Starting a CIO role at an org with clear security deficiencies - what is the scale of options for baseline invasion test / security audits?
Moving into an org as CIO that clearly has neglected security processes and best practices.Elements include restaurant footprints, cross office network, digital properties, HR systems etcIs there a scale of initial audit/baseline/self-driven security tests I have at my leisure?Coming in with asking for budget for a heavy security budget may not be feasible but building up to it may be the way to go.Any input welcome.
Submitted May 25, 2018 at 05:04AM by cacecototh
via reddit https://ift.tt/2scuyDR
Moving into an org as CIO that clearly has neglected security processes and best practices.Elements include restaurant footprints, cross office network, digital properties, HR systems etcIs there a scale of initial audit/baseline/self-driven security tests I have at my leisure?Coming in with asking for budget for a heavy security budget may not be feasible but building up to it may be the way to go.Any input welcome.
Submitted May 25, 2018 at 05:04AM by cacecototh
via reddit https://ift.tt/2scuyDR
reddit
r/security - Starting a CIO role at an org with clear security deficiencies - what is the scale of options for baseline invasion…
1 votes and 0 so far on reddit
How to Protect Your Router From the Latest Malware Attack
https://ift.tt/2IG0j21
Submitted May 25, 2018 at 04:57AM by wewewawa
via reddit https://ift.tt/2INiMpI
https://ift.tt/2IG0j21
Submitted May 25, 2018 at 04:57AM by wewewawa
via reddit https://ift.tt/2INiMpI
Lifehacker
How to Protect Your Router From the Latest Malware Attack
We talk a lot about software designed to attack our smartphones and computers, but it turns out your router might also be at risk. That’s right. Some dangerous new malware is going after the box you use to beam internet around your home or office.
Amazon device recorded private conversation, sent it out to random contact
https://ift.tt/2GLtpYb
Submitted May 25, 2018 at 10:07AM by stanislavb
via reddit https://ift.tt/2sc6ShO
https://ift.tt/2GLtpYb
Submitted May 25, 2018 at 10:07AM by stanislavb
via reddit https://ift.tt/2sc6ShO
KIRO
Woman says her Amazon device recorded private conversation, sent it out to random contact
A Portland family contacted Amazon to investigate after they say a private conversation in their home was recorded by Amazon's Alexa -- the voice-controlled smart speaker -- and that the recorded audio was sent to the phone of a random person in Seattle,…
Mic blocker app on phone turned off by AI?
So I use an app called Microphone Block Pro on my Android phone, and happily assumed I was now safe from audio snooping. It always seemed to work, because when I'd answer the phone but forget to turn it off, the person on the other end couldn't hear me. Then one day recently I called a place that had a standard AI voice navigation system you had to go through to get to a human customer service rep, and I gave verbal answers when prompted until it connected me to the rep. After I hung up, I realized I hadn't turned off the mic blocker app until I was about to talk to the human, and yet the voice navigation system had somehow heard me. Has anyone else experienced this and does it mean an AI navigation system on the other hand can turn off your mic blocker, and if so, how?
Submitted May 25, 2018 at 08:28AM by Mordred478
via reddit https://ift.tt/2sbUBdp
So I use an app called Microphone Block Pro on my Android phone, and happily assumed I was now safe from audio snooping. It always seemed to work, because when I'd answer the phone but forget to turn it off, the person on the other end couldn't hear me. Then one day recently I called a place that had a standard AI voice navigation system you had to go through to get to a human customer service rep, and I gave verbal answers when prompted until it connected me to the rep. After I hung up, I realized I hadn't turned off the mic blocker app until I was about to talk to the human, and yet the voice navigation system had somehow heard me. Has anyone else experienced this and does it mean an AI navigation system on the other hand can turn off your mic blocker, and if so, how?
Submitted May 25, 2018 at 08:28AM by Mordred478
via reddit https://ift.tt/2sbUBdp
reddit
r/security - Mic blocker app on phone turned off by AI?
1 votes and 0 so far on reddit
Is this proof Facebook is spying on us? What to do about it?
https://ift.tt/2IK2DFw
Submitted May 25, 2018 at 08:16AM by aslaneverywhere
via reddit https://ift.tt/2xaV84R
https://ift.tt/2IK2DFw
Submitted May 25, 2018 at 08:16AM by aslaneverywhere
via reddit https://ift.tt/2xaV84R
Brag Magazine
I'm 100% convinced Facebook is spying on my husband and I | The Brag
This can not be a coincidence.
