Just a reminder, you can support infosec.exchange through liberapay: https://liberapay.com/Infosec.exchange/
Holy moly. Not sure what is up with @GloboHomos but that account is about to get zapped.
Defensive Security Podcast Episode 236
Well, it's happening. I've been asked to start presenting to my senior leadership and eventually my board on security concerns within my org. What metrics do you guys share? I have a list (AV stats, phishing stats, training stats, details on pen test results and resolutions, vulnerability assessment results, etc).
What do you share with your leadership when it comes to security? Also looking for recommendations on reading materials or talks on this. ;-)
Question to writers, especially long form (long poetry, books, graphic novels, etc):
What recommendations do you have for workflow and discipline?
I only have an hour and a half to spare each morning. It’s hard to get past that initial writer’s block. By the time I get going, it’s time to stop and I only have written 500 words.
I also only write once or twice a week.
Trying to get 2,000 words a day (within two hours). Trying to write every day.
Microsoft Releases Sysmon 10 With DNS Query Logging Feature
Microsoft has released Sysmon 10 today and with it comes the eagerly anticipated DNS Query Logging feature. This feature will allow Sysmon users to log DNS queries performed on a monitored computer, which will also include the executable that performed the query.
Microsoft Releases Sysmon 10 With DNS Query Logging Feature https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-sysmon-10-with-dns-query-logging-feature/
For those who are in and around Waterloo, Ontario (in Canada), we have our CFP live! Even if you're not, feel free to look, we're just not offering travel assistance in our first year.
Two tracks, one business and one technical. If you're interested in speaking, take a look:
Tickets will be available soon for those interested in coming without speaking.
When I was a child, I thought that the sun burning out was a critical problem my generation would need to solve.
Blog post: Attack and Defense Around PowerShell Event Logging - https://nsfocusglobal.com/Attack-and-Defense-Around-PowerShell-Event-Logging
Has anyone been to, is going to or has heard of https://www.infosecurityeurope.com ? I've been able to get a day off for it as looks like a lot of the talks might actually be useful, they also have a SANS CTF, though I may give it a miss. Not that confident!
Wow. It takes a lot to make me made, but after @oneway got reported, I'm going to just domain block oneway.masto.host.