Malware

On this post I want to share some work I did on my company related with this topic and with collaboration with ESET.


 





















Comentarios

Publicar un comentario

Entradas más populares de este blog

Encrypt your Drive using SanDisk SecureAccess 3.0

Imagen
As I prefere to use services for all kind of users I decided to buy a comercial USB Drive on Walmart and use the brand software for encryption. It was very easy to install and use because the user interface, it ask me for a "secure" password +8digit, special character, lower and upper case, numbers. After the encryption my drive has and special "folder" when I can store files and access them by the interface. It has the application portable so I can access them on any Windows/MacOS device.
Leer más

Ethical issues security professionals

Physicians, attorneys and other professionals whose job duties affect others' lives usually receive, as part of their formal training, courses that address ethical issues common to their professions. IT security personnel often have access to confidential data and knowledge about individuals' and companies' networks and systems that give them a great deal of power. That power can be abused, either deliberately or inadvertently. But there are no standardized training requirements for hanging out your shingle as an IT security consultant or in-house security specialist. Associations and organizations for IT pros are beginning to address the ethical side of the job, but again, there is no requirement for IT security personnel to belong to those organizations. Why are ethical guidelines needed? The education and training of IT professionals, including security specialists, usually focuses on technical knowledge and skills. You learn how to perform tasks, but with little ...
Leer más

Best Practices for DDoS

I found this  doc ument from Google that explains the best practices to this cases. GCP load balancing solution has DDoS mitigations built-in lowering the attack surface: configure ingress firewall rules (like iptables) network load balancing has port filtering. Any port that is not loadbalanced is dropped by GCP highly scaling frontend infrastructure HTTP/HTTPS loadbalancing can absorb and protect from IP spoofing and large SYN flood attacks. it has also fair-share allocation built-in  And Google Cloud Platform provides a number of features to defend against DDoS attacks. You can use these in conjunction with the above mentioned best practices and other measures tailored to your requirements to make your GCP deployment resilient to DDoS attacks. 
Leer más