Homemade keypad security system (surprising uncomplicated).
https://ift.tt/2xi0hZg
Submitted May 25, 2018 at 03:28PM by QUZANG
via reddit https://ift.tt/2J20Mv5
https://ift.tt/2xi0hZg
Submitted May 25, 2018 at 03:28PM by QUZANG
via reddit https://ift.tt/2J20Mv5
reddit
I built a keypad security system for my locker! • u/QUZANG
1 points and 0 comments so far on reddit
how you can detect Avast AV and AV sandbox on a machine
https://twitter.com/vah_13/status/999934424388177920
Submitted May 25, 2018 at 03:25PM by q123asa1
via reddit https://ift.tt/2J4myOS
https://twitter.com/vah_13/status/999934424388177920
Submitted May 25, 2018 at 03:25PM by q123asa1
via reddit https://ift.tt/2J4myOS
reddit
r/security - how you can detect Avast AV and AV sandbox on a machine
1 votes and 1 so far on reddit
Amazon confirms that Echo device secretly shared user’s private audio
https://ift.tt/2J1nZxh
Submitted May 25, 2018 at 11:59AM by wfpoulet
via reddit https://ift.tt/2GRw9Dy
https://ift.tt/2J1nZxh
Submitted May 25, 2018 at 11:59AM by wfpoulet
via reddit https://ift.tt/2GRw9Dy
Ars Technica
Amazon confirms that Echo device secretly shared user’s private audio [Updated]
The call that started it all: "Unplug your Alexa devices right now."
Certified Ethical Hacker(CEH V10) Training Certification in Delhi,NCR.
https://ift.tt/2sbZjHR
Submitted May 25, 2018 at 11:44AM by surajgupta1234
via reddit https://ift.tt/2IIYxgM
https://ift.tt/2sbZjHR
Submitted May 25, 2018 at 11:44AM by surajgupta1234
via reddit https://ift.tt/2IIYxgM
Codecnetworks
Certified Ethical Hacker(CEH V10) Training Certification in Delhi,NCR.
EC Council Certified Ethical Hacking | CEH V10 Training & Certification is best offered by Cyber Security | IT Security Experts from Codec Networks in Delhi, NCR.
Week 21 in Information Security, 2018
https://ift.tt/2GNmr54
Submitted May 25, 2018 at 11:42AM by undercomm
via reddit https://ift.tt/2knB0TZ
https://ift.tt/2GNmr54
Submitted May 25, 2018 at 11:42AM by undercomm
via reddit https://ift.tt/2knB0TZ
Malgregator
InfoSec Week 21, 2018
500,000 routers in more than 50 countries are infected with the malware targeting routers. Primarily home devices like Linksys,...
Security In 5: Episode 246 - Tools, Tips and Tricks - Eraser
https://ift.tt/2xbbOcu
Submitted May 25, 2018 at 06:31PM by BinaryBlog
via reddit https://ift.tt/2ILBYIa
https://ift.tt/2xbbOcu
Submitted May 25, 2018 at 06:31PM by BinaryBlog
via reddit https://ift.tt/2ILBYIa
Libsyn
Security In Five Podcast: Episode 246 - Tools, Tips and Tricks - Eraser
This week's tools, tips and tricks episode talks about a tool that can help you securely delete files. Just hitting delete or putting a file in the Trash doesn't actually delete it. This episode goes into how deleting works and why a tool like Eraser can…
e-Voting and DDoS Concerns: The Devil’s in the Details
https://ift.tt/2Lv85dd
Submitted May 25, 2018 at 06:55PM by whitehattracker
via reddit https://ift.tt/2GPv3If
https://ift.tt/2Lv85dd
Submitted May 25, 2018 at 06:55PM by whitehattracker
via reddit https://ift.tt/2GPv3If
reddit
r/security - e-Voting and DDoS Concerns: The Devil’s in the Details
1 votes and 0 so far on reddit
Bypass Mac Filter Of any Wireless Network and Connect To It
https://ift.tt/2IN1b0V
Submitted May 25, 2018 at 08:24PM by vortex1000
via reddit https://ift.tt/2INDqWH
https://ift.tt/2IN1b0V
Submitted May 25, 2018 at 08:24PM by vortex1000
via reddit https://ift.tt/2INDqWH
Hack My Device
Spoof Mac Address:How To Bypass Mac Filter In Kali And Android
Detecting Lies through Mouse Movements
https://ift.tt/2LvnFp2
Submitted May 25, 2018 at 08:42PM by volci
via reddit https://ift.tt/2sdVl2D
https://ift.tt/2LvnFp2
Submitted May 25, 2018 at 08:42PM by volci
via reddit https://ift.tt/2sdVl2D
reddit
r/security - Detecting Lies through Mouse Movements
7 votes and 1 comment so far on Reddit
Wireless Carrier Abuse Of Location Data Makes The Facebook, Cambridge Scandal Look Like Amateur Hour
https://ift.tt/2IQAKY4
Submitted May 25, 2018 at 08:40PM by volci
via reddit https://ift.tt/2J9RNbm
https://ift.tt/2IQAKY4
Submitted May 25, 2018 at 08:40PM by volci
via reddit https://ift.tt/2J9RNbm
Techdirt.
