In June, Tripwire security researcher Travis Smith conducted a presentation at InfoSecurity Europe 2016 on how open source and other free tools can monitor, protect and mitigate threats in IoT environments. In addition, Smith explained how these tools and methodologies can be deployed on inexpensive hardware, such as the Raspberry Pi. In this special security slice podcast hosted by Tyler […]… Read More The post Security Slice – Sweet Security: Building a Defensive Raspberry Pi appeared first on The State of Security.

Security Slice by Tripwire

Security Slice – Sweet Security: Building a Defensive Raspberry Pi

According to a recent report by Symantec, attacks exploiting previously unknown (or zero-day) software vulnerabilities more than doubled last year. Researchers believed this spike may be caused by the Hacking Team breach, which forced several zero-day exploits into the wild. Was the recent increase in zero-days a onetime occurrence, or should we expect disclosure of […]… Read More The post Security Slice: The Zero-Day Arms Race appeared first on The State of Security.

Security Slice: The Zero-Day Arms Race

In the beginning of April, the Badlock vulnerability was everywhere. It had its own logo and website, along with an announcement stating security updates would only become available as part of the April Microsoft Patch Tuesday. But when the details were revealed, many security experts felt Badlock’s marketing was not consistent with the severity of the […]… Read More The post Security Slice: The Bug That Cried Wolf appeared first on The State of Security.

Security Slice: The Bug That Cried Wolf

Ransomware seems to be everywhere. According to Blue Coat Systems’ 2015 Mobile Malware Report, ransomware is now the top malware threat targeting mobile devices, and it has even begun to infect Apple’s Macintosh computers. Hospitals across the nation have been significantly impacted by ransomware campaigns. What factors are driving this dramatic rise in ransomware? Listen to our […]… Read More The post Security Slice: The Resurgence of Ransomware appeared first on The State of Security.

Security Slice: The Resurgence of Ransomware

After weeks of controversy, the FBI announced it successfully cracked the iPhone of the San Bernardino shooter. The FBI’s method did not require Apple’s assistance, but the discussion surrounding encryption and law enforcement is far from over. This special security slice podcast was recorded several days before the FBI dropped its legal case against Apple. […]… Read More The post Security Slice: The Apple Encryption Debate appeared first on The State of Security.

Security Slice: The Apple Encryption Debate

In early March, Tripwire security researcher Travis Smith did a presentation at RSA Conference 2016 on how commercial and open source threat intelligence tools can work together to add essential time context to log data. This crucial data allows organizations to pinpoint exactly when a breach occurred and other critical forensic analysis information. Listen to this special security slice […]… Read More The post Security Slice: Dreaming of IoCs and Threat Intelligence appeared first on The State of Security.

Security Slice: Dreaming of IoCs and Threat Intelligence

San Francisco is hosting a major software development festival roughly 10 days before RSA’s 2016 security conference rolls into the city. Whether you are a new software developer or a seasoned architect, how can you build security into your development process? Listen to our latest Security Slice podcast and hear Tim Erlin, Tyler Reguly and Craig Young discuss why developer […]… Read More The post Security Slice: Secure Software Development appeared first on The State of Security.

Security Slice: Secure Software Development

In December 2015, a power outage in the Ukraine left over 700,000 citizens without electricity. Security researchers confirmed that the outage was caused by BlackEnergy malware and there’s been a lot of speculation that Russia was behind the cyber attack. What lessons can U.S. critical infrastructure providers learn from these attacks? Listen to our latest Security […]… Read More The post Security Slice: BlackEnergy Blackouts appeared first on The State of Security.

Security Slice: BlackEnergy Blackouts

A multinational insurance company called Chubb will soon offer their clients ‘troll insurance.’ This new policy will allow holders to claim up to £50,000 to pay for expenses caused by online abuse, including professional counselling and forensics to track down the original bullies. The Internet is infamous for widespread cyber bullying; will this become a […]… Read More The post Security Slice: The High Cost of Trolls appeared first on The State of Security.

Security Slice: The High Cost of Trolls

In their Q3 2015 report, Akamai Technologies noticed a dramatic rise in Distributed Denial-of-Service (DDoS) attacks. These attacks rose 23% from the previous quarter and jumped a dramatic 180% from Q3 2014. What is behind the increase in distributed denial-of-service attacks and the damage they cause? Listen to our latest Security Slice podcast and hear Tim […]… Read More The post Security Slice: Diffusing DDoS Damage appeared first on The State of Security.

Security Slice: Diffusing DDoS Damage

FireEye recently discovered a massive spear-phishing malware campaign targeting journalists in Hong Kong. The attack appeared to be state-sponsored, and hid a command and control server in their victim’s Dropbox account. As is often the case, the attack could have been circumvented by installing a few simple patches. How can vendors support the patching process […]… Read More The post Security Slice: Cloudy with a Chance of Patching appeared first on The State of Security.

Security Slice: Cloudy with a Chance of Patching

VTech, a global electronics manufacturer and toymaker, recently suffered from a data breach that exposed personal information for over 200,000 children and 5 million adults. The data leaked included names, home addresses, genders, birthdays and linked parents and children. Do children face unique security risks when their information is exposed in a data breach? Listen […]… Read More The post Security Slice: The VTech Breach appeared first on The State of Security.

Security Slice: The VTech Breach

According to a recent report by Trend Micro, the majority of cyber criminals in Japan request payment through gift cards. Meanwhile, an Apple Store employee in New York was recently arrested for using fraudulent credit card details to buy almost $1 million worth of Apple gift cards. Credit card fraud is  widely understood but how […]… Read More The post Security Slice: Cyber Crime: The Gift That Keeps on Giving appeared first on The State of Security.

Security Slice: Cyber Crime: The Gift That Keeps on Giving

Surprise, surprise: ransomware is on the rise. Not only is ransome-focused malware becoming more common, it’s becoming more complicated, as well. For example, Linux.Encoder.1 is a new breed of ransomware which can be injected into websites to pose as shopping cart programs. Despite the dangers of ransomware, a member of the FBI recently recommended that […]… Read More The post Security Slice: The Rising Cost of Ransomware appeared first on The State of Security.

Security Slice: The Rising Cost of Ransomware

Apple recently removed over 250 iOS from their App Store. Every removed app used a software-development kit from Chinese advertiser Youmi, which allegedly data mined massive amounts of information from users without the developers or customer’s knowledge. How can users identify malicious or intrusive apps on mobile stores? Listen to our latest Security Slice podcast […]… Read More The post Security Slice: Avoiding Adverse Apps appeared first on The State of Security.