Lucene search
K
CoalfireMost viewed

603 matches found

The Coalfire Blog
The Coalfire Blog
added 2019/02/04 9:17 p.m.55 views

Compensating Controls: When Patching Isn’t an Option

Your software vendor is asleep at the wheel and your devs still need that legacy daemon...

1.8AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2018/07/17 4:46 p.m.55 views

Humans Are the Weakest Link in Security

In our recent analysis of penetration testing engagements contained in our Penetration Risk Report, we discuss the impact that social engineering, specifically phishing, has on the ability to allow attackers insider access to compromise an organization...

4.7AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2019/10/03 10:19 p.m.54 views

What Is the DoD’s New Cybersecurity Maturity Model Certification, and What Does It Mean for Defense Contractors?

Citing the threat of compromise of Controlled Unclassified Information CUI within the defense industrial base DIB, along with the high cost of cyber breaches in general, the Office of the Assistant Secretary of Defense for Acquisition has initiated a program for rating the cybersecurity maturity ...

2.6AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2019/04/09 10:39 p.m.54 views

The death metal suite

Intel Active Management Technology AMT is a feature provided by Intel for remote administration. If you happen to have a corporate laptop, odds are you too have AMT built into your system. To a sysadmin, AMT eases access to machines for the sake of assisting employees with technical issues, even ...

6.9AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2018/06/26 8:8 p.m.54 views

Executing Meterpreter on Windows 10 and Bypassing Antivirus

One of my Labs colleagues recently published an article on the Coalfire Blog about executing an obfuscated PowerShell payload using Invoke-CradleCrafter. This was very useful, as Windows Defender has upped its game lately and is now blocking Metasploits Web Delivery module. I wanted to demonstrat...

2AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2019/02/19 7:46 p.m.53 views

Encryption of Federal Data

One of the biggest challenges our customers face when pursuing Federal Risk and Authorization Management Program FedRAMP compliance is the federal mandate that Federal Information Processing Standards FIPS 140-2 validated cryptographic modules must be consistently applied where cryptography is...

2.9AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2018/11/26 11:5 p.m.53 views

The Effect of NIST 800-171A on Government Contractors

NIST 800-171A introduces a standardized opportunity to perform a more structured and granular level of assessment leveraging the National Institute of Standards and Technology NIST Special Publication SP 800-171 framework...

3AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2018/09/25 8:31 p.m.53 views

The Unhealthy Security of Healthcare

I have been involved in a number of healthcare penetration tests here at Coalfire and in my previous roles. I have hacked electronic medical records, medical devices, and most importantly, humans. From my time as a systems engineer at a medical device and systems vendor to my current role at...

1.3AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2018/10/22 5:41 p.m.52 views

Automating Incident Prevention and Response in AWS

Information security incidents can result in reputational damage, financial losses, or a loss of system functionality for organizations at any time. Because threats and attack vectors are growing rapidly, organizations must prepare to respond to incidents in real time. The incident response IR...

3.1AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2021/06/30 7:39 p.m.50 views

What is FedRAMP+?

The Department of Defense DoD Cloud Computing CC Security Requirements Guide SRG Version 1, Release 3 defines FedRAMP Plus FedRAMP+ as: "… the concept of leveraging the work done as part of the FedRAMP assessment and adding specific security controls and requirements necessary to meet and assure...

1.7AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2021/01/13 6:57 p.m.50 views

Latest round of OCR audits highlight HIPAA risk analysis and risk management shortcomings

The Office for Civil Rights OCR at the U.S. Department of Health and Human Services HHS has released its latest report with findings from their 2016 and 2017 series of audits as required under the Health Insurance Portability and Accountability Act of 1996 HIPAA/HITECH Privacy, Security, and Brea...

0.7AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2015/04/28 8:19 a.m.50 views

Would Coalfire Clients benefit from membership with the PCAOB?

Coalfire Controls, LLC Coalfire is a registered Certified Public Accounting CPA firm registered with the American Institute of Certified Public Accountants AICPA and the Colorado State Board of Accountancy, as required to issue Service Organization Control SOC attestation reports in accordance wi...

1.3AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2021/01/26 3:27 a.m.49 views

New cybersecurity legislation to amend the Health Information Technology for Economic and Clinical Health (HITECH) Act – an analysis of H.R. 7898

New legislation was passed by Congress and signed by the president on January 5, 2021 that amends the HITECH Act with an additional section titled: SEC. 13412. RECOGNITION OF SECURITY PRACTICES.1...

2AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/03/19 9:44 p.m.49 views

Aligning Enterprise Cyber Risk and Business Strategy

Most business leaders have a contextual awareness of cyber risk and the threats facing their organizations. However, this contextual awareness rarely contributes to a clear, consolidated directive that can be applied across the organizations. Further, many organizations struggle to align their...

1.8AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/02/21 6:44 p.m.48 views

The Significance of the NIST Privacy Framework

Kudos to the NIST Privacy Team! Privacy Framework v.1.0 has finally been released. Ive been tracking the growth of this initiative since the focus group was kicked off in September 2018 and respect its thoroughly explored yet fundamentally grass roots approach. A few points worth bringing to your...

