1-10-60 Rule

Security No Comments

Dmitri Alperovitch, CTO at CrowdStrike, breaks down the 1-10-60 rule and why organizations should track and improve their incident response times with this benchmark in mind i.e.

Detect an incident in 1 minute

Investigate the incident in 10 minutes

Remediate or contain the incident in 60 minutes

1-10-60

How to Update Verizon FiOS Gateway Router DNS Settings to Cloudflare

Technology No Comments

To update your Verizon FiOS Gateway DNS settings, follow the steps below:

  1. Go to http://myfiosgateway.com
  2. Enter the admin password
  3. From the “Main” admin page, click on the My Network icon
  4. On the left menu, click on the Network Connections link
  5. Click the Broadband Connection (Ethernet/Coax) link
  6. At the bottom of the screen, click the Settings button
  7. In the DNS Server section, change the drop-down to Use the following DNS Server addresses
  8. The “Primary” and “Secondary” DNS Server address boxes are now visible
  9. Enter the correct addresses for Cloudflare DNS such as:

    Malware Blocking Only
    Primary DNS: 1.1.1.2
    Secondary DNS: 1.0.0.2

    Malware and Adult Content
    Primary DNS: 1.1.1.3
    Secondary DNS: 1.0.0.3

    For IPv6 use:

    Malware Blocking Only
    Primary DNS: 2606:4700:4700::1112
    Secondary DNS: 2606:4700:4700::1002

    Malware and Adult Content
    Primary DNS: 2606:4700:4700::1113
    Secondary DNS: 2606:4700:4700::1003

  10. Click the Apply button

Leadership

Quotes No Comments

The challenge of leadership is to be strong, but not rude; be kind, but not weak; be bold, but not bully; be thoughtful, but not lazy; be humble, but not timid; be proud, but not arrogant; have humor, but without folly.

Jim Rohn

Under the Hood of Password Managers

Security No Comments

Password managers allow the storage and retrieval of sensitive information from an encrypted database. Users rely on them to provide better security guarantees against trivial exfiltration than alternative ways of storing passwords, such as an unsecured flat text file. In this paper we propose security guarantees password managers should offer and examine the underlying workings of five popular password managers targeting the Windows 10 platform: 1Password 7 [1], 1Password 4 [1], Dashlane [2], KeePass [3], and LastPass [4]. We anticipated that password managers would employ basic security best practices, such as scrubbing secrets from memory when they are not in use and sanitization of memory once a password manager was logged out and placed into a locked state. However, we found that in all password managers we examined, trivial secrets extraction was possible from a locked password manager, including the master password in some cases, exposing up to 60 million users that use the password managers in this study to secrets retrieval from an assumed secure locked state.

Source: Password Managers: Under the Hood of Secrets Management

CIS Controls Self Assessment Tool

Security No Comments

The Center for Internet Security has launched the CIS Controls Self-Assessment Tool, or CIS CSAT, to enable organizations to track and prioritize their implementation of the CIS Controls. The tool includes features such as the ability to:

  • Delegate questions to other team members
  • Set deadlines for each CIS Control and sub-control
  • Collect documentation related to your findings
  • Capture team discussion about each assessment question

To start with the Self Assessment Tool, visit https://csat.cisecurity.org/

© 2021 Leonard Nelson. All Rights Reserved. The content on this site reflects my own personal opinion and does not represent the views of any other individual or organization. All suggestions, solutions, advice and opinions come as-is with no warranty or responsibility implied.

MENU

Navigation