Anyone know of a legit 2FA browser extension ..read more

Duo was installed prior to my coming here, but I learned something scary today: The company uses Duo for workstation authentication and also, via a Duo Authentication Proxy, for VPN access. Access to the VPN is does with an AD group that the Proxy says is allowed access or not. If a user forgets their phone, and is placed in Bypass mode, they also get VPN access. When I checked with support, I'm told that's expected behavior. To me that seems shortsighted: sure, if they have access to the VPN, allow them to skip the 2FA if in bypass mode, but to give that person external access? Yikes. I've be ..read more

You would be hard-pressed to find an author and organization (KnowBe4) that has pushed the use of phishing-resistant multifactor authentication (MFA) harder. When the world was touting “MFA”, we were shouting “PHISHING-RESISTANT MFA” even louder, including here: https://blog.knowbe4.com/u.s.-government-says-to-use-phishing-resistant-mfa Opens a new window https://blog.knowbe4.com/do-not-use-easily-phishable-mfa Opens a new window https://blog.knowbe4.com/phishable-methods-multifactor-authentication Opens a new window https://blog.knowbe4.com/so-your-mfa-is-phishable-what-to-do-next Opens a ne ..read more

There are tons of ways out there to bypass a policy screen lockout. What options are there available to help stop these attempts? We have the standard 15 minute idle timeout We take the mouse jigglers. We inform of the obvious reasons to both the people doing so and their management. What have you done? What options are realistically available etc ..read more

I use ssh to access the web server(CentOS7). I noticed the website is inaccessible via web browser (522 error) and denied new ssh sessions few days ago. I have another PC with an existing ssh session to the server. (The PC never shut down for troubleshooting purposes) I had to stop the firewall (# systemctl stop firewalld) then the website is up and running, and able to access ssh from new session. After the web and ssh is up, I turn on the firewall (# systemctl start firewalld) but the disconnection happens again after few hours, I had to disable the firewall and it will work again. This just ..read more

The Software Development Life Cycle (SDLC) outlines the journey of projects from the planning and design stages all the way through to coding, testing, and final deployment. As cyber threats evolve, they become more sophisticated and targeted. As a result, it's no longer enough for software to just "work." It needs to be resilient and secure. Security testing, therefore, isn't just a best practice—it's a necessity. For many practitioners, security was always meant to be part of DevOps. Instead of happening at the end of the SDLC, DevOps security starts at the source: Code. This approach is co ..read more

Anyone else have an issue with decision makers not giving two thoughts about sharing the data they hold on other people with other companies in the name of their own bottom line? Today there are entire industries that simply want your companies data so they can mine the heck out of it.  And they provide some type of service back to the customer as a thank you for providing said data. Then of course, those companies get hacked and the data is spread to the wind ..read more

Hi All, I wonder if someone has knowledge or previous experience to help me with GDPR compliance, please? I have recently been recommended SASE solutions, such as ZScaler / Cato Networks / Perimeter 81 (won't go into the reasons why here). I am interested in these solutions. However, I am aware they collect and move data to other countries and 3rd party "processors" for the purposes of providing their contractually agreed services. I am very interested in how the operation of these SASE companies comply to UK GDPR. Obviously, we would sign a contract permitting various data processes. However ..read more

Hi, Currently we are using Barracuda Cloud Protection Layer (CPL) and Email Security Gateway (ESG)  Virtual Appliance with Exchange 2019 CU12 with latest SU. As per our parent company directives we need to migrate to Symantec Email Security.cloud  as our Anti Spam Solution. Have any one used Symantec Email Security.cloud  and Exchange 2019 combination and what challenges were faced. What are potential problems and how could it be avoided. How the mail flow works with Symantec Email Security.cloud with Exchange 2019. Thanks ..read more

I am having a problem in my company where we are using Bitdefender webcontrol to block websites such as social media, the problem is it doenst seem to block the websites on chromium browsers (Tested with Chrome, Edge and Brave) it works super well for firefox and other non-chromium based browsers, is there anything i am doing wrong ..read more