Koadic: New Features and Video Demonstration
Koadic, or COM Command & Control, is a Windows post-exploitation rootkit similar to other penetration testing tools such as Meterpreter and Powershell Empire. The major difference is that Koadic does most of its operations using Windows Script...
read moreQuestions for Executives on Cyber
By Ed Amoroso, Founder and CEO of TAG Cyber During my career, it’s been my honor to have served alongside some of the most capable and talented corporate executives in the world. One such executive, Andy Geisse, now serves as Operating Partner...
read moreTen Questions to Ask When Selecting a New Threat and Vulnerability Management Solution
Is your organization looking for a new vulnerability management solution? If so, you’re not alone. With the exponential increase in cyber threat over the last few years, nearly every IT and security organization are seeking out better ways to...
read moreWatch Those Robots
Are you worried about security for robots? I am. I worked with welding robots many, many years ago. They were not networked, and they ran on proprietary embedded systems and code. Twenty-five years later, I remember being briefed by a...
read moreIoT Patching is Not Likely to Happen Soon
The federal government has issued its guidance for manufacturers of Internet of Things (IoT) devices. In November, 2015, the Department of Homeland Security issued its Strategic Principles for Security the Internet of Things. The main...
read moreGuidance is Not Enough for Medical System Security
Hospitals and healthcare networks have a big problem. While they were focused on protecting data to be in compliance with HIPAA, they have been steadily deploying more and more technology. Aside from all the personal devices for remote...
read moreIt’s Time Your Healthcare IT System Had a Checkup!
How do you determine the overall health of a patient? You run a series of blood and other diagnostic tests to look for anomalies. How do you measure the risk of future diseases for a given patient? You assess familial patterns to determine the...
read moreWhen IoT Security is a Matter of Life or Death
In the IT security world, regulations have a tendency to add clarity to otherwise obscure risks. While it may be impossible to quantify or even scope the risk of hacked devices, a regulation, with its fines and penalties, makes risk concrete....
read moreSpectre Rises from the Grave
On May 21, 2018, Microsoft and Google released two new side-channel attacks called Spectre Variant 3a (CVE-2018-3640) and Variant 4 (CVE-2018-3639). These are only important to worry about if you are an operating system developer; for everyone...
read moreStates Can Do More to Protect Elections
Last month, Congress authorized $380 million in federal funding for states to improve the administration of elections and enhance election security. The Election Assistance Commission (EAC) is now distributing the funds. While the EAC did not...
read moreFeatured Authors
