Category Archives: Security Blog

There is no CyberSecurity?

Posted on December 2, 2014 by Carmelo

60 Minutes has a video on cyberthieves stealing your credit card information. This is a must watch for everybody who has a debit/credit card; a must watch for every merchant and service provider. The 15 minute video talks of the … Continue reading

Posted in Security Blog | Tagged , , , , , , | Comments Off on There is no CyberSecurity?

PCI ISA

Posted on December 2, 2014 by Carmelo

A couple of weeks ago, I took the training and test. I just got news yesterday. Yaay, Go me! I’ll get my PCIP as well, because, why not? Now onto my next certification.

Posted in Security Blog | Tagged , , , | Comments Off on PCI ISA

Cyber Monday is Tomorrow, Please be Cyber Secure

Posted on November 30, 2014 by Carmelo

Be sure to stop and think about where you are when you are out and about, don’t use public wifi hotspots. It’s cyber hunting time and your data is the target and it is very easy for malicious evil doers … Continue reading

Posted in Security Blog | Tagged , , , , | Comments Off on Cyber Monday is Tomorrow, Please be Cyber Secure

1st Duqu. Next came Stuxnet. Now Regin.

Posted on November 28, 2014 by Carmelo

An “extremely complex” and “stealthy” Stuxnet Equivalent spying program has been stealing data from ISPs, energy companies, airlines and research-and-development labs. Regin is a multi-staged threat and each stage is hidden and encrypted, with the exception of the first stage. … Continue reading

Posted in Security Blog | Tagged , , , , | Comments Off on 1st Duqu. Next came Stuxnet. Now Regin.

Need a New Password? Try Passweird

Posted on November 23, 2014 by Carmelo

Passweird is a fun and interesting way to generate a password that meets most regulatory compliance password requirements. In other news, Cyber thieves have started targeting the password managers, like KeePass.

Posted in Security Blog | Tagged , , , , , , , | Comments Off on Need a New Password? Try Passweird

#FeministHackerBarbie

Posted on November 22, 2014 by Carmelo

If you haven’t seen #FeministHackerBarbie, you must! #FeministHackerBarbie is great! — Carmelo Walsh, CISSP (@CaRMCyberSec) November 22, 2014

Posted in Security Blog | Tagged , , | Comments Off on #FeministHackerBarbie

Chinese Made eCigarette USB Malware Phones Home

Posted on November 22, 2014 by Carmelo

It was found that some Chinese made eCigarettes and their USB charging cables, have been made with malware built right in. When plugged into a computer, it phoned home. Is this a true story or a hoax? Hard to tell … Continue reading

Posted in Security Blog | Tagged , , , , , , | Comments Off on Chinese Made eCigarette USB Malware Phones Home

Google Infographic on Account Hijackers

Posted on November 20, 2014 by Carmelo

They have a great article here for more information.

Posted in Security Blog | Tagged , , , , | Comments Off on Google Infographic on Account Hijackers

Google Firing Range

Posted on November 20, 2014 by Carmelo

Google Firing Range is an automated Web Application Security Scanner. Version 0.42, which was released Tuesday checks for Address DOM XSS Redirect XSS Reflected XSS Tag based XSS Escaped XSS Remote inclusion XSS DOM XSS CORS related vulnerabilities Flash Injection … Continue reading

Posted in Security Blog | Tagged , , , , , , , , , , , , , , , | Comments Off on Google Firing Range

Payment Card Industry – Data Security Standard version 3.0

Posted on November 19, 2014 by Carmelo

I’ve been doing some extensive studying for the PCI DSS v 3 and there is a vast improvement on the requirements. There are 6 goals of PCI Remove sensitive authentication data and limit data retention. This milestone targets a key … Continue reading

Posted in Security Blog | Tagged , , , , , , , | Comments Off on Payment Card Industry – Data Security Standard version 3.0