Wireless Carrier Abuse Of Location Data Makes The Facebook, Cambridge Scandal Look Like Amateur Hour
As we've noted a few times now, however bad the recent Facebook and Cambridge Analytica scandal was, the nation's broadband...
Intel's 'Virtual Fences' Spectre Fix Won't Protect Against Variant 4
https://ift.tt/2koYRCX
Submitted May 25, 2018 at 08:40PM by volci
via reddit https://ift.tt/2KUt484
https://ift.tt/2koYRCX
Submitted May 25, 2018 at 08:40PM by volci
via reddit https://ift.tt/2KUt484
The first stop for security news | Threatpost
Intel’s ‘Virtual Fences’ Spectre Fix Won’t Protect Against Variant 4
Spectre and Meltdown fixes for Intel chips announced in March, to be embedded into new CPUs, do not address the newly disclosed Variant 4, sources said.Intel introduced hardware-based safeguards t
How to make an online vault at my web host or cloud storage?
How can I make my sensitive files unreadable on a web host or service similar to Dropbox (if account being compromised).I’m think something like an encryption and decryption program that store files though SFTP to my web host or save to Dropbox or maybe mega, and support both macOS and iOS.Did anyone know a working secure solution?
Submitted May 25, 2018 at 08:32PM by pbni6n
via reddit https://ift.tt/2J8sjuP
How can I make my sensitive files unreadable on a web host or service similar to Dropbox (if account being compromised).I’m think something like an encryption and decryption program that store files though SFTP to my web host or save to Dropbox or maybe mega, and support both macOS and iOS.Did anyone know a working secure solution?
Submitted May 25, 2018 at 08:32PM by pbni6n
via reddit https://ift.tt/2J8sjuP
reddit
How to make an online vault at my web host or cloud... • r/security
How can I make my sensitive files unreadable on a web host or service similar to Dropbox (if account being compromised). I’m think something like...
Split single file to multiple unreadable files for security
Is there a iOS/macOS app that can split a single (maybe encrypted file like .dmg, .zip, or just plain unencrypted .txt) file into multiple files (and perhaps encrypt each files on the end)?Maybe even can automatically store those files to different cloud/physical storages. And when I need my original file, the app can automatically retrieve all those files from multiple location.
Submitted May 25, 2018 at 09:56PM by pbni6n
via reddit https://ift.tt/2LvUuC3
Is there a iOS/macOS app that can split a single (maybe encrypted file like .dmg, .zip, or just plain unencrypted .txt) file into multiple files (and perhaps encrypt each files on the end)?Maybe even can automatically store those files to different cloud/physical storages. And when I need my original file, the app can automatically retrieve all those files from multiple location.
Submitted May 25, 2018 at 09:56PM by pbni6n
via reddit https://ift.tt/2LvUuC3
reddit
Split single file to multiple unreadable files for... • r/security
Is there a iOS/macOS app that can split a single (maybe encrypted file like .dmg, .zip, or just plain unencrypted .txt) file into multiple files...
Looking for a secure way to store all my important files online for ease access.
Is there an iOS/macOS app that can separate a file to multiple incomplete encrypted files and store them to multiple cloud (Dropbox like or remote server via SFTP/WebDAV)/physical storage for safe keeping.Like Cryptomator but with more security measures.Of course, any other crazy pretty much uncrackable way to store sensitive information online are welcome too.Thanks everyone!Oh, put in a physical drive is not a good option for me, even if both file and disk are encrypted.
Submitted May 25, 2018 at 10:47PM by pbni6n
via reddit https://ift.tt/2J3MR7B
Is there an iOS/macOS app that can separate a file to multiple incomplete encrypted files and store them to multiple cloud (Dropbox like or remote server via SFTP/WebDAV)/physical storage for safe keeping.Like Cryptomator but with more security measures.Of course, any other crazy pretty much uncrackable way to store sensitive information online are welcome too.Thanks everyone!Oh, put in a physical drive is not a good option for me, even if both file and disk are encrypted.
Submitted May 25, 2018 at 10:47PM by pbni6n
via reddit https://ift.tt/2J3MR7B
reddit
Looking for a secure way to store all my important... • r/security
Is there an iOS/macOS app that can separate a file to multiple incomplete encrypted files and store them to multiple cloud (Dropbox like or remote...
FBI tells router users to reboot now to kill malware infecting 500k devices
https://ift.tt/2JaYs57
Submitted May 26, 2018 at 12:33AM by ResponsibleThomas
via reddit https://ift.tt/2LxyEhw
https://ift.tt/2JaYs57
Submitted May 26, 2018 at 12:33AM by ResponsibleThomas
via reddit https://ift.tt/2LxyEhw
Ars Technica
FBI tells router users to reboot now to kill malware infecting 500k devices
Feds take aim at potent VPNFilter malware allegedly unleashed by Russia.
