Saturday, June 23, 2018

Infosec quotes - win 7 and 2008 end of support

571 Days was until Server 2008/2008R2 and Windows 7 end of support.

Infosec quotes - remove FileZilla

Andrew Case:
“...
After reading this thread
https://forum.filezilla-project.org/viewtopic.php?t=48441
I would strongly suggest removing FileZilla from enterprise systems: 
...”

https://twitter.com/attrc/status/1010334619986808832?s=21


Friday, June 22, 2018

Infosec quotes - new nist

“...
NIST plans to publish the final public draft of Special Publication 800-53, Revision 5 (Security and Privacy Controls for Information Systems and Organizations) on 09-04-18. Final publication expected on 12-27-18.
...”



https://twitter.com/ronrossecure/status/1010005046405287941?s=21 

Thursday, June 21, 2018

Infosec quotes - admin rights

“...
If you want to be secure, users cannot be logged in as an administrator
...”


https://twitter.com/avecto/status/1009357705524514816?s=21

Tuesday, June 19, 2018

Infosec quotes - asset list

“...
If you can’t produce an asset list then save the money you would have spent on pentests and download a copy of the CIS Top 20 Controls. Then start at the top, where it says to create an asset list.
...”


https://twitter.com/danielmiessler/status/1009024662175735808?s=21

Infosec quotes - cia leaker

“...
The CIA leaker conducted a privilege escalation on the computer he used to access the data he stole, erased all the logs of his activity, and then locked other users out
...”


https://twitter.com/flyryan/status/1008922224936484865?s=21

Monday, June 18, 2018

Infosec quotes - open folders

“...21% of all their folders open to everyone in the company... ‘That's absurd,’ he says, noting that this openness enables attackers and malware to penetrate one user and spread laterally throughout a network...”