Since 1999

Cybersecurity Category

Covering all aspects of security, threats, and best practices.


Account Protection Policies to Cover Business Assets

Utilizing two factor authentication, strong passphrases, password managers, and NIST standards; private company accounts can remain secure. Cover your assets!

Read More »


Restrict Who Can Push to Matching Branches on Github

On GitHub, you can enable branch restrictions allowing only certain users, teams, or apps to be able to push to a protected branch.

Read More »


New Interview on Drifting Ruby

Recent Drifting Ruby Episode #183 interview with Frank Rietta, Web Application Security Architect.

Read More »


Applying Agile and Security in Software Development Public Appearance at KSU

Frank will be presenting Applying Agile and Security in Software Development at the IS General Speaker Series #3 on 2/28/2018 at KSU in Marietta.

Read More »


Security Quick-Wins: Use DNS CAA records to avoid fraudulent certificates

Prevent certificate fraud and boost your TLS security in 5 minutes using this simple standardized DNS entry.

Read More »


Migrate Away from SSL/Early TLS for PCI Compliance

PCI compliance 3.1 and 3.2 no longer allow for SSL/Early TLS. Upgrade now to ensure your company remains compliant with the changes that start June 30, 2018.

Read More »


Lay off the marketing plugins. Equifax hit with fake Flash update.

Equifax caught distributing malware. Be careful what you allow to be included in your website to avoid these sorts of hacks.

Read More »


Automated Patching Will be New Reality

How fast can you update your production web application after an update is released? The answer better be within minutes. Automated testing and deployment is the only way.

Read More »


Automate Security Scans with Continuous Integration

Learn how to automatically run bundle-audit and brakeman in your CI suite with an example for TravisCI.

Read More »


Equifax Missed Defense in Depth, Allowing a Massive Data Breach

More than bad patch management, the weakness was Equifax's failure to design with the assumption that the front-end web server would be compromised.

Read More »