Security Stack Sheet #108

 

Word of the Week

Cyber month October 2020 – “ThinkB4Uclick”

Links HERE and HERE and HERE and HERE and HERE

 

Word of the Week Special

“Is passwordless authentication actually the future?”

passwordless authentication

While going passwordless can provide a more secure authentication method, there are challenges in the deployment of a passwordless model.

No alternative text description for this image

Respondents report the initial financial investment required to migrate to such solutions (43 percent), the regulations around the storage of the data required (41 percent) and the initial time required to migrate to new types of methods (40 percent) as the biggest challenges for their organization to overcome.

No alternative text description for this image

There are also some concerns around resistance to change. Three quarters of IT and security professionals (72 percent) think that end users in their organization would prefer to continue using passwords, as it is what they are used to

Link HERE 

 

Bonus

Graphical user interface, application  Description automatically generated

Link HERE

text over a background picture of a dog

Link HERE

Text  Description automatically generated

Link HERE

A reptile with its screen on  Description automatically generated

Link HERE

A picture containing graphical user interface  Description automatically generated

Link HERE

A picture containing diagram  Description automatically generated

Link HERE

Graphical user interface, application  Description automatically generated

Link HERE

Text  Description automatically generated

Link HERE

Text  Description automatically generated

Link HERE

 

Crypto challenge of the week

A picture containing text  Description automatically generated

Link HERE

 

Dates

  • May 25th 2018: Over 2 years of GDPR Live! See incidents section below GDPR Enforce Tracker Link HERE – thanks to Marius

List of data breaches and cyber attacks in September 2020 – 267 million records breached

Link HERE

  • 1st January 2020 – The California Consumer Privacy Act (CCPA) becomes effective Link HERE
  • Now: TLS1.2 mandatory for proper security HTTPS everywhere HERE
  • DO NOT DELAY TLS1.2 migration LATER THAN JUNE 2020 or A FEW THINGS WILL STOP WORKING! [Browsers, Office365, Cisco and many others]
  • January 2020 – Qualys SSLLabs will rate your TLS1.0 setup as B – Qualys will de-grade you HERE
  • June 2020 – Microsoft plans to deprecate TLS versions 1.0 and 1.1 in Office 365 and Office 365 GCC – HERE
  • 31st of December 2020 – Brexit (properly) Finalised?
  • 1st of July 20201 – Freedom from viruses?
  • November 3rd 2020: Trump’s second term start

Project Veritas #BallotHarvesting Amplification

Chart, line chart  Description automatically generated

Link HERE

Graphical user interface, text  Description automatically generated

Link HERE

Putin is proposing a new cyber security collaboration with the United States, including a no-hack pact for the upcoming Presidential election

Link HERE

  • 2022 – First trip to Mars according to Elon Musk
  • 2023 – 3DES is deprecated for all new applications and usage is disallowed after 2023 HERE
  • 2024 – Back to the Moon according to Trump and NASA
  • December 31st, 2020 Flash End-of-Life
  • US Government Websites Will be Accessible Through HTTPS Only, After September 1

 

Book of the month

Link HERE

 

Comic of the week

Golden Age For Wally - Dilbert by Scott Adams

 

##Some OWASP stuff first











Leave a Reply

Your email address will not be published. Required fields are marked *