CarmeloWalsh[.]com

Amazing Arizona Comic Con 2016

Posted on February 13, 2016 by Carmelo

I don’t know why, but on mobile devices, the pictures come out sideways, on computer, they show up just fine…

This is Daryl, Daryl has a booth at Arizona Comic Con! Daryl is my cousin’s roommate!

Who would win in a fight? Superman or Goku? Trick question! They’re buds!

Beau loves his slippers! He’s so friggin’ big!

Been caught stealin’

Family selfie time!

I met instagrammer Amber Skies

Deadpat and Dogpool!

We met a cosplayer named Nikki with a huge dress. We talked briefly about logistics of traveling with a large costume. She talked a little about her friend Tia, who was a Swashbuckling Poison Ivy

Who did we see in the parking lot as we were leaving? We had a brief conversation with Tia about just talking to Nikki.

Posted in life | Tagged Amazing Arizona Comicon, cosplay, Costume | Comments Off

Con Job on the Department of Justice!

Posted on February 9, 2016 by Carmelo

A hacktivist, who had a compromised email account belonging to a DOJ employee, was poking around the DOJ portal. With the determination to get further in, and getting stopped with a challenge of needing a token code they were stuck…

What would any new person do?
Probably call up support, say they are new, and ask how they can get in.
And that is exactly what went down. The support personnel even gave up their own token code.

Once the hacktivist was logged on, they had access to personal VMs with mapped drives. It’s reported that 200GB was exfiltrated.

Yesterday, the hacktivist dropped information on 20,000 FBI employees on Cryptobin

When Motherboard was trying to vet the data, calling the Homeland Security’s National Operations Center; the reporter’s call was the first NOC had heard about the leak. This negative event shows that we aren’t doing the basic security fundamentals! The least amount of effort necessary to keep data secure!

Posted in Security Blog | Tagged 2016, breach, dhs, doj, dump, FBI, freepalestine, hacked, hacktivism, hacktivist, privacy, sb50, social engineering | Comments Off

Arizona Renaissance Festival 2016

Posted on February 7, 2016 by Carmelo

It was so nice to spend the day with family at our annual trip to the Renaissance Festival.

Posted in Event | Tagged Arizona Renaissance Festival, Beau, Brandee, Brent, Carmelo, Courtney, Damien, Jaime, Patrick | Comments Off

It’s Tax Season ∴ CyberThieves Are Working Full Time!

Posted on January 27, 2016 by Carmelo

With most things going electronic, it’s beneficial to be aware of some of the tricks a con-artist would use to get your W-2 and try to claim your tax refund before you have the chance to.

One popular method is for the crooks to set up a fake employee benefits website that asks for your details, like name, birthdate, and social security number; then send out some phishing emails that look like your W-2 is ready for download.

Another popular method is to set up a fake Tax preparation company cloned website that also asks for your details, but the phishing email that hits your inbox has promises for pretty large tax returns.

But how do these thieves know who to target? They look to social media and start harvesting information. Some social media sites offer pretty detailed search capabilities, such as the ability to list out who lives in Alabama, likes Intuit Turbo Tax, and likes Walmart. (Nothing against Alabamians, it’s just the first State alphabetically). Now a cyberthief can set up a fake Turbo Tax website and a fake Alabama State tax website, send out a fake Alabama State Tax and Turbo Tax phishing email, and since the majority of people who shop at Walmart are usually looking for a great deal, may not have a lot of spending money, will see an email with possible promises for a large refund…

It sounds like a lot of work for cybercriminals, but the work to reward ratio is crazy successful! Plus, know that if it didn’t work, we wouldn’t see it around.

How do we protect ourselves from showing up in those searches? We police our own social media profiles! We tighten up the privacy settings of who can view them.

If it’s too late and you’ve already learned that your identity was stolen, (HINT, someone already cashed out your tax refund), visit https://www.identitytheft.gov/

Here is a cool infographic on what Cybercriminals are shopping for (and what they’re paying)

Posted in Security Blog | Tagged 2016, cybercrime, fraud, infographic, phishing, privacy, social engineering, spearphishing, tax refund | Comments Off

Korea’s Self Driving Uber. The Rise of Automated Vehicles

Posted on January 21, 2016 by Carmelo

In Seoul Korea, driverless taxis that emulate an Automated Uber, has already begun live testing. This leaps forward how we are progressing as a society and it’s relationship with vehicle ownership.

Uber has led the change of how we travel; so far Uber has:

Taken 40% of profits from NY Taxi services, eliminating 10,000 jobs
Hired famous car hackers to harden vehicles against hacks
Interested in removing the drivers from their services to create autonomous mobility

General Motors and Lyft have partnered to make self-driving car-sharing vehicles.

Tesla released functionality to enable vehicle autonomy.

It’s where we are headed. Just order your car via mobile device, and hop in and get delivered.

The future is the top right quadrant and where we are headed. Millennials and the prediction of future generations have been caring less and less about driving and buying and insuring cars and it’s starting to make sense to have a shared buying experience since cars sit on average for more than 85% of the total time they are owned. Especially in cities where parking is a huge challenge and not convenient.

Posted in Security Blog | Tagged autonomous, autonomous vehicles, GM, Lyft, Tesla, uber | Comments Off

Remember the Fappening?

Posted on January 21, 2016 by Carmelo

Some time ago, back in 2014, I wrote about the Fappening, when someone hacked a bunch of Apple cloud accounts and stole personal pictures of famous celebrities.

Turns out that some of the victims to this hack was due to a spearphishing attack and not just the iBrute attack as originally thought, the attacker, named Ed Majerczyk, sent the following to potential celebrity victims.

“Your Apple ID was used to login into iCloud from an unrecognized device on Wednesday, August 20th, 2014. Operating System: iOS 5.4 Location: Moscow, Russia (IP=95.108.142.138) If this was you please disregard this message. If this wasn’t you for your protection, we recommend you change your password immediately. In order to make sure it is you changing the password, we have given you a one-time passcode, 0184737, to use when resetting your password at http://applesecurity.serveuser.com/. We apologize for the inconvenience and any concerns about your privacy. Apple Privacy Protection.”

According to the FBI, Ed breached 330 unique iCloud accounts from his home a total of over 600 times in 2014. Once breached, Ed downloaded the entirety of a victim’s iPhone camera roll and uploaded it to the popular 4chan.

Posted in Security Blog | Tagged Apple, fappening, FBI, iBrute, iCloud, phishing, spear phishing, spearphishing | Comments Off

Data Privacy Day Video

Posted on January 21, 2016 by Carmelo

StaySafeOnline1 posted a new video today

Posted in Security Blog | Tagged 2016, data privacy day, privacy | Comments Off

Privacy is Good for Business – Infographic

Posted on January 19, 2016 by Carmelo

77% of Americans feel that it is important for companies to disclose information that is collected about them.

#PrivacyAware

Posted in Security Blog | Tagged privacyaware, Security Awareness | Comments Off

S	M	T	W	T	F	S
	1	2	3	4	5	6
7	8	9	10	11	12	13
14	15	16	17	18	19	20
21	22	23	24	25	26	27
28	29	30

Share

Share

Share

Share

Share

Share

Share

Share

Share

Share

Blog Stats