We always have the Paladin Sentinel Monitoring console up during the day. I am still seeing mass use of the domain administrator account to RDP into servers and lots of daily RDP connections in general. There are legitimate reasons to RDP into servers.
Weekly Tech Tidbit – Less Is More: Less RDP and More Delegation
Why Huntress Should Be Added To Your Security Stack – Recording Available
You all may have heard Scott talking about “those ex-NSA guys at Huntress” he talks to. Bob and Scott have been stressing the importance of layers of security for proper cyber defense for many years now. CSI uses Huntress on all Windows machines.
Tech Tidbit – The pain of changing passwords
“Treat your password like your toothbrush. Don’t let anyone else use it and change it every six months” -Clifford Stoll Password security is always on our minds. The NYS Comptroller’s Office technology audits love to list this in audit reports as an area that needs improvement.
Microsoft releases an out of band patch for Domain Controllers addressing authentication issues
I wanted to update you on the Microsoft authentication issues caused by the May patches. Microsoft has released an “out of band” update for the on-going Microsoft authentication issues stemming from the May Microsoft Domain Controller patches.
Special Session with the former White House CISO about the Ukraine War – Recording Available
This month we talked about how the Ukraine situation affects the cybersecurity landscape for the US and what it means for network security. Leading this discussion was Jason Whitehurst, a cybersecurity professional of over 20+ years, and Vince Crisler, former White House CISO and DarkCubed founder and CEO. Scott Quimby had the opportunity to listen […]
An update on Microsoft’s May Patch Issues with Domain Controllers and Certificate-Based Authentication
I wanted to update you on the Microsoft authentication issues caused by the May patches. This only potentially affects Microsoft Domain Controllers. More specifically it only affects Domain Controllers that are using certificates in any way for some form of authentication.
Tech Tidbit – My Achilles Heel – Closing your District’s Vulnerability Gaps
“Legends state that Achilles was invulnerable in all of his body except for one heel because when his mother Thetis dipped him in the River Styx as an infant, she held him by one of his heels. Alluding to these legends, the term “Achilles’ heel” has come to mean a point of weakness, especially in […]
A discussion of MITRE ENGENUITY 2022 independent testing results – Recording Available
Mitre Engenuity has released its 2022 fully independent evaluation of 30 of the most common cybersecurity endpoint protection platforms. Why does this matter? The 2022 assessment and results are particularly interesting because the payload they used is the most common, and nefarious, ransomware and malware variants in use today.
Tech Tidbit: No More Local Admins!
Your techs *should not* be local admins anymore. It is simply too dangerous. I have personally been a limited user on all my laptops, VMs and desktops for three years. I am living a happy life. It is time to completely eliminate this concept of “Techs are Local Admins”. It is simply too dangerous […]
Tech Tidbit: You actually have to test your equipment
We have to plan to safely ride out storms and other unforseen events I am fresh off another weekend of power issues with the big storm. It was another object lesson that it is imperative to actually test disaster recovery strategies.