All about InfoSec, Security Compliance, Cyber Security, Government Security Laws, Data Protection, and fascinating Cyber Security startup companies and services.
TOTP, or Time-Based One-Time Password, is a method used in two-factor authentication (2FA) to generate a temporary and dynamic password, changing at fixed intervals (usually every 30 or 60 seconds). These passwords are time-sensitive and can only be used once, enhancing security over static passwords. TOTPs are created using a cryptographic algorithm that combines a…
Duo Mobile, developed by Duo Security (now a Cisco subsidiary), is a mobile application providing two-factor authentication (2FA) to enhance security. It adds an extra layer of security to user accounts, protecting against unauthorized access beyond just a username and password. The app offers various authentication methods, including push notifications, time-based one-time passcodes (TOTP), and…
In previous articles we’ve learned how important Data Integrity Assurance is, In here we’ll go over data integrity failures as examples of what could go wrong if data is compromised and damaged and how failures could lead to failure of our organization business model. simply assuming that any data is good “as is” and reliable…
Data integrity assurance is crucial in today’s digital world, as it underpins decision-making and organizational operations. Compromised data integrity can lead to serious consequences. Poor decision-making can occur when decisions based on incorrect or manipulated data lead to operational, financial, or strategic issues. Businesses, especially in sectors like banking, healthcare, and e-commerce, risk losing customer…
Audit logs, at their core, are records that document the sequence of activities or events that affect an organization’s IT environment. They are akin to a digital ledger, meticulously chronicling every action, from user logins to system errors. The primary purpose of these logs is to provide a transparent and traceable account of all operations,…
In here we’ll talk how a company almost lost all of it’s intellectual property due to one mis-handled employe and how a security measurements applied in advanced protected the company future, the company investors money and the owners themself from liability and possible lawsuits. To protect the company identify we’ll call the company MoonActive. Background…
MGT512 is a course offered by the SANS Institute titled “Security Leadership Essentials for Managers,” aimed at managers and leaders in information security. It focuses on developing leadership and management skills specific to cybersecurity, covering topics like risk management, security policy, legal issues, and incident response. The course’s primary goal is to equip managers with…