Byte-Size Beginner

  It’s interesting to know that security comes in multiple forms. Who knew there was a plethora of ways that you can use security in the digital world. While not all security is adequate in terms of offering you the ‘best’, or there could be times when it’s not even effective. Before you come at me… it’s possible that some methods are now insufficient and no longer effective in the realm of modern threats. A good example of this is blacklisting. Of course, the goal is to block out and deny the bad, so what’s the problem?   Here’s the thing, in order to block out the bad, you have to know what the ‘bad’ is. That’s the thing with blacklisting, you’re letting anything and everything inside on the premise that it could be ‘good’, until it’s not. Let me explain, in today’s world, threats are evolving. Threat actors are coming up with more and more ways to combat increased security. If you are relying on blacklisting to keep out the bad, in my opinion, you are working with old i...

  It goes without saying, that using proper security measures is the key to protecting yourself and your data when using a computer. The goal: Keeping your information out of unwanted hands!  One way you can add extra protection is to use encryption. Which typically includes cypher keys, special software, algorithms, and sometimes a headache when you lose one of the keys. There are different types of cryptography: symmetric, asymmetric, and hash. It shouldn’t feel like an extra step to add or use encryption; it should be automatic. But what if I told you that you can get the same benefits of encryption without having to keep track of multiple cypher keys? Yes, it’s possible with self-encrypting drives (SEDs). With SEDs, the process happens automatically. With no need to manage cypher keys manually, and no unnecessary steps on the user’s part; as the encryption 'key' never moves out of the drive. Since this is hardware based, it encrypts the data as you type it and onc...

  A primary security goal for businesses and organizations is to ensure their network is secure. Making sure that everything stays up to date, and proper security measures are in place to keep attackers out. What if I told you that there is a method that does the exact opposite, and intentionally? Yes, you read that right. The method I’m referring to is called Honeypot. Essentially, it is a fake system that is used to attract threat actors. It’s made to look legit, and to portray something of high value. By using this method, it can allow people to analyze the attacker’s abilities, the type of attack used, and the complexity of it. While this may seem like a great way to distract attackers from targeting the ‘real’ system, it does have its drawbacks. The biggest drawback is the cost of this, as it requires dedicated system, such as its own hardware and software. Additionally, it would need to be on a completely separate network. This could be a great tool for some business or...