The NuHarbor Notice
Breach of the Week: Twitter Gets Owned by A Kid
Justin is back on the podcast and for this week's breach, we're talking about the big Twitter breach that opened up some of the biggest users on the system to a bitcoin scam. We were shocked at how incredibly easy it was to get into the system, access important...
Catching Up With Travis
We brought Travis back to give us an update on what he's seeing for trends and issues. We talk about the biggest things on the horizon including securing remote workers, the shift away from offices, securing education from k-12 through higher ed, and even election...
NuHarbor Is Ready For CMMC, Are You?
An Overview of CMMC The Cybersecurity Maturity Model Certification, also known as CMMC, is a new standard for implementing cyber security controls across the 300,000 companies in the DOD’s supply chain. This framework combines controls and ideas from several NIST,...
Pwned: Cybersecurity Maturity Model Certification with Kristof
We're joined by Kristof to dig into another compliance frontier, the Cybersecurity Maturity Model Certification (CMMC). Kristof will give us a primer on who CMMC affects, what they need to do get compliant, how you get certified, and when this certification goes live....
Breach of the Week: Shedding Some Light On The Dark Web
We're joined by two NuHarbor staffers this week to explore the dark web. We posted a poll on Twitter yesterday and the people have spoken, they wanted dark web content and we are delivering. We'll discuss what the dark web is, how it is used, and whether or not it is...
Building an Information Security Management System with ISO 27001
Who Needs ISO 27001? Every day we hear from organizations being asked if they are 27001 compliant and what they need to do to become compliant. The ISO 27001 standard provides a very well-rounded assessment to prove you have an effective information security...
Lock It Down – Application Security Authentication Requirements
We are back with another throwback episode, this time on Application Security Authentication Requirements. You probably would not be surprised to realize that there are still organizations out there that are not using best practices when it comes to authentication...
Blue Streak the Hack, Not the Movie
Today we're talking Blue Leaks, the massive data leak impacting law enforcement agencies at all levels, not to be confused with the classic Martin Lawrence movie Blue Streak, a comedy from 1999. We talk about the impacts of the breach, how and why it happened, and the...
In Search of ISO with Kristof
On this week’s episode we're talking to Kristof about ISO 27001. We cover the who, what, when, why, and how of ISO and discuss how the process works from initial discussion through certification. Kristof points out some of the pitfalls and shares his thoughts on why...
Breach of the Week: Amtrak Has Gone Off The Rails
This week Justin and Zack realize with terror, that their favorite form of transportation has betrayed them. The NuHarbor train system of choice, Amtrak, found itself on the receiving end of a data breach and unfortunately the train has left the station. The breach...
Breach of the Week: Gigabyte Edition: Nation States Want Your Data
You shouldn't be shocked by this, but North Korea is trying to break into your data. Seriously, check your logs. If you do not see the telltale signs, it's only a matter of when, not if, a nation state takes a shot at you. This was originally set to be a Breach of the...
Breach of the Week: Maker of Chips Gets Clipped
For this week’s Breach of the Week, we're talking about a software on a chip maker that got hit by our old friend, Maze Ransomware. Justin talks about the persistence of viruses after you've been hit and how companies can try to prevent this from happening. We also...
From the Archives: Exim Server Vulnerabilities
What is up everyone! For this week's episode we're digging into the archives and we picked one of the most popular episodes from Season 1 of Pwned, Exim Server Vulnerabilities. What's fascinating about Exim is that it first launched 25 years ago and still supports a...
Pwned Gigabytes – Nuharbor Is Literally the Best Place to Work
We have a very special episode this week! NuHarbor Security is literally the best place to work. Seriously, NuHarbor was selected as a "Best Places to Work in Vermont" for the second time! Justin and Zack discuss why they think NuHarbor was selected and why NuHarbor...
NuHarbor Security Named a 2020 Best Place to Work in Vermont
For the second time, NuHarbor Security has been selected as a “Best Places to Work in Vermont” recipient. NuHarbor received notification of being selected in early Spring but restrictions on events due to the COVID-19 pandemic resulted in the awards ceremony being...