Category: BeyondTrust
10 Common Social Engineering Attacks
What is Social Engineering? Also known as “human hacking,” social engineering attacks use psychologically manipulative tactics to influence a user’s behavior. By understanding what needs to be done to drive a user’s actions, a threat actor canTop IoT Security Risks and Vulnerabilities and How to Mitigate Them | BeyondTrust
IoT is now pervasive and often represents a security weak link in enterprises. It’s far past time for organizations to account for IoT as part of their core endpoint security and edge security strategies. Read on to learn about the top IoTInsider Threat Indicators: How to Identify & Mitigate Insider Attacks | BeyondTrust
What is an insider threat? An insider threat is an internal persona acting as a trusted asset (employee, contractor, vendor, partner, etc.) behaving as a threat actor. Typically, the insider exhibits malicious behavior with intent, butWhen Clickbait Goes Bad
Everyone makes mistakes, but when something as simple as a single click can have ruinous impacts on your identity, your bank account, and your business, the stakes get a lot higher. All it takes is one simple click on a malicious link in anCisco Breach – A Cautionary Tale of Mismanaged Credentials & Privileged Identities | BeyondTrust
On the 10th of August 2022, Cisco confirmed they had been breached by the Yanluowang ransomware group. On the same day, the Yanluowang group posted a notice on their own site and claimed to have stolen 2.75GB of Cisco’s data, consisting ofOne-Time Password (OTP) Solutions for Privileged Access | BeyondTrust
What are one-time passwords? A one-time password (OTP) is the password used in a credential pair that is valid for only one login session or transaction. OTPs are used to minimize the risks of traditional, static password-based authentication byHow to Mitigate the Windows DogWalk Vulnerability | BeyondTrust
The Windows DogWalk vulnerability (CVE-2022-34713) presents a prime reminder of why a proactive approach to endpoint security is so important. While the DogWalk remote code execution (RCE) vulnerability was first identified and reported to10 Must-Have Certifications for IT Support Professionals
What is an IT Support Certification? IT support certifications are recognized acknowledgements of specific experience, knowledge, and skills relating to IT technologies and services. They are often critical to career advancement and can make allThe Power of Good Server and Endpoint Naming Conventions | BeyondTrust
Endpoint & Server Naming – Standards Needed When I first started in information technology, one of the more humorous aspects was the host naming conventions customers chose for endpoints – servers and workstations alike. For example,Linux Attack & Defense: Matrix Breakout Edition | BeyondTrust
As a penetration tester, I enjoy playing the Capture the Flag (CTF) challenges you’ll find on VulnHub.com or at an information security conference. As a teacher, I enjoy showing people how to block the attack through proactive systemsLoad More