Following on from my earlier post on EMET, WDAG and the 1709 release on Windows, here is some Q&A on the topic.
https://krebsonsecurity.com/2018/07/google-security-keys-neutralized-employee-phishing/ Such a simple authentication factor (simulating a keyboard) but very powerful in what it delivers. All organisations should consider these devices for end users.
https://www.scmagazine.com/emotet-creators-shift-from-banking-trojan-to-threat-distributor/article/782082/ Emotet is getting a lot of coverage and worth maintaining a watching brief.
https://techbeacon.com/why-you-should-use-format-preserving-encryption-legacy-data A useful overview of FPE, which is gathering interest in the field.
I was in London a couple of weeks ago on an ethical hacking training course. It was very interesting subject matter, and our instructor mentioned his increasing interest in PowerShell for scripting. It chimed with me, as I’m finding PowerShell to be a very useful technology for a wide range of tasks. One of the… Read More »