Expert insights. Personalized for you.
Tony G and Jonas Walker provide an inside look at how ransomware negations occur between a victim and an attacker. Learn how a travel management company negotiated a $10 million ransom to a $4.5 million payout and got tips from the attackers to help them understand how they were attacked. MORE
Attacks, Cyberwar, and Attack Attribution from the perspective of a cyber professional who spent years working for US Intelligence organizations helping to protect the United States from Cyber Attacks. MORE
130 
Don't Panic! You will inevitably be affected by a Distributed Denial of Service (DDoS) attack at some point. A DDoS attack is a shock to the system and how you react is everything. When it happens, stay calm and accept it. MORE
Snort 3 is out. This comes from the official release. This post can be found HERE. We know users have been anticipating this day for years. So, we are excited to announce that the official release of Snort 3 is here ! The version number is 3.1.0.0. Snort is an open-source intrusion prevention system (IPS) capable of real-time traffic analysis and packet logging. MORE
Written by: Kayla Matthews journalist & writer. kaylaematthews@gmail.com. link]. Companies have access to more information about their customers than ever. MORE
Written by: Kayla Matthews journalist & writer. kaylaematthews@gmail.com. link]. Keeping data centers within the ideal temperature range is crucial due to the expensive and necessary equipment inside. MORE
As the world increasingly relies on technology, the energy sector’s role becomes more critical. A disruption in the power grid that delivers electricity to businesses and homes could be devastating for any infrastructure and services in an area. MORE
The security operations center (SOC) is an increasingly crucial part of the modern business's cybersecurity approach. One or two IT workers and an anti-malware program are no longer enough to handle a company's cybersecurity. MORE
Readers, I wanted to introduce our newest contributor to the Dr. Chaos site, Shannon Flynn. You will see some of Shannon's articles and contributions to the website in the coming months giving you a new perspective on cybersecurity. MORE
Everybody in the USA that used the mail-in or dropbox voting option, be on alert that there are criminals lurking about with the goal of abusing the confusion going on with the US election the next few days. MORE
Aamir Lakhani and Tony G discuss the latest findings of the 2020 Verizon Data Breach report. From ransomware to passwords dumpers. What does it mean how you should shape your cybersecurity policy? Join us on the latest episode of Dr. Chaos Podcast to find out. MORE
No company wants to think about what it'll do in a crisis, but sometimes they're unavoidable. Whether it's an advanced cyberattack of a situation like COVID-19 that led to an unexpected rise in cybercrime, cybersecurity emergencies happen. If you do find yourself in such a crisis, how do you respond? MORE
Industrial cybersecurity specialist James Cabe from CyberX, discusses ICS attacks, OT vs IT, and working for a startup that just got acquired by Microsoft. From missile defense to IoT, we discuss how CyberX works on networks, modern ICS threats, and how ICS attacks are depicted in Hollywood movies. MORE
originally posted at [link]. We see numerous evasion techniques that attackers use to bypass egress filtering solutions and establish command and control (C&C) within organizations. MORE
The financial sector takes cybersecurity seriously, and almost no one takes it more seriously than Chris Konrad , World Wide Technology Director of Global Financial Security. MORE
Written by: Kayla Matthews journalist & writer kaylaematthews@gmail.com. link]. The ongoing COVID-19 pandemic has highlighted a few areas of improvement in the business world. As the world's systems try to adapt to changing needs, their shortcomings become increasingly evident. MORE
Original article appears at [link]. The famous painting “ Swans Reflecting Elephants ” creates a double image and is an ideal metaphor of what we know about the Internet and the hidden layer beneath (the Darknet). MORE
As the world makes steady progress towards ending the pandemic, the road ahead is still a long one. Previously unforeseen obstacles can pop up at any time and skew the trajectory of how the world handles Covid-19. One obstacle, in particular, that is on the rise currently is phishing scams. MORE
The world is much smaller than it was thirteen years ago. In 2007 Steve Jobs announced the Apple iPhone. It was an innovative product because it brought mobile Internet into the pockets of millions of people. Smartphones were in existence before the iPhone. MORE
