Byte-Size Beginner

  It goes without saying, that using proper security measures is the key to protecting yourself and your data when using a computer. The goal: Keeping your information out of unwanted hands!  One way you can add extra protection is to use encryption. Which typically includes cypher keys, special software, algorithms, and sometimes a headache when you lose one of the keys. There are different types of cryptography: symmetric, asymmetric, and hash. It shouldn’t feel like an extra step to add or use encryption; it should be automatic. But what if I told you that you can get the same benefits of encryption without having to keep track of multiple cypher keys? Yes, it’s possible with self-encrypting drives (SEDs). With SEDs, the process happens automatically. With no need to manage cypher keys manually, and no unnecessary steps on the user’s part; as the encryption 'key' never moves out of the drive. Since this is hardware based, it encrypts the data as you type it and onc...

  A primary security goal for businesses and organizations is to ensure their network is secure. Making sure that everything stays up to date, and proper security measures are in place to keep attackers out. What if I told you that there is a method that does the exact opposite, and intentionally? Yes, you read that right. The method I’m referring to is called Honeypot. Essentially, it is a fake system that is used to attract threat actors. It’s made to look legit, and to portray something of high value. By using this method, it can allow people to analyze the attacker’s abilities, the type of attack used, and the complexity of it. While this may seem like a great way to distract attackers from targeting the ‘real’ system, it does have its drawbacks. The biggest drawback is the cost of this, as it requires dedicated system, such as its own hardware and software. Additionally, it would need to be on a completely separate network. This could be a great tool for some business or...

Going to your local coffee shop can be a great place to not only enjoy a cup of coffee, but you can also get access to free public Wi-Fi. While that seems appealing and cost effective, it might be worth thinking about the security risks beforehand. When using public Wi-Fi, and not taking proper precautions, it’s possible for someone to intercept the information you are sending or receiving. This is referred to as eavesdropping or a Man in the Middle attack. This is a great way for threat actors to gain access to private information, whether passwords, emails, or even banking info. Essentially a person trying to gain access will digitally put themselves on the same path as you in order to get access, or this can happen by connecting to a ‘fake’ public Wi-Fi connection. While using this analogy is a great way to explain the how and the implications, it's worthy to note that this isn't just a 'free public wi-fi' type of attack, it can also happen on other unsecure connecti...

  As a person that uses technology and the internet on a daily basis, it’s mind blowing how vulnerable you and your data are. On a personal level or even as a business or organization, the vulnerabilities can have a big impact. With businesses, specifically those that handle secure data or private information, ensuring that you have some sort of protocol in place can help aid in better security. Vulnerabilities scanners can be useful when trying to help catch those pesky weaknesses within your system. In other words, they help you to stay ahead of the game. A plus is that some of them have the ability to check for a variety of things, such as missed patches, weak passwords, misconfigurations, and even outdated software. Not only that, it can help in the realm of maintaining overall compliance; especially if you’re working with sensitive information. This may be something people ‘may’ think they can skip over. In best practice it can actually be beneficial by prioritizing risks,...

Hello from the void, A new college term is upon us, and the calendar year is almost over! Before I go any further, allow me to introduce myself: you can call me K, and as you can guess, I am a college student that is working on a bachelor’s in information technology. After 3.5 long years I can finally see the light at the end of the tunnel. I got my love for technology when I used my first computer around the age of 5, alongside watching my dad rebuilding them as a hobby. Ever since I’ve been dabbling in the tech side, and self-taught myself HTML coding at the age of 12. While I haven’t done much with it after the myspace era ended, it can’t be that hard to pick it back up.   With that out of the way, I look forward to updating my blog and sharing the things I’ll be learning throughout the term -K