Incident Response, TDR

Phishing for the “wildcard”

Kevin Bocek, vice president of security strategy and threat intelligence at Venafi, speaks with reporter Danielle Walker on social engineering ruses targeting wildcard certificates.

While the public key certificates help ease system administrators' workloads, the authentication measure could also allow for widespread exploitation if accessed by those with malicious intent. Here, Kevin draws from previous breaches where such phishing tactics were used, to advice organizations on how not to fall victim to attacks.

Related

Privacy
Morgan Stanley settles data breach for $6.5M

SecurityWeek reports that Morgan Stanley has been imposed a $6.5 million fine for its failure to properly remove unencrypted data from decommissioned devices that may have exposed millions of customers' sensitive information.

Related Events

  • eSummit
    Incident response: The keys to speed

  • Cybercast
    Incident Response: Lessons from the front lines of Fortune 500 cyber attacks

    On-Demand Event

  • Cybercast
    Real-world Insights from a Sophos Threat Analyst: It’s Great You Have a Firewall, But Here’s Why You Shouldn’t Skip Over MDR

    On-Demand Event

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.