Virtual CIO

Secure Boot: Executive Briefing

Secure Boot is a boot integrity feature that is part of the Unified Extensible Firmware Interface (UEFI) industry standard; most modern computer systems are delivered with a standard Secure Boot policy installed.UEFI is a replacement for the legacy Basic Input Output System (BIOS) boot mechanism. UEFI provides an environment common to different computing architectures and platforms. UEFI also provides more configuration options, improved performance, enhanced interfaces, security measures to fight persistent firmware threats, and support for a wider variety of devices and form factors.Cybercriminals target firmware to persist on an endpoint. Firmware is stored and executes from memory that is [...]

Secure Boot: Executive Briefing2021-10-07T10:41:14-06:00

Can I shred paper originals after they are scanned?

In short, yes.Records management laws and rules do allow for records to be kept electronically in addition to, or instead of, physical copies. However, bear in mind that once a record is digitized, it must be accessible and maintained for the full life-cycle of the record and minimum retention period, which can be forever in the case of permanent records.As a general rule of thumb, you should store the documents at least six months prior to shredding the paper copies. Further, make certain to complete a visual quality control check on all scanned documents to make sure that they are [...]

Can I shred paper originals after they are scanned?2021-09-29T16:59:13-06:00

Understanding the Security Impact of Juice Jacking

Executive BriefJuice jacking is a common term that refers to compromising your mobile device through public charging stations, like those found in airports, hotels and coffee shops. Hackers can install special USB devices that contain malware in public charging stations.How does it work?When a phone is plugged in to charge, a piece of malware is automatically downloaded and installed onto the phone. The malware then provides hackers the ability to access your mobile device remotely and capture your activities, including email, online company files, banking credentials and much more.Guarding Against Juice JackingThe following are recommended safeguards to protect you from [...]

Understanding the Security Impact of Juice Jacking2021-08-18T10:54:38-06:00

July 2021 PrintNightmare Briefing

Executive BriefPrintNightmare is the name given to a critical remote code execution vulnerability in the Windows Print spooler service. Attackers can take advantage of this vulnerability to gain control of affected systems, causing widespread harm to internal and external parties.Technical DetailsThe RpcAddPrinterDriverEx() function is used to install a printer driver on a system. One of the parameters to this function is the DRIVER_CONTAINER object, which contains information about which driver is to be used by the added printer. The other argument, dwFileCopyFlags, specifies how replacement printer driver files are to be copied. An attacker can take advantage of the fact [...]

July 2021 PrintNightmare Briefing2021-07-08T15:01:28-06:00

Fortify Your Email and Web Defenses

Phishing emails and the use of unencrypted Hypertext Transfer Protocol (HTTP) protocol remain persistent channels through which malicious actors can exploit vulnerabilities in an organization’s cybersecurity posture. Attackers may spoof a domain to send a phishing email that looks like a legitimate email. At the same time, users transmitting data via unencrypted HTTP protocol, which does not protect data from interception or alteration, are vulnerable to eavesdropping, tracking, and the modification of the data itself. Breaking Down the Attack: How It WorksEmail  An attacker spoofs the domain of a reputable organization, and sends an email that looks to be a legitimate [...]

Fortify Your Email and Web Defenses2021-03-14T18:16:13-06:00
Go to Top