Backup: There is no substitute for good planning
While reading a Heise article on the subject of backup, it occurred to me that there are a few things to note. This first part shows how I backup files and what is important to me.
Security
SATAnical flames in the PC
If there’s a funny smell when you backup and move data to the server and it’s smoky throughout the house, it’s worth checking the SATA power supply.
Zero Trust Again
Zero Trust is still a hype subject. Despite all the announcements, however, it is advisable to remain skeptical and not hope for a canned miracle cure.
2022 Cortex Xpanse Attack Surface Threat Report
In this report, security experts from Palo Alto Networks provide a summary of their observations on vulnerabilities and threats. I thought some of these findings were worth mentioning.
Verifone H5000
The card payment failures with the Verifone H5000 are quite astonishing. If it is really due to a missing update, then things must have gone wrong.
MFA: More Fun in Authentication or Most Faulty Authentication?
After coming across two very different blog posts on MFA in a short period of time and finding them contradictory at first glance, I looked into the subject a bit more. Daniel Miessler’s blog has an overview of various MFA methods, as an extension of a post on the Consumer Authentication Strength Maturity Model (CASMM). … Read more
Information Security in 2050
Daniel Miessler has some interesting thoughts on information security in the future.
Census II of Free and Open Source Software – Application Libraries
The critical dependencies on and within open source projects continue to have an impact on the IT security of software. Especially transitive dependencies have a negative impact and are nevertheless often ignored.
Moving the U.S. Government Toward Zero Trust Cybersecurity Principles
The White House has issued guidance on the use of Zero Trust for U.S. agencies.