720-891-1663

Security News for the Week Ending November 5, 2021

Trump is Fighting a Mastodon Donald Trump’s not-yet-launched social media site, Truth, is already fighting a potential lawsuit. Although Trump has not said so, tech folks who have seen the site say that it is based on the open source social media code base called Mastodon. The license that comes with Mastodon requires that users […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Have You Adjusted Your Penetration Testing Strategy for the Cloud?

Hackers are targeting the cloud. Why? To paraphrase Willie Sutton, because that is where the data is. Historically, penetration testers gain access to network devices through the “perimeter defense” and then they move around (the so-called east-west movement) trying to get access to data, wherever it lives inside the network perimeter. But in the cloud, […]

Continue reading → [DISPLAY_ACURAX_ICONS]

NIST Unveils Draft of “Seal of Approval” for Consumer Software Security

In response to Executive Order 14028 on improving the nation’s security, NIST was required to produce a set of requirements for consumer software to obtain a security “seal of approval”. Right now the EO calls for the security standard to be voluntary. The theory is that if consumers have a choice between a product that […]

Continue reading → [DISPLAY_ACURAX_ICONS]