What we have for defending security attacks 1 Physical control methods 2 Technical control methods 3 Management methods Why Ransomware happened in highly secured IT environment 1 They are high-value targets, and they are will to pay ransom for their data/services 2 Lack of security awareness as usual 3 IT security system(Security appliance, Endpoint security, […]

The newer generation Ransomware happened again, and this time the victim is Garmin. Garmin’s full statement: “Garmin…today announced it was the victim of a cyberattack that encrypted some of our systems on July 23, 2020. As a result, many of our online services were interrupted including website functions, customer support, customer facing applications, and company

Simplifying coding Coding No unsafe library function callsNo unchecked access/write Fail-secure as default Limited resource consumptionSeparate Data plane and Control planeRobust module interfacesTimeout all failed connectionsInput validation Minimize platform dependentMinimize shared or global valuesMinimize threads locks or other race conditionsMinimize PrivilegesMinimize error handling messagesMinimize type castings of pointers, use void type pointers if necessary because the

Choose Linux that fit your business Choose Linux that you most comfortable with Most of GNU/Linux offer similar functions, but they can perform in the different ways Development service platform Ubuntu/Debian/OpenSUSEFor development or testing platform, Ubuntu is the most reliable choice because it is the most user-friendly GNU/Linux comparing to the others. Ubuntu has a

Facts: Original GNU/Linux Distributions is NOT as secure as it seems. Baseline security Use single GNU/Linux distribution as baseline system if possible. Before you begin to harden GNU/Linux hosts, make sure all your Linux OS are up to date. Setup a strong password policy, password complexity, password change rules, make sure different systems use different