The NuHarbor Notice
4 Things To Know About The Ohio Data Protection Act
By: Justin Fimlaid The Ohio Data Protection Act was passed in August of 2018 and went into effect as of November 2018. What's unique about this data protection law is that it's unlike recently passed privacy legislation recently seen in California and Colorado. 1....
APT10 Update
Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/ IOCs: APT10/Operation Cloud Hopper – Indicators of Compromise v3.csv
Ohio’s Data Protection Act
Important Links: More Info: https://www.nuharborsecurity.com/4-things-to-know-about-the-ohio-data-protection-act/ State of Ohio Data Protection Act Law Text: https://www.legislature.ohio.gov/legislation/legislation-documents?id=GA132-SB-220 IAPP Analysis (by Katelyn...
SHA-1 Collision Attacks Explained
Important Links: SHA-1 Collision Explanation Page: https://shattered.io/ Malicious Hashing: Eve’s Variant of SHA-1 https://link.springer.com/content/pdf/10.1007%2F978-3-319-13051-4_1.pdf Finding SHA-1 Characteristics: General Results and Applications:...
Vulnerability Management and Patching
Show Notes: https://www.nuharborsecurity.com/building-a-vulnerability-management-program-with-the-end-in-mind/ Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid...
Building a Vulnerability Management Program with the End in Mind
By: Justin Fimlaid Thinking about building a vulnerability management program? Unsure where to start? Unclear as to why your program might not be working? For some organizations, thinking about the end goal of the vulnerability management process can help provide...
Getting started with NIST Cybersecurity Framework
Show Notes: https://justinfimlaid.com/quickstart-building-a-security-program-with-the-nist-cybersecurity-framework/h Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid...
Quick Start: Tenable IO Architecture
By: Justin Fimlaid Are you looking to build your vulnerability management program using Tenable's products? If so, this is a quick start guide to get orientated with the Tenable.IO suite. What is Tenable IO? Tenable IO is Tenable's cloud scanner or SaaS platform. ...
Penetration Testing or Red Teaming?
Show Notes: https://www.nuharborsecurity.com/red-teaming-vs-penetration-testing/ Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid...
As Facts Change So Does My Opinion
Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/ My opinion of security has changed. We are not keeping up. Companies keep...
Tenable IO Sensor Deployment Best Practices
By: Justin Fimlaid Every organization has different needs related to their vulnerability management program. This varies from the scanner used (cloud or on premise), the places where sensors are deployed, the technology environment, and the needs of your vulnerability...
Open Banking Directive and Securing Web Application Vulnerabilities
By: Justin Fimlaid If you haven't heard of it there is a new banking directive in the U.K. called the Open Banking Directive. This directive went into effect on January 13, 2018. It's significant for U.S. based banks, because this Directive could apply pressure...
The Open Banking Directive and Application Security
Show Notes: https://www.nuharborsecurity.com/open-banking-directive-and-securing-web-application-vulnerabilities/ Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid...
How does Estonia’s e-Voting work?
By: Justin Fimlaid First things first, if you are interested in elections security have not heard of Estonia's electronic voting system I’d encourage you do some research starting with this blog post. There is a lot to Estonia's e-Government initiative, security is a...
Election Security and Estonia’s e-Voting System
Show Notes: https://www.nuharborsecurity.com/how-does-estonias-e-voting-work/ Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/