Many of us have stress in our lives. We have our jobs to worry about, we need to think about our retirement, and we have to figure out what the health care law means to us. However, a few of us know there are more immediate concerns that must be dealt with. MORE
Dive into this conversation on OT security as Derek Manky and Aamir Lakhani discuss highlights from our recent FortiGuardLabs threat intelligence briefs and the origins of OT-targeted attacks, starting from the beginning with the Stuxnet virus. MEDIA MORE
The Clark-Wilson security model is based on preserving information integrity against the malicious attempt of tampering with data. MORE
One common question I’ve received is what open source tools are available that I can download now. The answer to this question is simple: LOTS! I will point out however, there are reasons why organizations don’t just run only open-source products within their security operation center. MORE
Think you know what being a CISSP is all about? Not all CISSP's are equal, some are more equal than others! link]. Off-Topic MORE
Thanks to COVID-19 and the need to social-distance from one another, many companies shifted rapidly to remote operations. Teams that used to work side by side had to move to a home office or remote location. MORE
(This blog posting was written with the understanding that the reader already understands how standard LISP operates from a control and data plane perspective.). Overview. MORE
Tony G and Dr. Chaos return to discuss what is XDR. Is it hype? Is it more than repackaged tools? Let's break down the new industry buzzword. Click here to listen directly on SoundCloud MORE
In a previous lesson, I pointed out that there are three essential ways security tools detect threats. Those methods are signature-based, behavior, and anomaly detection. Most security tools use a combination of one or more of these capabilities to detect threats. MORE
The role of the cybersecurity professional has never been more critical. Mass digitization has made every company a tech business, and cybercriminals have taken full advantage of this movement. New threats arise every day, but there’s also an abundance of cybersecurity testing tools at your disposal. MORE
While 2020 has come and gone, many of last year’s cyber fraud problems will continue into at least mid-2021. Cybercriminals will focus on maximizing their profits, using a traditional cost-benefit analysis to decide on the best attack vector. MORE
Doctor Chaos
MARCH 3, 2021
While 2020 has come and gone, many of last year’s cyber fraud problems will continue into at least mid-2021. Cybercriminals will focus on maximizing their profits, using a traditional cost-benefit analysis to decide on the best attack vector.
Doctor Chaos
FEBRUARY 27, 2021
Think you know what being a CISSP is all about? Not all CISSP's are equal, some are more equal than others! link]. Off-Topic
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Doctor Chaos
FEBRUARY 25, 2021
[link]. MEDIA
Doctor Chaos
FEBRUARY 24, 2021
Thanks to COVID-19 and the need to social-distance from one another, many companies shifted rapidly to remote operations. Teams that used to work side by side had to move to a home office or remote location.
Advertisement
This guide identifies the biggest challenges for associations moving their training online and provides practical solutions so that you can hit the ground running. Download now to keep your members engaged and growing even in times of COVID-19.
Doctor Chaos
FEBRUARY 23, 2021
The world is much smaller than it was thirteen years ago. In 2007 Steve Jobs announced the Apple iPhone. It was an innovative product because it brought mobile Internet into the pockets of millions of people. Smartphones were in existence before the iPhone.
Doctor Chaos
JANUARY 25, 2021
Many of us have stress in our lives. We have our jobs to worry about, we need to think about our retirement, and we have to figure out what the health care law means to us. However, a few of us know there are more immediate concerns that must be dealt with.
|
Doctor Chaos
FEBRUARY 4, 2021
As the world increasingly relies on technology, the energy sector’s role becomes more critical. A disruption in the power grid that delivers electricity to businesses and homes could be devastating for any infrastructure and services in an area.
Doctor Chaos
FEBRUARY 16, 2021
The Clark-Wilson security model is based on preserving information integrity against the malicious attempt of tampering with data.
Doctor Chaos
FEBRUARY 15, 2021
Everybody in the USA that used the mail-in or dropbox voting option, be on alert that there are criminals lurking about with the goal of abusing the confusion going on with the US election the next few days.
Doctor Chaos
FEBRUARY 1, 2021
They say the strong survive. How does that apply when you are dead? The Zombie Apocalypse is among us. What are your chances of making it? It really depends on what types of Zombies you are “lucky” enough to encounter.
