Category Archives: MicroSolved’s Strategies & Tactics Talks

MSI Strategy & Tactics Talk Ep. 11: Managing Mobile Security

Posted on by
Reply

“We’re not seeing good reporting processes yet. Many organizations… do not know who has these mobile devices or where they are located and what they’re being used for.”  – Brent Huston, CEO, MicroSolved, Inc.

Samsung Galaxy, Google Android, Apple iPad — mobile devices are a hot item and consumers are bringing them to their workplaces. Along with the popularity are malware developers who would like nothing better than to steal sensitive information from them. How can you protect your organization’s data from mobile device usage? Discussion questions include:

  • Who is managing mobile devices?
  • There needs to be some reporting – who does this and who should be involved?
  • Who are the groups that should be included when talking about mobile security? How should an organization start their strategy?
  • Regarding the data layer: what controls can we wrap around the data itself?
Panelists:
Brent Huston, CEO and Security Evangelist, MicroSolved, Inc.
Adam Hostetler, Network Engineer and Security Analyst
Phil Grimes, Security Analyst
John Davis, Risk Management Engineer
Mary Rose Maguire, Marketing Communication Specialist and moderator

Click the embedded player to listen. Or click this link to access downloads. Stay safe!

MSI Strategy & Tactics Talk Ep. 10: Security For Windows Consumers & Their Home System

Posted on by
Reply

“You can be doing all the right things and still get your home machine compromised. It becomes less about prevention and more about what we do when our machines become compromised.”  – Brent Huston, CEO, MicroSolved, Inc.

Are you “the computer guy” for your family? Listen in as our tech team discusses common problems of Windows users and steps they can take to help protect their data. Discussion questions include:

  • How do Windows users stay safe in a world of modern malware and online crime?
  • What do Windows users do when their box gets infected?
  • What do you do to secure the Windows boxes of your family members?
  • What tools does every Windows box need and how should windows security settings be configured?
  • What about the browser?
Panelists:
Brent Huston, CEO and Security Evangelist, MicroSolved, Inc.
Adam Hostetler, Network Engineer and Security Analyst
Phil Grimes, Security Analyst
John Davis, Risk Management Engineer
Mary Rose Maguire, Marketing Communication Specialist and moderator

Click the embedded player to listen. Or click this link to access downloads. Stay safe!

MSI Strategy & Tactics Talk Ep. 9: PHP, Attackers & YOU

Posted on by
Reply

“What makes PHP so amazing is the growth rate it has experienced back from 2000. It just exploded between 2000 and 2007 and has exponentially continued until today.”  – Brent Huston, CEO, MicroSolved, Inc.

What is going on with PHP? Listen in as our tech team discusses PHP malware and more. Discussion questions include:

  • PHP’s growth, why it is so popular and using it for modern web development
  • How are attackers abusing PHP?
  • What is PHP malware?
  • How common are PHP scans, probes, attacks and compromises?
  • What can organizations do to protect their PHP developed sites and applications?
  • Where can organizations go for more information about PHP development, PHP attacks and PHP application testing?
Resources mentioned:
HoneyPoint Twitter Feed (#HITME – HoneyPoint Internet Threat Monitoring Environment)
Panelists:
Brent Huston, CEO and Security Evangelist, MicroSolved, Inc.
Adam Hostetler, Network Engineer and Security Analyst
Phil Grimes, Security Analyst
John Davis, Risk Management Engineer

Click the embedded player to listen. Or click this link to access downloads. Stay safe!

MSI Security & Tactics Talk Ep. 8: Hacker & Security Conventions

Posted on by
Reply

“I spoke to some folks who are attending Blackhat and they’re all talking about Android and iPhone. iOS platform attacks. There’s a huge focus on insecurity and developing an attack tool for that model. Not just malware, but actual attack tools.  – Brent Huston, CEO, MicroSolved, Inc.

