Threat Brief Insider

Subscribe to Threat Brief Insider feed
Updated: 3 hours 4 min ago

Learn Things Your Competitors Don’t Want You To Know at OODAloop

June 9, 2019 - 1:09pm

The membership network at OODAloop.com provides actionable insights you can use to inform better decisions and to execute actions that will help you win in the modern marketplace.

Members receive access to research and analysis, special reports and early insights into shifting trends the modern executive needs to track.

Learn more about OODA network resources and start your free trial as an OODA member at:

https://www.oodaloop.com/ooda-network/

You Know The Cyber Threat, Now Do Something About it

April 11, 2019 - 4:59am

We continually capture lessons learned and best practices for reducing digital risk and enhancing cybersecurity and maintain a list you can use to review to ensure you and your team are optimizing defenses.

We provide no-nonsense tips on topics like:

  • How to configure our DNS to reduce the chances that malware will propagate in your systems
  • How to pick the best cybersecurity framework for your organization
  • Tips for dealing with your data

To see the full list visit: OODA Loop Cybersecurity Best Practices

And for external review of your cybersecurity posture see OODA LLC offerings in:

Technology Due Diligence – CTO as a service – CISO as a Service

Put A Team Of Seasoned Professionals On Your Side

April 10, 2019 - 10:37am

OODA LLC is a CTO advisory and Due Diligence firm operating across multiple sectors of the economy. We are known for our ability to help companies mitigate risks and increase compliance while optimizing security spend.

Crucial Point helps clients improve defenses by:

  • CISO as a Service: Strategic leadership for corporate security programs, including evaluation of an exercising of incident response plans.
  • CTO as a Service: Technical architecture review and senior advice, including action plans for modernization and cloud transition.
  • Independent verification and validation of compliance, including GDPR, FFIEC, NIST.

We would love to serve your efforts. Contact OODA LLC  for more information.

 

Journalists In Danger of Cyber Espionage: Lessons from Jamal Khashoggi murder

April 2, 2019 - 1:07pm

BBC news ran a piece titled “Jamal Khashoggi: Saudi murder suspect had spy training” which provides more details on one of the 15-member team sent to kill Jamal Khashoggi. Maher Abdulaziz Mutreb was trained in how to use offensive spyware technology as part of nation-state sponsored efforts for the Saudi state.

A source described how Mr. Mutreb spent time in a course with him in 2011 learning to use tech his company was providing the Saudi government so it could carry out targeted attacks on the phones and computers of its own citizens.

From the BBC report:

“This information might have been basically everything from [their] GPS position, conversation, microphone audio around the device itself, camera pictures, files on disk, emails, contacts, everything that was on the device itself.”

The tools he was trained in, the source said, were similar to other tools which, according to Citizenlab and Amnesty International, were recently used against several of Mr Khashoggi’s friends.

We have a recommendation for all journalists as well as anyone else seeking to make it harder to be spied upon. Take action now to raise your defenses by reviewing the OODA Guide to Cybersecurity Best Practices.

And for external review of your cybersecurity posture see OODA LLC offerings in:

Technology Due Diligence – CTO as a service – CISO as a Service

 

Protect Your Network At Home And Sense When WiFi Enabled Devices Come Close To You With Fingbox

April 1, 2019 - 1:33pm

Fing is a nice app that runs on your smartphone or tablet that will show you who else is on your network. It puts an interface on capabilities like Ping, Traceroute and many others and presents information in a way that is fast. You can find links to download the app at Fing.io. Next time you decide to join a public WiFi network at a conference or hotel you can launch Fing and see how they have configured the network and if you can see others on the net. Note: The Fing app works a bit better on Android, for now. Apple has restricted the ability of applications to see some technical info (specifically MAC addresses). But the greatest functionality of the app is its connectivity to the device mentioned below, the FingBox. So don’t let the lack of ability to scan MAC addresses deter you from downloading the app.

Fing now has something that makes it far more powerful than just an app on your mobile device. They offer a device for your home network called the Fingbox. This adds network security and troubleshooting to watch over your network and give you control to block users you don’t want in your net. It detects intruders, manages devices authorized to use your network and also analyzes the quality of your WiFI and Internet connections. Fingbox also gives you parental controls.

Another really neat thing it will do is give you a “WiFi Fence” around your home. This of this like having a magic super power. You can set it to give you alerts when any device comes near your home. Imagine getting an alert when the mailman approaches or when the pizza delivery guy gets near. Imagine getting an alert when a bad guy comes close at night. Or would you like to know when a WiFi enabled drone is within range of your house?

I love the Fingbox and mostly highly recommend it to anyone with WiFi at home. Find it here.