Log4Shell Logo
14th December 2021
I have been surprised how the Log4Shell vulnerability has not made it in the mainstream press more. This is one of the most serious vulnerabilities I have seen in my career. When I talk to my non-tech friends and family members, they haven’t heard of Log4Shell or Log4j. One of the successes of the Heartbleed…
-- READ MORE
What Your MSP Doesn’t Know, Can Hurt You
18th November 2021
Last month, I flew down to Florida with my parents, brother, and our respective wives, to attend my cousin’s wedding. The trip down was uneventful and the wedding was terrific. But as the weekend was coming to a close, it occurred to me that I had not come up with any good stories for my…
-- READ MORE
Don’t Mess with your DNS!
21st October 2021
Plumbing is great when it works happily in the background. When it doesn’t, you better have someone like Kumar on speed dial. The same can be said for DNS (Domain Name System), the directory that tells Internet infrastructure how to route traffic.
-- READ MORE
Plan now for a cyber attack… on your vendors!
15th September 2021
Were it an actual word (it isn’t), I would be known as an “audiobookaphile.” That is, someone who is enthusiastic about audiobooks. I listen to them a lot. I listen while driving, while shaving, while grocery shopping, and while doing things around the house. I even listen to them when my wife is adding things…
-- READ MORE
Cyber insurance: why are so many companies suddenly uninsurable?
19th August 2021
Thankfully, football season is upon us! And I make no secret about being a long-time and unwavering New England Patriots fan. Even though Tom Brady has moved on, I remain as dedicated as ever to the massive men in red, white, and blue. Like most New Englanders, my interest in the Patriots began when I…
-- READ MORE
Allowlist and blocklist are better terms for everyone, let’s use them.
21st July 2021
Goodbye whitelist and blacklist, hello allowlist and blocklist! The problem with whitelist and blacklist. Whitelist and blacklist are a pair of very important tools and terms for cybersecurity. So it’s kind of a bummer that they’re bad. Why? Mostly because the terms aren’t nearly as clear as they could be. Whitelists and blacklists control who…
-- READ MORE
All Businesses Need DDoS Protection
1st July 2021
“I think someone is trying to put me out of business.” I recently received this message from a small business owner providing a cloud service. During their peak hours, someone was launching a DDoS attack against their servers, bringing their service to a halt. With the business’s customers experiencing service interruptions, they were thinking about…
-- READ MORE