Since 1999

Cybersecurity Category

Covering all aspects of security, threats, and best practices.

10/28/2019

Patch Production Faster with Security-oriented Agile Development Practices

by Frank Rietta

Companies take too long to patch production leaving plenty of time for threats to attack! Here's how to fix it with security-oriented Agile practices.

Read More ยป

08/22/2019

The Case for 2FA, Post Rest-client Gem CVE

by Christopher Choi

On 08/19/2019, a CVE was discovered on a popular Ruby gem called Rest-client. Although caught quickly, this could raise the case of 2FA being a requirement for Package Manager accounts like Rubygems and NPM.

Read More ยป

05/30/2019

Account Protection Policies to Cover Business Assets

by Frank Rietta

Utilizing two factor authentication, strong passphrases, password managers, and NIST standards; private company accounts can remain secure. Cover your assets!

Read More ยป

05/09/2019

Restrict Who Can Push to Matching Branches on Github

by Frank Rietta

On GitHub, you can enable branch restrictions allowing only certain users, teams, or apps to be able to push to a protected branch.

Read More ยป

04/18/2019

New Interview on Drifting Ruby

by Lore Hamilton

Recent Drifting Ruby Episode #183 interview with Frank Rietta, Web Application Security Architect.

Read More ยป

02/08/2019

Applying Agile and Security in Software Development Public Appearance at KSU

by Frank Rietta

Frank will be presenting Applying Agile and Security in Software Development at the IS General Speaker Series #3 on 2/28/2018 at KSU in Marietta.

Read More ยป

07/24/2018

Security Quick-Wins: Use DNS CAA records to avoid fraudulent certificates

by Brandon Dees

Prevent certificate fraud and boost your TLS security in 5 minutes using this simple standardized DNS entry.

Read More ยป

06/30/2018

Migrate Away from SSL/Early TLS for PCI Compliance

by Brandon Dees

PCI compliance 3.1 and 3.2 no longer allow for SSL/Early TLS. Upgrade now to ensure your company remains compliant with the changes that start June 30, 2018.

Read More ยป

10/12/2017

Lay off the marketing plugins. Equifax hit with fake Flash update.

by Frank Rietta

Equifax caught distributing malware. Be careful what you allow to be included in your website to avoid these sorts of hacks.

Read More ยป

10/11/2017

Automated Patching Will be New Reality

by Frank Rietta

How fast can you update your production web application after an update is released? The answer better be within minutes. Automated testing and deployment is the only way.

Read More ยป