Binary Code

Computers and other electronic devices store information as Binary Code (which is a series of 1s and 0s that might look like this: 10101001 01101100 11001010).
Network Topology Map

A Network Topology Map is a diagram of a computer network's components, including network access points and connections between its various parts.
Fake Anti-Virus Software

Fake Anti-Virus Software - also known as 'scareware' - is designed to trick you into buying worthless anti-virus protection that you do not need.
Domain Name System

The Domain Name System (DNS) is like the ‘telephone book’ of the Web – it translates a website's name into its corresponding numerical IP address on the Internet.
Social Engineering

A Phishing e-mail is an attempt to trick the recipient into giving up information, such as account, credit card or password information.
Data Encryption

Data Encryption is the intentional scrambling of information into unreadable form - until it is later converted back into its original form by the intended recipient.
Botnet, or Compromised Computers

A Botnet is a collection of computers compromised by a malware attack that can be controlled remotely (via the Internet) to attack websites, send out spam emails, etc.
Distributed Denial of Service Attack

A Distributed Denial of Service (DDoS) Attack can use a botnet to force a website, network or other resource to shut down by overloading it with requests for data.
USB Flash Drive

A USB Flash Drive, aka a 'stick drive' or 'thumb drive' is a portable data storage device which connects to a computer's USB port to send and receive data.
Electronic vs. Static Media

Static Media is something like a book, magazine or printed photo, while Electronic or Digital Media (websites, digital photos, etc.) requires power to be viewed.
Administrative Access

A user with Administrative Rights has unrestricted power to create, modify or delete files, folders, settings and programs on a particular computer.

How Do I Know If an App Is Safe?

Posted on March 29, 2013 by Scott Aurnou

Computer Security Tip of the Week

Scott Aurnou – What are the risks when downloading apps to your mobile phone or tablet? The apps can be infected with mobile malware that can force your phone to send premium rate text messages, steal your personal and/or financial information and even co-opt your device into a mobile botnet; or adware (aka ‘madware’) that places unwanted ads throughout your phone. Here’s what to look out for to avoid these unwelcome guests.

If you enjoyed this video, you can see more on TheSecurityAdvocate YouTube channel (and subscribe if you like).

Tagged with: App, App Permissions, App Store, Botnet, Google Play, Granular Permissions, Jailbroken, Madware, Mobile Botnet, Mobile Device, Mobile Malware, Mobile Phone, Rooted, Smartphone, Smartphones & Tablets, Tablet, Text Messaging, The Security Advocate
Posted in Security Tip of the Week, Smartphones & Tablets

What is ‘Wardriving’ and How Can It Affect Your Company’s Computer Network?

Posted on March 25, 2013 by Scott Aurnou

By Scott Aurnou

Computer networks can be threatened by a host of potentially unexpected sources. Some of these start with ‘wardriving.’ Naturally, this begs a few questions…

What is ‘wardriving’? Literally speaking, it refers to hackers driving around with laptops or mobile devices connected to high-powered antennas, scanning for unlocked (i.e., no password needed for access) or poorly protected networks. The name is a variant on ‘wardialing,’ which was inspired by a scene in the movie WarGames in which the lead character used an old-style telephone modem to search for open computer networks. Strictly speaking, wardrivers log and collect wireless network info, without actually jumping onto the networks. Using another’s network without permission is called ‘piggybacking.’

What can wardriving lead to? Wardriving is often used to locate networks vulnerable to attack. If hackers identify yours as unlocked or relatively unprotected, they can download malware onto the system and/or surreptitiously search the computers and devices connected to the network for personal, company and financial data, log in credentials, passwords, etc. One relatively common scam involves spotting a vulnerable network via wardriving, infiltrating it to steal online banking log in information and then using it to transfer or withdraw funds from the company’s accounts.
Read more ›

Tagged with: Encryption, hackers, Malware, Network Security, password, Router, The Security Advocate, Wardriving, Wi-Fi, Wireless Network
Posted in Network Security

What is Computer Forensics?

Posted on March 22, 2013 by Scott Aurnou

Computer Security Tip of the Week

Scott Aurnou – Computer forensics can be used to preserve electronic evidence and determine the methods used and damage caused by a data breach.

A longer course on computer forensics is available here (and can be viewed for free):
Computer Forensics: Deleting Does Not Mean What You Think

If you enjoyed this video, you can see more on TheSecurityAdvocate YouTube channel (and subscribe if you like).

Tagged with: Computer Forensics, Data Breach, Digital Forensics, e-Evidence, Electronic Evidence, ESI, The Security Advocate
Posted in Network Security, Security Tip of the Week

Cloud Service Contracts: Breaking Down the All Important Service Level Agreement (SLA)

Posted on March 20, 2013 by The Security Advocate

By Kaiser Wahab

For many businesses, storing company and customer information in the cloud may seem like the cheapest and most convenient option. Too often however, businesses rarely realize that with one-click ease they are putting critical data (personal info, trade secrets, intellectual property, etc.) in the crosshairs of a security disaster, due to compliance issues over privacy, data security, and other laws and regulations. Hence, the ease of a cloud solution can lead to a legal headache if a strong contractual foundation is not put into place. The most critical of those contracts may be the SERVICE LEVEL AGREEMENT (“SLA”) between the client and the cloud service.

By making both parties aware of their responsibilities and when they may be held liable for failing to live up to those responsibilities, a strong SLA can help prevent many of the hassles and dangers that can come with switching over to the cloud. This article provides insight into the major parameters and provisions that drive the SLA.

The provisions of an SLA generally fall into three broad categories:

Data Processing and Storage;
Infrastructure and Security; and
The Provider-Client Relationship.
Read more ›

Tagged with: Cloud, Cloud Computing, Cloud Security, Cloud Storage, Contract, Data Breach, Data Security, Data Storage, Kaiser Wahab, Liability, Service Level Agreement, SLA, The Security Advocate, Wahab & Medenica
Posted in Cloud Security, Guest Posts

What is Whitelisting and How Can It Protect Your Network?

Posted on March 15, 2013 by Scott Aurnou

Computer Security Tip of the Week

Scott Aurnou – Whitelisting is a method of protecting a computer network by blocking programs and incoming Web traffic unless they are specifically approved to connect to the network.

If you enjoyed this video, you can see more on TheSecurityAdvocate YouTube channel (and subscribe if you like).

Tagged with: Blacklisting, Network Security, The Security Advocate, Whitelisting
Posted in Network Security, Security Tip of the Week

RT @JimBlasingame: How the government cyber-security forces guard the U.S. election. @saurnou joins Jim to report on how the #government #c… 01:44:47 AM December 06, 2020 from Twitter Web App Reply Retweet Favorite
RT @AndreiCherny: A family of Muslim immigrants from Turkey newly arrived in Germany. The boy in the yellow t-shirt went on to lead the te… 01:43:10 AM December 06, 2020 from Twitter Web App Reply Retweet Favorite
RT @_marcba: Developers can be cruel sometimes https://t.co/kpYvO9aZsu 03:46:39 PM June 29, 2020 from Twitter Web App Reply Retweet Favorite

@saurnou