I wanted to update you on the Microsoft authentication issues caused by the May patches. Microsoft has released an “out of band” update for the on-going Microsoft authentication issues stemming from the May Microsoft Domain Controller patches.

This month we talked about how the Ukraine situation affects the cybersecurity landscape for the US and what it means for network security. Leading this discussion was Jason Whitehurst, a cybersecurity professional of over 20+ years, and Vince Crisler, former White House CISO and DarkCubed founder and CEO. Scott Quimby had the opportunity to listen […]

I wanted to update you on the Microsoft authentication issues caused by the May patches. This only potentially affects Microsoft Domain Controllers. More specifically it only affects Domain Controllers that are using certificates in any way for some form of authentication.

“Legends state that Achilles was invulnerable in all of his body except for one heel because when his mother Thetis dipped him in the River Styx as an infant, she held him by one of his heels. Alluding to these legends, the term “Achilles’ heel” has come to mean a point of weakness, especially in […]

Mitre Engenuity has released its 2022 fully independent evaluation of 30 of the most common cybersecurity endpoint protection platforms. Why does this matter? The 2022 assessment and results are particularly interesting because the payload they used is the most common, and nefarious, ransomware and malware variants in use today.

Your techs *should not* be local admins anymore. It is simply too dangerous.   I have personally been a limited user on all my laptops, VMs and desktops for three years. I am living a happy life. It is time to completely eliminate this concept of “Techs are Local Admins”. It is simply too dangerous […]

We have to plan to safely ride out storms and other unforseen events   I am fresh off another weekend of power issues with the big storm. It was another object lesson that it is imperative to actually test disaster recovery strategies.

  “War, huh, yeah What is it good for? Absolutely nothing, uh-huh, uh-huh” -War by Edwin Starr The world is all looking in horror at the events unfolding in Ukraine. Our thoughts and prayers are with the people of Ukraine under siege.

How I manage the storm of information and how you can quickly know what I think is important.   A few thoughts on how I manage the myriad of technical information I read through and how you can get plugged in real-time to what I think is important.

  Today’s NIST Topic is – “Implement a Security Awareness and Training Program” This is something very near and dear to Bob’s and my heart. We talk on this and write on this and plead on this. Security awareness and training is one of those areas where we are never done and always continually trying […]