Information Security

Posts related to information security, including news, tutorials, malware analysis, and threat intelligence.

Emotet malspam campaign exploits reliance on magic for file type detection

Emotet is a Trojan designed to steal banking information. It is frequently spread by sending phishing emails to governments, banks,…

January 26, 2019 3:52 am

How to inspect the certificate of a mail server over a CLI

If you ever need to inspect the certificate of a remote SMTP server, you can use the openssl CLI tool.…

November 29, 2018 11:17 pm

Demystifying DMARC: A guide to preventing email spoofing

DMARC can stop spoofed spam and phishing from reaching you and your customers, protecting your information security and your brand.…

June 15, 2018 8:00 pm

Lessons Learned from the US Federal Government’s Ongoing Deployment of SPF and DMARC

SPF and DMARC are standards that describe how the origins of email messages should be verified, to prevent email spoofing.…

January 1, 2018 6:07 pm

WannaCry ransomware analysis: Samples date back to at least early February 2017

The WannaCry ransomware worm has spread panic and destruction as it infects hundreds of thousands of systems around the world;…

May 18, 2017 7:49 pm

Google Pixel phones can be unlocked with a recording of a trusted voice by default

The headline feature of the new Google Pixel phones is deep integration between the operating system and the Google Assistant…

October 23, 2016 9:04 pm

PSA: The latest Google Chrome release trips EMET’s EAF+ mitigation

When Google Chrome updated to 53.0.2785.101 on my Windows systems, I encountered an onslaught of alerts from EMET, which was…

September 9, 2016 1:32 pm

HHS: Ransomware encryption of ePHI is a HIPAA breach

As a growing number of medical facilities are struck by ransomware, the US Department of Health and Human Services (HHS)…

August 23, 2016 1:34 pm

Prevent ransomware from succeeding with strategic defense-in-depth

Ransomware has become the weapon of choice for financially motivated cybercriminals. Individuals, hospitals, businesses, schools, police departments, and government agencies…

August 22, 2016 3:56 am

DoJ v. Apple: It’s all about the precedent

By now, you've probably heard something about the ongoing legal battle between Apple and the Department of Justice. "DoJ v.…

March 21, 2016 1:23 am