Listen in as our tech team discusses Blackhat 2011, DefCon, and B-Sides conferences. Discussion questions include:

  • DEFCON, B-Sides and Blackhat are this week in Vegas. With so many hacker and security conventions around now, what do organizations need to know about them?
  • What are you expecting to come from Blackhat and DEFCON this year? What do you find interesting?
  • What does the future of security conventions of hold and where are things likely to go from here?
  • Are the training at these shows worth it for the average IT admin, network engineer or security analyst?
  • Do you have any tips for getting the most out of these shows or for those interested in attending?
Panelists:
Brent Huston, CEO and Security Evangelist, MicroSolved, Inc.
Adam Hostetler, Network Engineer and Security Analyst
Phil Grimes, Security Analyst
John Davis, Risk Management Engineer
Chris Lay, Account Executive

Click the embedded player to listen. Or click this link to access downloads. Stay safe!

MSI Strategy & Tactics Talk Episode 7: Security By Popular Demand!

Posted on by
Reply

“It is imperative that during times like this, we step back, analyze the situation, identify the solutions, and then evaluate which of those solutions best fits our needs.” – Phil Grimes, Security Analyst for MSI

Listen in as our tech team tackles the frequent requests from other organizational departments on “how to do security,” including:

  • How are some of the ways a company can be influenced in their infosec initiatives by departments other than IT?
  •  How does Mass Media affect information security?
  •  When a CEO goes into panic mode after a splashy news story, what is the best response from the IT department?
  •  Can you share some stories about what happens when an organization goes into “panic mode?” What are the results of such an approach?
  •  What are some guidelines you can give to organizations to prevent security initiatives by being dominated by popular demand?

Panelists:

Brent Huston, CEO and Security Evangelist, MicroSolved, Inc.
Adam Hostetler, Network Engineer and Security Analyst
Phil Grimes, Security Analyst
John Davis, Risk Management Engineer
Mary Rose Maguire, Moderator, Marketing Communication Specialist, MicroSolved, Inc.

Click the embedded player to listen. Or click this link to access downloads. Stay safe!

MSI Strategies & Tactics Talk Episode 5: Is Compliance-centric Security The Way To Go?

Posted on by
Reply

“Compliance-centric security is bleeding us dry.” – Brent Huston, CEO and Security Evangelist for MSI

Listen in as our tech team discusses compliance-centric security, including:

  • What is compliance-centric security?
  • Why is it a problem?
  • How it creates a “do-the-minimum mentality”
  • What is the alternative to compliance-centric security?

Panelists:

Brent Huston, CEO and Security Evangelist, MicroSolved, Inc.
Adam Hostetler, Network Engineer and Security Analyst
Phil Grimes, Security Analyst
John Davis, Risk Management Engineer
Mary Rose Maguire, Moderator, Marketing Communication Specialist, MicroSolved, Inc.

Click the embedded player to listen. Or click this link to access downloads. Stay safe!

MicroSolved’s Strategies & Tactics Talk: #3 APT: Less Advanced Than You May Think

Posted on by
Reply

So how “advanced” is APT?

Listen in as our tech team discusses various aspects of APT such as:

  • How it has been portrayed.
  • Why it often isn’t an advanced threat
  • Where do they originate?
  • What can companies do about APT?

Panelists:

Brent Huston, CEO and Security Evangelist, MicroSolved, Inc.
Adam Hostetler, Network Engineer and Security Analyst
Phil Grimes, Security Analyst
Mary Rose Maguire, Moderator, Marketing Communication Specialist, MicroSolved, Inc.

Click the embedded player to listen. Or click this link to access downloads. Stay safe!

Introducing: MicroSolved’s Strategies & Tactics Talks!

Posted on by
Reply

We’re adding a new feature to our blog: MicroSolved’s Strategies & Tactics Talks!

Every other week, we’ll focus on some of the hottest security issues that are trending, with insights and advice regarding the good, the bad, and the ugly. Make sure to tune in or save the mp3 to your folder so you can download it to your favorite player.

Our first episode: Sony’s Security Woes

Brent Huston sat down with MicroSolved, Inc.’s security team to discuss what Sony did right with their batch of security breaches. Click the embedded player to listen. Or click this link to access downloads. Stay safe!