Like I’ve written in my previous blog a healthy dose of suspicion can help to make better security decisions.

Whenever I doubt about the security of a particular URL I use online scanning tools like VirusTotal or urlscan.io. Whilst this is absolutely a good practice, it is certainly not totally risk-free.

Most of these tools show a number of recent scan results.

Image for post
Image for post
urlscan.io showing the 10 most recent scans

Or even offer search functionality

Image for post
Image for post
urlscan.io search


Today it’s world backup day. An ideal moment to reflect on your backup strategy and potentially further improve it. In this short write-up I’ll give some tips to help you.

Have at least 2 geographically spread backups

First of all it should be clear that you need to backup your data. But as an “IT guy” I regularly get people on the phone in total panic. Their (external) hard drive crashed and they have no backups. Best case, the files can be (partially) recovered, but such living on the edge is a real bad idea.

Is 1 backup enough? Actually not, it’s still risky business. If you are in the situation that you need to restore a backup and this backup is corrupted it’s game over. Also in case of a hurricane or your house burning down you still should have a backup available somewhere. That’s why you need at least 2 backups at a geographically different location. …


If you’re not yet monitoring your data breach exposure, I really recommend you start doing it now. If you’re already doing it, I hope this post is still useful as I’ll share some tools and best practices with you.

Why?

When your credentials of an account are compromised, the first thing you need to do is change your password. And hopefully only for that particular account. You know that password reuse is BAD, right?

But how do you know if they got breached in the first place? Best case scenario is the hacked company is aware of the data breach and informs the impacted users. But there are a lot of cases where the data is already circulating on the internet and the company doesn’t even know (or reported) they suffered a breach. …

About

john opdenakker

Twitter: @j_opdenakker

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store