PinnedMark MaguireinSystem WeaknessSecurely using the JDBC connector with SQLBest practices for writing a clean, custom interface, that mitigates against SQL Injection and other vulnerabilities.Oct 1, 2022Oct 1, 2022
PinnedMark MaguireLog4sHell: Impact and Remediation StepsSince the Log4j vulnerability (CVE-2021–44228)was disclosed to the public on Dec 9, 2021, the cyber community has been scrambling. We were…Dec 15, 2021Dec 15, 2021
PinnedMark MaguireWhat is the difference in Single Sign-On (SSO) and Pass Through Authentication (PTA)?Googled this question and had no luck, so ChatGPT and I wrote our own…Feb 17, 20231Feb 17, 20231
Mark MaguireTuesday Morning Threat Report: June 18, 2024165 Snowflake customers accounts are breached and a Microsoft whistleblower alleges the SolarWinds hack could have been prevented4d ago4d ago
Mark MaguireinSystem WeaknessTuesday Morning Threat Report: June 11, 2024Data on every U.S. Citizen and Canadian may leak, the NYT faces a breach, and Microsoft deals with public outcry over RecallJun 11Jun 11
Mark MaguireinSystem WeaknessTuesday Morning Threat Report: June 4, 2024The world’s biggest botnet goes down, cops turn to trolling hackers, and 560M+ accounts are impacted by a TicketMaster data breachJun 4Jun 4
Mark MaguireinCodeXTuesday Morning Threat Report: May 28, 2024Courthouse software has a backdoor, India’s government suffers a data breach, and Google takes aim at MicrosoftMay 27May 27
Mark MaguireTuesday Morning Threat Report: May 21, 2024Proton Mail gives client data to police, the FBI seizes BreachForums (again), and a security flaw is found in Wi-FiMay 21May 21
Mark MaguireTuesday Morning Threat Report: May 14, 2024Ascension Healthcare struggles with a hack, McAfee launches a deepfake detector, and China may have hacked the U.K.’s Ministry of DefenseMay 14May 14
Mark MaguireinCodeXTuesday Morning Threat Report: May 7, 2024Dropbox has a breach, Microsoft reorganizes around security, and GPS attacks spikeMay 7May 7