This image, from John Lambert, is a nice summary of several 'Sins' when it comes to security with Windows credentials. It would be foolish to assume that a strong password is all you need to maintain security with a complex organization. Instead, the image lists 6 sins that can weaken your environments security. Sins of mirror imaging, abdication, tradeoffs, incompleteness, … [Read more...]
Auditing the local Administrators group with PowerShell
Good security means knowing the endpoints of your environment. One component of endpoint security is knowing who is a local administrator on which computers. One sign that the endpoint might be compromised is having someone added to the local Administrators group who should not be there. Whether you regularly add primary users as Administrators or not, auditing this area can … [Read more...]
Treat your child’s privacy like their credit
It's a scary world that we live in. Posting to social media is a choice that some people make. Even if they are comfortable with the privacy settings they have configured for their account, there is little stopping someone from resharing the post to a much wider audience. When the content of that post is of something inconsequential, it has little impact. As an individual, you … [Read more...]
Sophos takes to the road to show Next Generation Enduser Protection
Sophos is touring several cities in North America to demonstrate Sophos Synchronized Security. This "next generation protection" links network and endpoint security to improve protection. According to the schedule, the cities on the tour include: Dec 01: Chicago Dec 01: Burlington Dec 02: Salt Lake City Dec 03: Seattle Dec 08: Charlotte Dec 09: Orlando Dec 10: … [Read more...]
Dell responds to security concerning eDellroot certificate on laptops
Earlier this week, there were three posts around the web showing that Dell notebooks were being shipped with a root certificate installed in the Trusted Root store. The certificate Dell computers have installed is named eDellRoot. This is reminiscent of Lenovo's SuperFish incident where they allowed third-party adware to have a root certificate installed to monitor HTTPS … [Read more...]