Speaker: Guy Martin, Executive Director of OASIS Open
The COVID-19 global pandemic has raised the already bright visibility of technology to an even higher level. Join Guy Martin, Executive Director at OASIS Open, as he presents this webinar that will discuss how we can make open source and open standards even more effective by helping them recapture their strong partnership.
Doctor Chaos
FEBRUARY 11, 2021
In a previous lesson, I pointed out that there are three essential ways security tools detect threats. Those methods are signature-based, behavior, and anomaly detection. Most security tools use a combination of one or more of these capabilities to detect threats.
|
|
Doctor Chaos
FEBRUARY 10, 2021
Over the last few days, many of us in the USA have experienced network outages. I’m not sure about you, but I have become the default “IT Support Guy” at my house meaning when the network goes down, my family starts throwing tomatoes at me while they blame me for the outage.
Doctor Chaos
FEBRUARY 9, 2021
Don't Panic! You will inevitably be affected by a Distributed Denial of Service (DDoS) attack at some point. A DDoS attack is a shock to the system and how you react is everything. When it happens, stay calm and accept it.
Doctor Chaos
JANUARY 20, 2021
As the world makes steady progress towards ending the pandemic, the road ahead is still a long one. Previously unforeseen obstacles can pop up at any time and skew the trajectory of how the world handles Covid-19. One obstacle, in particular, that is on the rise currently is phishing scams.
Doctor Chaos
FEBRUARY 3, 2021
One common question I’ve received is what open source tools are available that I can download now. The answer to this question is simple: LOTS! I will point out however, there are reasons why organizations don’t just run only open-source products within their security operation center.
Advertisement
Xandr, a division of AT&T, has built an identity graph that connects information on people, households, and more. The company is using this graph to provide advertisers an ability to deliver commercials more successfully than ever before. Learn more.
Doctor Chaos
JANUARY 31, 2021
(This blog posting was written with the understanding that the reader already understands how standard LISP operates from a control and data plane perspective.). Overview.
Doctor Chaos
DECEMBER 23, 2020
The role of the cybersecurity professional has never been more critical. Mass digitization has made every company a tech business, and cybercriminals have taken full advantage of this movement. New threats arise every day, but there’s also an abundance of cybersecurity testing tools at your disposal.
Doctor Chaos
FEBRUARY 2, 2021
Snort 3 is out. This comes from the official release. This post can be found HERE. We know users have been anticipating this day for years. So, we are excited to announce that the official release of Snort 3 is here ! The version number is 3.1.0.0. Snort is an open-source intrusion prevention system (IPS) capable of real-time traffic analysis and packet logging.
Doctor Chaos
OCTOBER 28, 2020
Readers, I wanted to introduce our newest contributor to the Dr. Chaos site, Shannon Flynn. You will see some of Shannon's articles and contributions to the website in the coming months giving you a new perspective on cybersecurity.
Advertiser: Datadog
In this eBook, find out the benefits and complexities of migrating workloads to AWS, and services that AWS offers for containers and serverless computing.
Doctor Chaos
OCTOBER 28, 2020
The security operations center (SOC) is an increasingly crucial part of the modern business's cybersecurity approach. One or two IT workers and an anti-malware program are no longer enough to handle a company's cybersecurity.
Doctor Chaos
OCTOBER 8, 2020
Written by: Kayla Matthews journalist & writer. kaylaematthews@gmail.com. link]. Keeping data centers within the ideal temperature range is crucial due to the expensive and necessary equipment inside.
Doctor Chaos
JULY 24, 2020
Written by: Kayla Matthews journalist & writer kaylaematthews@gmail.com. link]. The ongoing COVID-19 pandemic has highlighted a few areas of improvement in the business world. As the world's systems try to adapt to changing needs, their shortcomings become increasingly evident.
Doctor Chaos
SEPTEMBER 17, 2020
This week we conclude our exciting interview with Jim. This former US Intelligence cyber specialist discusses attribution challenges to State actors, US Election security, and a new superhero: Metrics Man!
Advertisement
Download this white paper to learn what contextual analytics is, how BI platforms like Yellowfin revolutionize the way users discover insights from their data with native contextual analytics, and how it adds value to your software solution by elevating the user experience.
Doctor Chaos
SEPTEMBER 10, 2020
Attacks, Cyberwar, and Attack Attribution from the perspective of a cyber professional who spent years working for US Intelligence organizations helping to protect the United States from Cyber Attacks.
