Security Stack Sheet #105

 

Word of the Week

Event driven cloud architecture”

Is cloud security too easy to screw up?

A screenshot of a cell phone  Description automatically generated

Cloud-Unique Threats and Risks

  • Reduced Visibility and Control from customers
  • Separation Among Multiple Tenants Fails
  • Data Deletion is Incomplete

A screenshot of a cell phone  Description automatically generated

Link HERE and

Is the Architecture Practice dead?

A picture containing device  Description automatically generated

Link HERE

and cloud security risks in 2020 HERE and cloud security report 2020 HERE

 

Word of the Week Special

“Resilience”

This year’s theme of the National Insider Threat Awareness Month

Image

Links HERE and HERE and resources HERE and fact sheet HERE and September event HERE

 

Bonus

a close up of text on a white background

And

A picture containing drawing  Description automatically generated

Image

Rule based vs complex

A close up of text on a white background  Description automatically generated

Link HERE

A picture containing drawing, flower  Description automatically generated

Link HERE

Covid-19 Relief Scam

A picture containing computer, cellphone  Description automatically generated

Link HERE

Remember: Learn Kubernetes

Link HERE

A screenshot of a cell phone  Description automatically generated

Link HERE

 

Crypto challenge of the week

Google CTF 2020 – All the little things

Link HERE and solution HERE

 

Dates

  • May 25th 2018: Over 2 years of GDPR Live! See incidents section below GDPR Enforce Tracker Link HERE – thanks to Marius
  • 1st January 2020 – The California Consumer Privacy Act (CCPA) becomes effective Link HERE
  • Now: TLS1.2 mandatory for proper security HTTPS everywhere HERE
  • DO NOT DELAY TLS1.2 migration LATER THAN JUNE 2020 or A FEW THINGS WILL STOP WORKING! [Browsers, Office365, Cisco and many others]
  • January 2020 – Qualys SSLLabs will rate your TLS1.0 setup as B – Qualys will de-grade you HERE
  • June 2020 – Microsoft plans to deprecate TLS versions 1.0 and 1.1 in Office 365 and Office 365 GCC – HERE
  • 31st of December 2020 – Brexit Finalised?
  • 1st of July 20201 – Freedom from viruses?
  • November 3rd 2020: Trump’s second term start

Facebook Braces Itself for Trump to Cast Doubt on Election Results

The world’s biggest social network is working out what steps to take should President Trump use its platform to dispute the vote

Link HERE

  • 2022 – First trip to Mars according to Elon Musk
  • 2023 – 3DES is deprecated for all new applications and usage is disallowed after 2023 HERE
  • 2024 – Back to the Moon according to Trump and NASA
  • December 31st, 2020 Flash End-of-Life
  • US Government Websites Will be Accessible Through HTTPS Only, After September 1

 

Book of the month

Remember: Dark Mirror

Dark Mirror – Barton Gellman

Link for review HERE and lockdown interviews HERE and HERE

 

Comic of the week

No More Id Badges    - Dilbert by Scott Adams

 

##Some OWASP stuff first
















Leave a Reply

Your email address will not be published. Required fields are marked *