Skip to content
Glock Enterprises
  • Welcome
  • Blog
  • Resources
  • Support

Author: peterglock

The SOC is blind to the attackable surface

12th April 202112th April 2021 peterglock

The headline reads a bit like a haiku but there are some good points in here. I’ve been pushing the concept of combining threat modelling, asset management and configuration management […]

 Glock Takes Stock, Information Security

Ambit, Inc. Announces the Release of AmbitVPN’s Post-Quantum Native Windows Application

9th April 2021 peterglock

Buzzword alert! AmbitVPN leverages a hardfork of a new, modern network technology … “For true digital privacy and ongoing security assurance, Ambit is the only … Original article

 Glock Takes Stock, Information Security

Zero trust: The good, the bad and the ugly

9th April 2021 peterglock

We saw a lot of “Cloud Washing” when timeshare morphed via ASP to Cloud. I’ve seen disk drives marketed as “My Cloud” which kind of misses the point…: […] The […]

 Glock Takes Stock, Information Security

New Cring ransomware hits unpatched Fortinet VPN devices

8th April 20218th April 2021 peterglock

If I asked you what the patch status is of all the assets connected to your network and then link that to active malware campaigns to come up with a […]

 Information Security

Gigaset Android phones infected by malware via hacked update server

8th April 2021 peterglock

You should be able to trust the update servers of your phone manufacturer?…: Owners of Gigaset Android phones have been repeatedly infected with malware since the end of March after […]

 Information Security

SAP warns of malicious activity targeting unpatched systems

8th April 2021 peterglock

It’s not exactly a shock that criminals are targeting unpatched systems, but SAP tends to drive critical systems in large businesses (think payroll, manufacturing, purchasing….) so the impact of this […]

 Information Security

Should firms be more worried about firmware cyber-attacks?

8th April 2021 peterglock

I’ll bet you’ve got equipment that hasn’t had a firmware update in years, even decades. The BBC tries to explain why this is an issue but I’d add that you […]

 Glock Takes Stock, Information Security

Welcome to the NCSC’s Cyber Security Toolkit for Boards

7th April 2021 peterglock

I welcome initiatives like this from governments but wonder if any board will actually work through the modules. My observation over the years is that cyber security makes it onto […]

 Glock Takes Stock, Information Security

Windows XP makes ransomware gangs work harder for their money

7th April 2021 peterglock

Nice to see the criminals’ continued support for legacy platforms…: […] If an organization uses Windows XP and a ransomware attack encrypts the device, it now falls on the threat […]

 Glock Takes Stock, Information Security

EU investigating ‘IT security incident’ involving multiple agencies

7th April 2021 peterglock

I’ll be watching for further details…: Cybersecurity experts at the European Union are investigating an “IT security incident” involving multiple institutions, though “no major information breach” has been detected, EU […]

 Glock Takes Stock, Information Security

Posts navigation

← Older posts

Recent Posts

  • The SOC is blind to the attackable surface
  • Ambit, Inc. Announces the Release of AmbitVPN’s Post-Quantum Native Windows Application
  • Zero trust: The good, the bad and the ugly
  • New Cring ransomware hits unpatched Fortinet VPN devices
  • Gigaset Android phones infected by malware via hacked update server

Get in touch

Email: [email protected]


View Glock Enterprises Ltd profile on Ariba Discovery

Data Protection Register

Registered with the ICO: ZA494319

About

Glock Enterprises Ltd. Registered in England & Wales No. 11183883

VAT No: GB 361 2795 89

Glock Enterprises (Europe) OÜ
Registered in Estonia
No. 16149069

VAT No: EE102351110

All content (c) Glock Enterprises Ltd 2021

Pages

  • Blog
  • Privacy Policy
  • Resources
    • Free Trial – Private Threat Intelligence
    • White Paper: Building a Business Case for Cybersecurity Asset Management
    • White Paper: Cyber Deception – Migrating to an alternative platform
    • White Paper: Hunting for Threats in Operational Technology
    • White Paper: Internet Connected Storage
    • Whitepaper: 5 Steps to Building a Threat Modelling Program for AWS
    • Whitepaper: Coping with a flood of Data Subject Access Requests
  • Services
  • Support
  • Welcome

The Latest from Facebook

Glock Enterprises Ltd

3 days ago

Glock Enterprises Ltd
buff.ly/3uySeQkZero trust: The good, the bad and the uglyWe saw a lot of “Cloud Washing” when timeshare morphed via ASP to Cloud. I’ve seen disk drives marketed as “My Cloud” which kind of misses the point...:[...] The bad side of zero trust concerns the misunderstandings that are currently being propagated. "Among the misconceptions Kindervag is eager to dispel is that zero trust makes a system 'trusted,' and that it is just about identity and multi-factor authentication (MFA)," mentioned Zorz. "Zero trust eliminates trust from digital systems, because trust is a vulnerability that can be exploited."If Zero Trust was equal to MFA (as many vendors claim), then neither the Snowden nor Manning breaches would have been able to happen," explained Kindervag. "They had very robust MFA and identity solutions, but no one looked at their packets post-authentication."Something else that Kindervag finds disconcerting is that vendors are redefining the meaning of zero trust so that it coincides with what their products are capable of doing. According to Kindervag, there are no "zero trust products." He told Zorz, "There are products that work well in zero trust environments, but if a vendor comes in to sell you their 'zero trust' product, that's a pretty good indication that they don't understand the concept."[...]Original article ... See MoreSee Less

Photo

View on Facebook
· Share

Share on Facebook Share on Twitter Share on Linked In Share by Email

Proudly powered by WordPress | Theme: Moesia by aThemes