Microsoft Office 365 Security Best Practices to Protect Your Organization
You’ve likely heard the saying, “There is no cloud, only other peoples’ computers.” Hosted environments like Microsoft Office 365 for email, [...]
Achieve NOTHING™ Cybersecurity Podcast: Anthem’s Record $16M HIPAA Settlement
Big news this month! Anthem agreed to pay the federal government a whopping $16 million, settling the largest U.S. health data [...]
Oops! Common Security Gaps That Lead to Security Incidents
What some companies consider to be minor gaps in their security controls, training programs, or policies and procedures, are in fact [...]
Secure Your Office 365 Accounts
Business Email Compromise (BEC) has become an epidemic in recent years and is now the most common type of data breach [...]
RIP Office365 Magic Unicorn Tool
As of this morning, Microsoft appears to have killed access to the "Activities" API, first publicized by Anonymous and used [...]
Manually Exploiting MS17-010
The MS17-010 (EternalBlue, EternalRomance, EternalChampion and EternalSynergy) exploits, which target Microsoft Windows Server Message Block (SMB) version 1 flaws, were believed [...]
How To Search for Strings on a Disk Image Using The Sleuth Kit
While there are plenty of forensics GUI tools that can perform string searches, sometimes you may want or need to locate [...]
Top 3 Ways to Protect Yourself Following Spectre and Meltdown Revelations
Two wide-reaching, chip-level security vulnerabilities, dubbed Spectre and Meltdown, were made public this week. Spectre exploits a chip optimization technique called speculative [...]
Top 5 Ways IT Managers Can Thwart Hackers
These five tasks should give you some peace of mind that you are taking major steps to protect your network from [...]
Subnetting != Segmentation
Here at LMG Security, we do a lot of pentesting. I have performed penetration tests on organizations of all sizes, including [...]