge. Joe has contributed material for the likes of AlienVault, ITSP Magazine, CSO Online, and Dark Reading.

Baby Monitors Vulnerable to Cyber Attacks
Baby Monitors / Best Practices / Data Breach / Internet of Things / IoT / Software flaws

Baby Monitors Vulnerable to Cyber Attack

Baby Monitors Vulnerable to Cyber Attack Background As a somewhat unsurprising revelation, Baby Monitors Vulnerable to Cyber Attack is a theme gaining traction around the media today. Computer World reported in early …

About Scott Entsminger

Scott Entsminger was born and raised in Virginia. He graduated from Radford University with a Bachelor’s of Science in Criminal Justice. Scott has worked for the Department of Defense since graduating college. He is an expert in Windows Administration; with specific experience in Group Policy and vulnerability remediation. He also has specific experience in Information Assurance (IA) and Cyber Security.

Scott holds the CompTIA Security+ certification. He is always looking to diversify his skillset. Scott is an avid sports fan, particularly baseball. He also is an avid gamer and enjoys learning different skills involving his PC.

Ashley Madison
Ashley Madison data breach / Best Practices / Cyber Crime / Data Breach / Hacktivism / Security Policy / Software flaws

Ashley Madison Data Breach: Follow Up

  Ashley Madison Data Breach: Follow Up DISCLAIMER: The purpose of this blog post is NOT to discuss the morality of Ashley Madison (AM)/Established Gentleman (EM)/Avid Life Media (ALM), the …

About Joe Gray

Joe Gray joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. Joe is currently a Senior Security Architect and maintains his own blog and podcast called Advanced Persistent Security. In his spare time, Joe enjoys attending information security conferences, contributing blogs to various outlets, training in Brazilian Jiu Jitsu (spoken taps out A LOT!), and flying his drone. Joe is the inaugural winner of the DerbyCon Social Engineering Capture the Flag (SECTF) and was awarded a DerbyCon Black Badge. Joe has contributed material for the likes of AlienVault, ITSP Magazine, CSO Online, and Dark Reading.

Ashley Madison
Ashley Madison data breach / Cyber Crime / Hacktivism

Ashley Madison Data Breach

Our Initial Presentation about the Ashley Madison Data Breach DISCLAIMER: The purpose of this blog post is NOT to discuss the morality of Ashley Madison (AM)/Established Gentleman (EM)/Avid Life Media …

About Joe Gray

Joe Gray joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. Joe is currently a Senior Security Architect and maintains his own blog and podcast called Advanced Persistent Security. In his spare time, Joe enjoys attending information security conferences, contributing blogs to various outlets, training in Brazilian Jiu Jitsu (spoken taps out A LOT!), and flying his drone. Joe is the inaugural winner of the DerbyCon Social Engineering Capture the Flag (SECTF) and was awarded a DerbyCon Black Badge. Joe has contributed material for the likes of AlienVault, ITSP Magazine, CSO Online, and Dark Reading.