I'm really glad GDPR is here, yet, this is only another step forward to really grasping what companies are doing with your private life
I'm really tired of EULA's, of the "disclosing information", of the "sharing information", of the "collecting information"... Really, fucking, tired. Now, with this regulation we are even more conscious about the crap of it all.Companies simply collect information because they WANT, not because is needed. They have been doing this for more than a decade now with the boom of social networks. Why? Why the fuck have we allowed these people to get into our lifes like this? More like "why", "how"?It's actually really simple. Back then, nobody actually informed people about what they did with all the data. And now, as I said, we are just grasping what they actually do with all of it.What do people need REALLY think is this. For example: Netflix>collects data about the programmes you watch. Why? Why the hell do they need to do that? Why? They actually don't "need" it, they do it because we allow it. Becuase it's "how it works" https://help.netflix.com/legal/privacy But this happens with any other stream service, like Amazon Prime, and so on and forth. EVERYONE does it.Again, do they need to do it? No, they simply do it because it's "their agreement with you".Goverments need to start (and fucking soon) to enforce companies to NOT collect personal data, to NOT store usage data. It's not about "telling" us what they collect, is about STOPPING them from collecting that data. The law is the only way to stop companies from doing whatever the fuck they want. And it's not about "don't like it, don't use it". This is getting to all areas of entertainment, businesses, social networks, shopping, job hunting, and so on. Are you going to unplug yourself from everything just so they don't collect information from you? Are you going to go living in the wilderness now? Is not about "I don't have secrets", (ff you think like that still, you really need to get educated elsewhere...), is about your private life and your family's.When you used to watch the analog TV, nobody would know what you were watching, what music you were listening on the radio or what cassette tape you would be playing. Now Spotify knows it, shares it with Facebook, hell, it will even tell all your friends that you love Madonna automatically. Now everything can be monitored, stored and kept under crontrol. Information control, people control... Certain videogame designer was very right about all this crap 15 years ago.Companies 20-15 years ago would ASK you to perform a survey to get to know what you like. It was VOLUNTARY. Now, everything they collect is forced to you via an EULA, a Privacy Policy, an User Agreement.This has to stop and will stop, because people is getting educated about this and people will get tired of all this BS.
Submitted May 26, 2018 at 12:57AM by JAD2017
via reddit https://ift.tt/2KX3LSX
I'm really tired of EULA's, of the "disclosing information", of the "sharing information", of the "collecting information"... Really, fucking, tired. Now, with this regulation we are even more conscious about the crap of it all.Companies simply collect information because they WANT, not because is needed. They have been doing this for more than a decade now with the boom of social networks. Why? Why the fuck have we allowed these people to get into our lifes like this? More like "why", "how"?It's actually really simple. Back then, nobody actually informed people about what they did with all the data. And now, as I said, we are just grasping what they actually do with all of it.What do people need REALLY think is this. For example: Netflix>collects data about the programmes you watch. Why? Why the hell do they need to do that? Why? They actually don't "need" it, they do it because we allow it. Becuase it's "how it works" https://help.netflix.com/legal/privacy But this happens with any other stream service, like Amazon Prime, and so on and forth. EVERYONE does it.Again, do they need to do it? No, they simply do it because it's "their agreement with you".Goverments need to start (and fucking soon) to enforce companies to NOT collect personal data, to NOT store usage data. It's not about "telling" us what they collect, is about STOPPING them from collecting that data. The law is the only way to stop companies from doing whatever the fuck they want. And it's not about "don't like it, don't use it". This is getting to all areas of entertainment, businesses, social networks, shopping, job hunting, and so on. Are you going to unplug yourself from everything just so they don't collect information from you? Are you going to go living in the wilderness now? Is not about "I don't have secrets", (ff you think like that still, you really need to get educated elsewhere...), is about your private life and your family's.When you used to watch the analog TV, nobody would know what you were watching, what music you were listening on the radio or what cassette tape you would be playing. Now Spotify knows it, shares it with Facebook, hell, it will even tell all your friends that you love Madonna automatically. Now everything can be monitored, stored and kept under crontrol. Information control, people control... Certain videogame designer was very right about all this crap 15 years ago.Companies 20-15 years ago would ASK you to perform a survey to get to know what you like. It was VOLUNTARY. Now, everything they collect is forced to you via an EULA, a Privacy Policy, an User Agreement.This has to stop and will stop, because people is getting educated about this and people will get tired of all this BS.
Submitted May 26, 2018 at 12:57AM by JAD2017
via reddit https://ift.tt/2KX3LSX
reddit
r/security - I'm really glad GDPR is here, yet, this is only another step forward to really grasping what companies are doing with…
3 votes and 0 so far on reddit