Should have mentioned this before but Red Canary and Atomic Red Team share test steps you can use to verify if your detection architecture works properly. Both for windows and linux. And of course they also cover cloud, e.g., for Azure. They publish, together most of the tests on GitHub for you to play with and some on their website, nice!
Security Compliance Chaos Made Simple?
Any way that makes security compliance easier is always welcome I think. Reporting on or even assessing compliance to more than one standard is common if you at least are a service provider; ISO, NIST, ISF SoGP, GDPR, PCI DSS, CSC etc.
ComplianceForge makes this at least slightly simpler with their immense guidelines and tools for mapping most common standards. Most is not free, however, some of their material is and it is a great start. Would also recommend CIS Securitys Compliance mapping.
Updates from NIST in Cybersecurity and Privacy
NIST is planning to update more standards in 2021, e.g., supply chain management and performance measurements are some of them. Looking forward to it!
DODs list of “Communist Chinese military companies”
Among the banned companies are the consumer oriented Huawei and now Xiaomi. Read the lists from DOD.
Easy metadata and document extraction with Apache Tika
If you need a simple tool to extract text and metadata from web or documents (most types) you should check out java based Tika from Apache.
How Law Enforcement Gets Around Your Encrypted Smartphone
Not a revolutionary story about how government agencies bypass mobile device encryption, but more a reminder of how – software vulnerabilities. See this Wired article for a rather good summary of the research of John Hopkins Uni.
A moment of reckoning: the need for a strong and global cybersecurity response – Microsoft sais
A nice New years offensive strategy and heads up from Microsoft based on the recent SolarWinds case.
But how did it hit MS I wonder… Time will show. Update 01.01.21 investigation status.
More on their analysis here.
When a Security Firms Red Team Tools are Stolen…
…it is hard to imagine how to protect. Ref US-Cert and Fireeye blog for more.
And here are some countermeasures for those who like on Github.
TLS Explained, again
Never a bad time to be reminded of a good old TLS flow explanation.
VMware Black Screen Issue on Catalina upgrade
Many of you, as I, have experienced “black screen” in running VMs when using VMware after upgrading MacOS to Catalina.
You can easily fix this by checking the “Screen recording” setting, in System Preferences/Security & Privacy such as this. After checking the box, quit VMware and you are good to go!
