People say that Philadelphia has an inferiority complex. They say that that we feel overlooked being located between New York and Washington, D.C. Until earlier this month, as far Security BSides was concerned, that was pretty much true. Great BSides groups are easy driving distance from Philadelphia, but we had nothing in our own backyard. […]… Read More

The post Inaugural BSidesPhilly Event a Smashing Success appeared first on The State of Security.

Cloud computing has come a long way in just a few years. Now, most businesses use some sort of cloud service, whether it be for a specific software application, infrastructure requirements, or more. The cloud certainly represents the way many companies are choosing to operate, but some have shown reluctance to adopt cloud solutions. One […]… Read More

The post What the Cloud Can Do to Improve IT Security appeared first on The State of Security.

In June, Tripwire security researcher Travis Smith conducted a presentation at InfoSecurity Europe 2016 on how open source and other free tools can monitor, protect and mitigate threats in IoT environments. In addition, Smith explained how these tools and methodologies can be deployed on inexpensive hardware, such as the Raspberry Pi. In this special security slice podcast hosted by Tyler […]… Read More

The post Security Slice – Sweet Security: Building a Defensive Raspberry Pi appeared first on The State of Security.

According to a recent report by Symantec, attacks exploiting previously unknown (or zero-day) software vulnerabilities more than doubled last year. Researchers believed this spike may be caused by the Hacking Team breach, which forced several zero-day exploits into the wild. Was the recent increase in zero-days a onetime occurrence, or should we expect disclosure of […]… Read More

The post Security Slice: The Zero-Day Arms Race appeared first on The State of Security.

In the beginning of April, the Badlock vulnerability was everywhere. It had its own logo and website, along with an announcement stating security updates would only become available as part of the April Microsoft Patch Tuesday. But when the details were revealed, many security experts felt Badlock’s marketing was not consistent with the severity of the […]… Read More

The post Security Slice: The Bug That Cried Wolf appeared first on The State of Security.

Ransomware seems to be everywhere. According to Blue Coat Systems’ 2015 Mobile Malware Report, ransomware is now the top malware threat targeting mobile devices, and it has even begun to infect Apple’s Macintosh computers. Hospitals across the nation have been significantly impacted by ransomware campaigns. What factors are driving this dramatic rise in ransomware? Listen to our […]… Read More

The post Security Slice: The Resurgence of Ransomware appeared first on The State of Security.

After weeks of controversy, the FBI announced it successfully cracked the iPhone of the San Bernardino shooter. The FBI’s method did not require Apple’s assistance, but the discussion surrounding encryption and law enforcement is far from over. This special security slice podcast was recorded several days before the FBI dropped its legal case against Apple. […]… Read More

The post Security Slice: The Apple Encryption Debate appeared first on The State of Security.

In early March, Tripwire security researcher Travis Smith did a presentation at RSA Conference 2016 on how commercial and open source threat intelligence tools can work together to add essential time context to log data. This crucial data allows organizations to pinpoint exactly when a breach occurred and other critical forensic analysis information. Listen to this special security slice […]… Read More

The post Security Slice: Dreaming of IoCs and Threat Intelligence appeared first on The State of Security.

San Francisco is hosting a major software development festival roughly 10 days before RSA’s 2016 security conference rolls into the city. Whether you are a new software developer or a seasoned architect, how can you build security into your development process? Listen to our latest Security Slice podcast and hear Tim Erlin, Tyler Reguly and Craig Young discuss why developer […]… Read More

The post Security Slice: Secure Software Development appeared first on The State of Security.

In December 2015, a power outage in the Ukraine left over 700,000 citizens without electricity. Security researchers confirmed that the outage was caused by BlackEnergy malware and there’s been a lot of speculation that Russia was behind the cyber attack. What lessons can U.S. critical infrastructure providers learn from these attacks? Listen to our latest Security […]… Read More

The post Security Slice: BlackEnergy Blackouts appeared first on The State of Security.

A multinational insurance company called Chubb will soon offer their clients ‘troll insurance.’ This new policy will allow holders to claim up to £50,000 to pay for expenses caused by online abuse, including professional counselling and forensics to track down the original bullies. The Internet is infamous for widespread cyber bullying; will this become a […]… Read More

The post Security Slice: The High Cost of Trolls appeared first on The State of Security.