2015 was another difficult year for Cybersecurity practitioners and organizations working to defend themselves against an increasingly innovative, aggressive, and situationally aware set of adversaries. Large breaches made headlines, while many individuals and smaller organizations were victimized by well monetized crimeware[1] (especially ransomware[2]) and various email and other online account compromises. We see susceptibility to social engineering, unpatched (vulnerable) software, and a … [Read more...]
Comjacking Threats
ContinuityFocus has been warning clients and prospective clients regarding the risks of traffic tampering and interception over unsecured WiFi networks for many years. Our concerns have been based on the fact that many wireless attacks are trivial to execute and would likely go undetected by most users. One of the difficulties in conveying this risk has been the lack of empirical evidence describing the prevalence and impact. Many security organizations prefer to consider less quantified … [Read more...]
MobileED – Device Security and Content Filtering
With ever expanding mobility usage in the workplace and K-12, the need for real device security is more pressing than ever. Mobile Device Management (MDM) solutions are being touted as a security solution, when really they are an asset management tool. For real device security, you need a multi-layered tool which addresses both the security of the device, so users cannot remove your settings, as well as the content those users are allowed to access. MobileED provides both, with fine … [Read more...]