Doctor Chaos
AUGUST 25, 2020
Written by: Kayla Matthews journalist & writer. kaylaematthews@gmail.com. link]. Companies have access to more information about their customers than ever.
Doctor Chaos
AUGUST 10, 2020
Tony G and Jonas Walker provide an inside look at how ransomware negations occur between a victim and an attacker. Learn how a travel management company negotiated a $10 million ransom to a $4.5 million payout and got tips from the attackers to help them understand how they were attacked.
Doctor Chaos
AUGUST 2, 2020
Chris Louie ( ,[link] ) blogger and security professional from zScaler speaks to us on today's podcast about all things security. Join Tony G and Dr. Chaos on our latest episode as we discuss ransomware, the US Presidential Elections, and all things security.
Speaker: Dr. Rebecca Parsons, CTO of ThoughtWorks
The software development ecosystem exists in a state of dynamic equilibrium, where any new tool, framework, or technique leads to disruption and the establishment of a new equilibrium. Predictability is impossible when the foundation architects plan against is constantly changing in unexpected ways. It’s no surprise many CIOs and CTOs are struggling to adapt, in part because their architecture isn’t equipped to evolve. This webinar will discuss what’s at stake if companies continue to use long term architecture plans.
Doctor Chaos
JULY 24, 2020
Original article appears at [link]. The famous painting “ Swans Reflecting Elephants ” creates a double image and is an ideal metaphor of what we know about the Internet and the hidden layer beneath (the Darknet).
Doctor Chaos
JULY 18, 2020
originally posted at [link]. We see numerous evasion techniques that attackers use to bypass egress filtering solutions and establish command and control (C&C) within organizations.
Doctor Chaos
JULY 16, 2020
The financial sector takes cybersecurity seriously, and almost no one takes it more seriously than Chris Konrad , World Wide Technology Director of Global Financial Security.
Doctor Chaos
JULY 9, 2020
Industrial cybersecurity specialist James Cabe from CyberX, discusses ICS attacks, OT vs IT, and working for a startup that just got acquired by Microsoft. From missile defense to IoT, we discuss how CyberX works on networks, modern ICS threats, and how ICS attacks are depicted in Hollywood movies.
Speaker: Shannon Lietz, Director of DevSecOps Team, Intuit
The new DevSecOps team is up and running, and you feel ready to take on rising security threats while delivering quality software updates. But that leaves just one question: how do you monitor your new program as effectively and efficiently as possible? Join Shannon Lietz, Director of DevsecOps at Intuit, and award-winning innovator, to learn the answers to these questions so you can lead your DevSecOps team to the top!
Doctor Chaos
JUNE 25, 2020
Researchers Aamir Lakhani and Anthony Giandomenico discuss the EKANS ransomware and why it was an effective and targetted attack. Listen on your favorite podcast app or on Soundcloud: [link]. Podcast
Doctor Chaos
JUNE 18, 2020
Aamir Lakhani and Tony G discuss the latest findings of the 2020 Verizon Data Breach report. From ransomware to passwords dumpers. What does it mean how you should shape your cybersecurity policy? Join us on the latest episode of Dr. Chaos Podcast to find out.
Doctor Chaos
JUNE 17, 2020
No company wants to think about what it'll do in a crisis, but sometimes they're unavoidable. Whether it's an advanced cyberattack of a situation like COVID-19 that led to an unexpected rise in cybercrime, cybersecurity emergencies happen. If you do find yourself in such a crisis, how do you respond?
Doctor Chaos
JUNE 16, 2020
Dive into this conversation on OT security as Derek Manky and Aamir Lakhani discuss highlights from our recent FortiGuardLabs threat intelligence briefs and the origins of OT-targeted attacks, starting from the beginning with the Stuxnet virus. MEDIA
Advertiser: UserTesting
Up to 80% of new products fail. The reality is harsh and the reasons why are endless. Perhaps the new product couldn’t oust a customer favorite. Maybe it looked great but was too hard to use. Or, despite being a superior product, the go-to-market strategy failed. There’s always a risk when building a new product, but you can hedge your bets by understanding exactly what your customers' expectations truly are at every step of the development process.
Let's personalize your content