PossibleThreat Articles

Articles for the experts…

Security

ComputerWorld Independent 

Memory-Lane Monday: Please tell me his name wasn’t Jones

0 Comments ,

Credit to Author: Sharky| Date: Mon, 28 Oct 2019 03:00:00 -0700

Pilot fish and his help desk colleagues do a lot of password resets and have learned that it’s best to sympathize with the callers and normalize forgetting those strings of letters, numbers and symbols. It can happen to anybody is the message.

But some forgetfulness is more normal than others, finds fish, who told one user, “I’m going to reset your password to your last name, with the first letter capitalized.”

Reports fish: “He said, ‘Wait a minute. Let me get a pencil and paper to write that down.

“I then spelled his last name for him and reminded him to capitalize the first letter. He thanked me and hung up the phone.

“Surreal doesn’t even begin to describe how this felt!”

To read this article in full, please click here

Read more
Security TrendMicro 

3 Ways for MSPs to Increase Their Managed Security Footprint

0 Comments , , , ,

Credit to Author: Trend Micro| Date: Fri, 25 Oct 2019 18:05:35 +0000

Managed service providers looking to increase their business often face the choice of whether to focus on finding new customers or expanding their existing base. But there’s a growing opportunity making the latter option especially appealing. The small and midsize businesses that comprise the bulk of the MSP customer base have a limited understanding of…

The post 3 Ways for MSPs to Increase Their Managed Security Footprint appeared first on .

Read more
Security TrendMicro 

This Week in Security News: Trend Micro Acquires Cloud Conformity and Apple Removes Malicious iOS Apps from App Store

0 Comments ,

Credit to Author: Jon Clay (Global Threat Communications)| Date: Fri, 25 Oct 2019 13:03:43 +0000

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about Trend Micro’s recent acquisition of Cloud Conformity. Also, read about a fake photo editing app on Google Play and the 17 malicious iOS apps removed…

The post This Week in Security News: Trend Micro Acquires Cloud Conformity and Apple Removes Malicious iOS Apps from App Store appeared first on .

Read more
ComputerWorld Independent 

Name game

0 Comments ,

Credit to Author: Sharky| Date: Fri, 25 Oct 2019 03:00:00 -0700

This pilot fish builds a lot of Linux systems that have to be compliant with U.S. Department of Defense/Defense Information Systems Agency STIG security requirements, but he tries to lessen the pain by assigning root passwords that are secure but easily remembered. Naturally, he sends them to the owner via encrypted email.

When the Nvidia driver in one of those machines gets corrupted after the system goes down hard in a power outage, fish needs root access to reinstall the driver. Unfortunately, the user of that machine (who, just incidentally, had ignored the warnings about that planned power outage) has no recollection of the root password, and he can’t get it from his email. Why? He has uninstalled all his old encryption certs, so older encrypted emails can no longer be decrypted.

To read this article in full, please click here

Read more
Security TrendMicro 

A New Playground for Cybercrime: Why Supply Chain Security Must Cover Software Development

0 Comments , , ,

Credit to Author: Bharat Mistry| Date: Thu, 24 Oct 2019 16:35:26 +0000

Most organisations see supply chains as providers of physical goods and services. The supply chain management function in these companies usually provides the governance framework to reduce third-party risks and prevent hackers from stealing data, disrupting daily operations and affecting business continuity. But there’s another crucial part of this ecosystem which some organisations may be…

The post A New Playground for Cybercrime: Why Supply Chain Security Must Cover Software Development appeared first on .

Read more