MITRE ATT&CKcon 3.0

Hello World! A very brief post, over the last couple days I attended ATT&CKcon 3.0. It was full of brilliant talks and interesting people. A talk from educators in the social sciences sector and their students from high school to postgrads. Demonstrating a social engineering attack and mapping it to the matrix, that was oneContinue reading “MITRE ATT&CKcon 3.0”

Backup codes!

Hello World! Building on my misconfiguration of security keys, I had to use a backup code for the first time ever today. I cannot stress enough the importance of these codes for your accounts that have multi-factor authentication. Write them down and keep them in a safe place, they could really save your skin. EspeciallyContinue reading “Backup codes!”

That wasn’t supposed to happen…

Hello World! I’ve successfully broken a YubiKey and locked myself from the accounts, it’s not completely broken it just needs to be reset but what a pain in the backside. This is why I have my backup key, meaning this is nothing but an inconvenience to me. I was trying to setup my YubiKey withContinue reading “That wasn’t supposed to happen…”

KeePass and the argument for password managers.

[Update 11th May 2022: I am going to be making changes soon to improve readability of this post, I understand it’s a little more complex than what I am aiming for.] Passwords: So, let’s start off with the most important question, what makes a good password? Passwords should be at least 14 characters in length.Continue reading “KeePass and the argument for password managers.”

Planes are pretty cool! – Food for thought #3.

Just a little unstructured rambling today from me, I’m sure someone will enjoy the read… I have begun reading through a 2016 thesis on Security in next-gen Air Traffic communication networks by Martin Strohmeier, it was brought to my attention regarding discussions about a possible use case for software defined radio. This isn’t anything new,Continue reading “Planes are pretty cool! – Food for thought #3.”

Here comes the “Cyber Army”.

Hello World… So the Russian government finally pulled the trigger on their invasion into Ukraine, since then we have seen information warfare erupt as the Russian dictator tries to deny any wrongdoing. But I wanted to talk about the “Cyber Army” now threatening Russian government infrastructure, not the Ukrainians in particular but the world asContinue reading “Here comes the “Cyber Army”.”

Russian Threat Actors

Hello World! Short and sweet here. With tensions between NATO and Russia rising, multiple agencies have put out advisories to keep your eyes peeled for cyber threats out of Russia. I would encourage anyone involved in security currently to view the tactics, techniques and procedures of these actors. Here’s a good report from CISA aboutContinue reading “Russian Threat Actors”