Monday, November 25, 2024

 


CYBER SECURITY GOLD:  

Do any of your Service Accounts have "interactive log on" permissions??

IMHO, the single greatest attack surface mitigation you will ever get is to actively manage identity and access management aspects of your SERVICE ACCOUNTS.

Think about the potential... you probably have more non-human service accounts than authorized human accounts in your network... what a treasure trove of potential accounts to compromise by an attacker... not to mention third party maintenance accounts...

  • ? How often, if ever, do you change the passwords on ALL of your Service Accounts?
  • ? When was the last time you checked that NONE of your Service Accounts have either in error or by a threat actor in your Enterprise Network, been granted "interactive logon" rights ?

 Here is a great Powershell automated way to test for "interactive logon" rights for your service accounts.

Hat's off to the great Guy Leech for his scripting skills share...

Link to Powershell Script 


 

Posted by at No comments:

 

CYBER SECURITY SECRET WEAPONS

Every once in a while your tax dollars actually do do some great work!

The folks at CISA.GOV have been hard at work, enhancing their great SCUBA & SCUBA GOGGLES tools.

You should get a great cup of coffee, close your office door and read up on how these tools can assist you to secure your Business Critical Software Applications that have been or are being planned to be moved to the Cloud.

CISA.GOV's new publicly available "Secure Cloud Business Applications (SCuBA) project provides guidance and capabilities to secure agencies’ cloud business application environments and protect federal information that is created, accessed, shared and stored in those environments.

SCuBA will help secure Federal Civilian Executive Branch (FCEB) information assets stored within cloud environments through consistent, effective, modern, and manageable security configurations.

EXECUTIVE SUMMARY: 

https://www.cisa.gov/resources-tools/services/secure-cloud-business-applications-scuba-project

SCUBA GITHUB REPOSITORY:

https://github.com/cisagov/ScubaGear

SCUBA GOGGLES GITHUB REPOSITORY:

https://github.com/cisagov/Scubagoggles

SCUBA FAQ's 

 https://www.cisa.gov/sites/default/files/2024-04/CSSO-SCuBA-FAQ-FINAL_508c.pdf

Posted by at No comments:

POWERSHELL MAGIC:  Validating Windows Update for Patching Excellence!

Linked below is a great POWERSHELL script and article on validating Windows Update installations across your enterprise installed system base.

  • ? Did the patches "take" ?
  • ? Do I need to re-install ?
  • ? Do I need to reboot ?

 As always, Guy Leech is an excellent resource...

Link to Powershell status script

Reduce day to day repetitive tasks...

Reduce Human Error...

Focus on being proactive, don't wait for your customers to tell you something is off kilter... 

Focus on positive, easily repeatable business outcomes...

AUTOMATE EVERYTHING!

 

Posted by at No comments:

Tuesday, November 5, 2024

 


 HOLIDAY CYBER SECURITY BEST PRACTICES

Below are some helpful tips to minimize your chances of having your Debit or Credit Cards compromised this Holiday Season and for everyday use…

Here's hoping everyone has an amazing and safe 2024 Holiday Season!

If you have questions or comments, please feel free to reach out.

1.        KEEP THINGS UP TO DATE:

a.      Keep your electronic devices up to date.

b.      Check for Operating System patches and apply them

c.       Check for Software updates and apply them as soon as practical

2.     PASSWORDS:

a.      Change the password on your Internet Router at your home and place of business.

b.      If you are using your Web Browsers native password storage capability, please consider moving to a pure play Password Manager like the “DashLane” or “LastPass” password Manager discussed below

c.       Once you have migrated your passwords from your built in Web Browser password plug in to DashLane, delete them from your Web Browser password manager and disable it.

3.     PASSWORD MANAGER:

a.      Implement a Password Manager for all of your electronic devices.

b.      I recommend the “DashLane” “DashLane” or “LastPass” Password Manager, it is very easy to use for Business and Home Use.  It will “auto fill” your passwords if you wish and allow log onto “DashLane” or “LastPass”  via a password or PIN for convenience.

c.       It will “synchronize” it’s password database across all of your electronic devices and has a convenient Web Browser Plug In for ease of use

4.      FINANCIAL MATTERS:

a.      If you are currently storing your credit or debit card data in your Web Browsers built in data storage, consider disabling this capability and removing all credit card data from your Web Browser

b.      Consider using “virtual credit cards” instead of using your actual credit cards for online purchases:

                                                               i.      This Company https://privacy.com/ has an EXCELLENT virtual credit card product that will ensure that your Credit / Debit Cards are NEVER compromised by hackers again.

                                                             ii.      We highly encourage your using this on all your electronic devices

c.       Check your Bank Statements weekly during the Holiday Season

                                                               i.      If you find a questionable transaction, call your Bank immediately and let them know

d.      Never allow any website to store your card data.

                                                               i.      If you have allowed this in the past, take the time to remove it or call the company and have them remove it.

1.        Or, use virtual cards from Privacy.com

5.       Use a Virtual Private Network or VPN:

a.      We recommend the PROTON VPN which is free.

b.      A VPN has many amazing capabilities that provide 7x24x365 Cyber Security enhancements to your electronic devices

                                                               i.      Run the PROTON VPN on your desktop computer; Laptop; Tablet and Cell Phone

c.       There are also numerous other VPN software vendors that are quite good and easy to use:

                                                               i.      NordVPN

                                                             ii.      SurfShark VPN

                                                            iii.      Express VPN

                                                            iv.      PIA (for LINUX users)

                                                             v.      Cyber Ghost

                                                            vi.      PureVPN

6.       SOCIAL MEDIA:

a.      Be careful about over sharing on social media.

                                                               i.      Criminals routinely search Facebook and other Social Media sites for key words related to Vacations during the holidays.

                                                             ii.      You might be advertising to criminals that your house will be vacant making is an easy targeted for criminal burglary.

 

Posted by at No comments:
Subscribe to: Posts (Atom)