Michael Cobb CISSP-ISSAP - SearchSecurity SearchSecurity Use caution with OAuth 2.0 protocol for enterprise logins 30 Nov 2017 SearchSecurity How can Intel AMT be used to bypass the Windows firewall? 30 Nov 2017 SearchSecurity How do source code reviews of security products work? 29 Nov 2017 SearchSecurity How can attacks like the Cherry Blossom project be prevented? 28 Nov 2017 SearchSecurity How does the Stack Clash vulnerability target Unix-based OSes? 27 Nov 2017 SearchSecurity DDoS attack protection: When should it be taken seriously? 27 Nov 2017 SearchSecurity How to prepare for potential IPv6 DDoS attacks 09 Nov 2017 SearchSecurity What knowledge factors qualify for true two-factor authentication? 20 Oct 2017 SearchSecurity Running a private certificate authority: What are the risks? 19 Oct 2017 SearchSecurity How app libraries share user data, even without permission 19 Oct 2017 SearchSecurity How can Android app permissions be exploited by attackers? 18 Oct 2017 SearchSecurity How did an ImageMagick vulnerability endanger Yahoo servers? 17 Oct 2017 SearchSecurity How does Google Play Protect aim to improve Android security? 16 Oct 2017 SearchSecurity Proper management techniques help with securing endpoints 16 Oct 2017 SearchSecurity How the Docker REST API can be turned against enterprises 05 Oct 2017 SearchSecurity Securing endpoints with supplementary tools protects data 02 Oct 2017 SearchSecurity Targeted attack awareness gives firms edge against hackers 25 Sep 2017 SearchSecurity What risk do Windows 10 telemetry features pose enterprises? 15 Sep 2017 SearchSecurity How can users detect dangerous open ports in mobile apps? 14 Sep 2017 SearchSecurity How can memory corruption attacks threaten smartphones? 13 Sep 2017 SearchSecurity How do code-reuse attacks bypass Windows 10 security features? 12 Sep 2017 SearchSecurity How is Pegasus malware different on Android than on iOS? 11 Sep 2017 SearchSecurity How NotPetya ransomware used legitimate tools to move laterally 31 Aug 2017 SearchSecurity How did sensitive data from file-sharing website Docs.com get leaked? 11 Aug 2017 SearchSecurity Libpurple flaw: How does it affect connected IM clients? 10 Aug 2017 SearchSecurity Are biometric authentication methods and systems the answer? 09 Aug 2017 SearchSecurity What tools can bypass Google's CAPTCHA challenges? 09 Aug 2017 SearchSecurity How did a Moodle security vulnerability enable remote code execution? 08 Aug 2017 SearchSecurity How did flaws in WhatsApp and Telegram enable account takeovers? 07 Aug 2017 SearchSecurity Samsung Knox platform: Can it improve Android device security? 28 Jul 2017 SearchSecurity SHA-1 collision: How the attack completely breaks the hash function 27 Jul 2017 SearchSecurity Android sandboxing tools: How can work data separation be bypassed? 14 Jul 2017 SearchSecurity How are forged cookies used in attacks on online user accounts? 13 Jul 2017 SearchSecurity What made iOS apps handling sensitive data vulnerable to MitM attacks? 12 Jul 2017 SearchSecurity Ticketbleed flaw: How can SSL session identities be protected? 11 Jul 2017 SearchSecurity WordPress REST API flaw: How did it lead to widespread attacks? 10 Jul 2017 SearchSecurity How the use of invalid certificates undermines cybersecurity 22 Jun 2017 SearchSecurity How can a NULL pointer dereference flaw create a DoS attack? 09 Jun 2017 SearchSecurity The Apple Notify flaw: How does it allow malicious script injection? 08 Jun 2017 SearchSecurity How does Facebook's Delegated Recovery enable account verification? 07 Jun 2017 SearchSecurity Adobe Acrobat Chrome extension: What are the risks? 06 Jun 2017 SearchSecurity Cisco WebEx extension flaw: How does the patch fall short? 05 Jun 2017 SearchSecurity How SSH key management and security can be improved 25 May 2017 SearchSecurity Avoid privilege creep from the software development team 10 May 2017 SearchSecurity How effective is geofencing technology as a security method? 05 May 2017 SearchSecurity Why did the PHPMailer library vulnerability have to be patched twice? 04 May 2017 SearchSecurity Same-origin policy: How did Adobe Flash Player's implementation fail? 03 May 2017 SearchSecurity How can a distributed guessing attack obtain payment card data? 02 May 2017 SearchSecurity Panasonic Avionics IFE systems: How serious are the vulnerabilities? 01 May 2017 IoT Agenda Applying IoT security guidelines to device development and deployment 01 May 2017 SearchSecurity Identity and access management strategy: Time to modernize? 