Recent Posts

Author: Sisyphus

/*! elementor - v3.6.7 - 03-07-2022 */ .elementor-heading-title{padding:0;margin:0;line-height:1}.elementor-widget-heading .elementor-heading-title[class*=elementor-size-]>a{color:inherit;font-size:inherit;line-height:inherit}.elementor-widget-heading .elementor-heading-title.elementor-size-small{font-size:15px}.elementor-widget-heading .elementor-heading-title.elementor-size-medium{font-size:19px}.elementor-widget-heading .elementor-heading-title.elementor-size-large{font-size:29px}.elementor-widget-heading .elementor-heading-title.elementor-size-xl{font-size:39px}.elementor-widget-heading .elementor-heading-title.elementor-size-xxl{font-size:59px} Salesforce Phishing Awareness Being in the spotlight does not get the attention of just the right audience but the wrong ones too. When it comes to CRM, Salesforce, the company, has quite literally taken the place of the actual definition of Sales Force. Googling for Sales Force, employees of a company responsible for selling...

Read More

PREVENT PHISHING BY AWARENESS Based on a survey conducted in 2021, Salesforce dominated the CRM market with a whopping market share of 24%, which is greater than the market share of its next 4 competitors combined. In the following 2 years the revenue of Salesforce has on an average grown by 25% Y-O-Y; safe to say that they have retained market dominance. The platform boasts of...

Read More

Summer of Sanity Passphrases Episode 3 A major problem faced by many organizations is not taking information security seriously by the the top management. Unlike the rest of the functions of a business, Information or Cyber Security does not directly contribute to the top or bottom line of a business.  However, they are vitally important in protecting your business from the threats that can not only affect your...

Read More

Lastpass, the password manager application, had reported that it found a security breach back in August. The perpetrator had supposedly stayed in the network for only 4 days and had access only to the development environment and not to the customer data or the password vaults. The threat actor had gained access to the development environment through one of the developer's endpoint by impersonating as...

Read More

Summer of Sanity Passphrases Episode 2 The biggest downside of passwords is that it is a shared secret - shared between the user and the validator. Unfortunately, passphrases also share the same disadvantage, though they fare way better in so many other ways.   Systems designed to use passwords or passphrases can be made to not store the passwords in readable form or even make it inaccessible to users...

Read More

Mr. Pieter Zatko's, former Head of Security at Twitter, hearing with the Senate Judiciary Committee has worsened Twitter's chance of making a strong case in its favor against the ongoing battle with Mr.Musk. Furthering to the allegations of lax security practices at Twitter, Mr. Zatko went on to highlight that the company had a Chinese agent working for the Ministry of State Security on its...

Read More

Attack Methodology Phishing Email You receive a phishing email with a malicious file Stage 1 Microsoft Office File The attachment is a Microsoft Office file with a malicious macro. Upon opening the file and allowing the macro to run, the next step is triggered Stage 2 James Webb Image File The macro downloads the image file that contains the encoded code that gets converted to binary and...

Read More

Summer of Sanity Passphrases Episode 1 Passphrases are a great evolutionary step from passwords. They can be extremely complicated, yet easy to remember and convenient to use. They are super hard for a hacker to crack/snoop since the hacker cannot brute force, use dictionary words, peep while you type on the keyboard or even use a keylogger (techically possible, but makes it harder). But then passphrases are yet...

Read More

Mr. Peter Zatko, ex-Security Head of Twitter, has filed a complaint with the Securities and Excange Commission with help from www.whistlebloweraid.org alleging that Twitter has been lax with its security and privacy processess. He has specifically highlighted the issue of Twitter misrepresenting the number of monetizable users that indicates the number of bots and amount of spam thats prevelant on the network. Mr. Zatko is a...

Read More