19 Apr 2017 SearchSecurity How have ARM TrustZone flaws affected Android encryption? 07 Apr 2017 SearchSecurity How serious is a malicious DLL file vulnerability for enterprises? 06 Apr 2017 SearchSecurity Insecure OAuth implementations: How are mobile app users at risk? 05 Apr 2017 SearchSecurity How does a WebKit framework flaw enable denial-of-service attacks? 04 Apr 2017 SearchSecurity How did firmware create an Android backdoor in budget devices? 03 Apr 2017 SearchSecurity 1024-bit encryption keys: How 'trapdoored' primes have caused insecurity 30 Mar 2017 SearchSecurity Attack by TIFF images: What are the vulnerabilities in LibTIFF? 10 Mar 2017 SearchSecurity CJIS Security Policy: How can companies ensure FIPS compliance? 09 Mar 2017 SearchSecurity How can attacks bypass ASLR protection on Intel chips? 08 Mar 2017 SearchSecurity How can the Dirty COW vulnerability be used to attack Android devices? 07 Mar 2017 SearchSecurity SHA-1 certificates: How will Mozilla's deprecation affect enterprises? 06 Mar 2017 SearchSecurity What caused the ClixSense privacy breach that exposed user data? 10 Feb 2017 SearchSecurity What global threat intelligence can and can't do for security programs 09 Feb 2017 SearchSecurity How did iOS 10 security checks open brute force risk on local backups? 09 Feb 2017 SearchSecurity HTTP public key pinning: Is the Firefox browser insecure without it? 08 Feb 2017 SearchSecurity How did a Signal app bug let attackers alter encrypted attachments? 07 Feb 2017 SearchSecurity How does Overseer spyware work on infected Android apps? 06 Feb 2017 SearchSecurity The consequences of removing PPTP support from iOS 10 31 Jan 2017 IoT Agenda Fight internet of things dangers through device awareness 10 Jan 2017 SearchSecurity How are hackers using Twitter as C&C servers for malware? 06 Jan 2017 SearchSecurity How can two-factor authentication systems be used effectively? 04 Jan 2017 SearchSecurity How does a Linux vulnerability allow attacks on TCP communications? 04 Jan 2017 SearchSecurity FIDO authentication standard could signal the passing of passwords 03 Jan 2017 SearchSecurity How can PGP short key IDs be protected from collision attacks? 03 Jan 2017 SearchSecurity How to buy digital certificates for your enterprise 03 Jan 2017 SearchSecurity What new NIST password recommendations should enterprises adopt? 02 Jan 2017 SearchSecurity SWIFT network communications: How can bank security be improved? 23 Dec 2016 SearchSecurity Combatting the top cybersecurity threats with intelligence 22 Dec 2016 SearchSecurity Meet security goals by avoiding threat intel and analytics mistakes 14 Dec 2016 SearchSecurity How do the Linux kernel memory protection features on Android work? 02 Dec 2016 SearchSecurity How does the HummingBad malware enable click fraud? 01 Dec 2016 SearchSecurity Test your privileged user management knowledge 01 Dec 2016 SearchSecurity How did a full access OAuth token get issued to the Pokémon GO app? 29 Nov 2016 SearchSecurity Is Barclays' phone banking biometric authentication system secure? 28 Nov 2016 SearchSecurity Bug bounties: How does Apple's program compare to others? 28 Nov 2016 SearchSecurity Are browsers using the HTTP/2 protocol vulnerable to HEIST attacks? 15 Nov 2016 SearchSecurity Preventing trusted users from misusing their privileges 10 Nov 2016 SearchSecurity How does auto-rooting malware LevelDropper gain device root access? 27 Oct 2016 SearchSecurity Asset tracking: What products and services can trace device location? 27 Oct 2016 SearchSecurity Privileged user access: Managing and monitoring accounts 27 Oct 2016 SearchSecurity Why have macro malware authors moved toward using OLE technology? 25 Oct 2016 SearchSecurity Can an HTML5 document with a digital signature be authenticated? 25 Oct 2016 SearchSecurity Runtime application self-protection from A to Z 24 Oct 2016 SearchSecurity Patching and updating applications: How much time should be spent? 24 Oct 2016 SearchSecurity Preventing privilege creep: How to keep access and roles aligned 24 Oct 2016 SearchSecurity New tactics for better endpoint security threat prevention 21 Oct 2016 SearchSecurity Improve endpoint security protection with advanced tools and techniques 10 Oct 2016 SearchSecurity Is the open source architecture beneficial or a security vulnerability? 04 Oct 2016 SearchSecurity Internal PKI: What are the benefits of enterprises moving it in-house? 30 Sep 2016 1 2 3 4 5 6 7 8