2.3AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2018/08/09 6:57 p.m.48 views

Google Cloud NEXT '18: A Growing Event with Much to Offer

If you want to learn whats up and coming for Google Cloud and make some great connections, Google Cloud NEXT is an informative, lively event to prioritize on your conference calendar. Coalfire attended the recent Google Cloud NEXT 18 conference in San Francisco July 24-27 and found it to be a goo...

0.7AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2018/07/11 6:27 p.m.48 views

Expanded Privacy Protections Granted to California Residents: The California Consumer Protection Act

In late June, California passed a new consumer privacy law--the California Consumer Privacy Act CCPA. This statute provides protections to California residents; but it will also have wide-ranging effects outside of California as it will apply to organizations that conduct business in California...

3AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/04/09 1:12 a.m.47 views

The cloud is beige - The demise of black box testing

Black-box penetration testing is dead. Id question why it is even a consideration. Its of limited and dubious value in almost any context. Wait, wait… I didnt mean that. Put down the pitchforks and torches, development and QA teams, Im only talking about black-box penetration testing. Yes,...

7.1AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2018/07/13 4:13 p.m.47 views

Transitioning to the New SOC 2 Criteria – What You Need to Know

SOC 2 has seen quite a few changes in the past year in how reports must be presented in the future. The American Institute of Certified Public Accountants AICPA replaced the old SSAE 16 standard with SSAE 18, released the 2017 Trust Services Criteria, the new Description Criteria DC-200, and a ne...

0.6AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2021/07/26 11:24 p.m.46 views

Thinking about data privacy strategically: four key questions

It wasnt that long ago when the concept of data privacy was mostly a legal question. Privacy obligations arose almost exclusively from regulations, so most organizations delegated the problem to legal counsel, who then tackled the problem through policy and contract language. At best, it was a co...

2.6AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2019/05/02 8:58 p.m.46 views

Is Cloud Computing Really New? And Other Insights on the Changing Face of Cloud

What is cloud computing, and why is its increased use getting so much attention? In my view, cloud computing is just the latest iteration of what started back in the days of the IBM service bureaus of the 1960s and 70s. Back then, only a handful of organizations had the resources to own and opera...

1.8AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2018/11/26 5:13 p.m.45 views

HIPAA Complaints, OCR Investigations, and Security Risk Analysis for Healthcare Delivery Organizations – A Common Thread

Many HIPAA covered entities CEs and business associates BAs may not be meeting the regulatory mandate as defined in §164.308a1iiA of the HIPAA Security Rule. This implementation specification requires that healthcare delivery organizations HDOs "Conduct an accurate and thorough assessment of the...

2.5AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/08/05 11:22 p.m.44 views

P2PE v3.0 – Why organizations should prepare now

The Payment Card Industry Security Standards Council PCI SSC published version 3.0 of the Point-To-Point Encryption P2PE standard back in December 2019. The new version simplifies and adds flexibility to the process for component and solution providers to validate their P2PE products for cardhold...

2.8AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2021/04/19 4:43 p.m.43 views

Avoid oversights in HIPAA risk management

Since HIPAA regulations first came about in 1996, organizations have looked for ways to analyze and manage risk within this complex framework. Although guided by the HIPAA Security Rule as well as additional guidance from the U.S. Department of Health and Human Services HHS and Office for Civil...

1.5AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/09/18 1:7 a.m.43 views

The Basics of Exploit Development 5: x86-64 Buffer Overflows

In this article we will be covering a technique similar to the one in the first installment of this series, however, with the twist in that this exploit will be of a 64-bit process running on Windows 10. Due to the nature of modern operating systems and the exploit mitigation techniques they...

1.5AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2019/04/04 6:36 p.m.43 views

Tax time again: IT security for accounting firms

As the end of another busy tax season approaches, it is important for accounting firms to remember their obligations related to data security. Accounting firms maintain a significant amount of data on behalf of their own employees and clients. These firms house financial records, tax information,...

6.9AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2023/10/05 9:33 p.m.42 views

Breaking down barriers: Redefining the FedRAMP® journey for cloud service providers

Since the passing of the FedRAMP Authorization Act last December, inquiries about navigating FedRAMP's complex landscape have surged. Recognizing this, Coalfire is pioneering a new pathway to streamline the FedRAMP authorization process, making it more accessible for cloud service providers...

7AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2021/06/24 5:37 p.m.42 views

Long-awaited changes to the nation's cybersecurity infrastructure become reality

There is a lot of buzz in the biz about the ripple effects of President Bidens "Executive Order EO on Improving the Nations Cybersecurity," which comes on the heels of the Colonial Pipeline hack. The pipeline, which delivers about 45% of the fuel used on the Eastern Seaboard, was shut down after ...

3.5AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/04/21 8:38 p.m.42 views

Updated: COVID-19 incites crimes of opportunity

On April 21, 2020, Mike Weber, vice president of innovation, updated his blog covering some of the top scams cybercriminals are unleashing on businesses as well as identifying the newest targets for those crimes. In the current panicked state of the economy, understanding the attack vectors is th...

7AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2021/06/23 7:7 p.m.41 views

Third party risk management and the cloud

Risk is inevitable with third party vendors that have access to your company and client data. With expanding attack surfaces, dispersed supply chains, and IoT issues on the rise, TPRM third party risk management is becoming a more mission-critical security practice in the cloud. Lets look at...

2.6AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2021/09/02 9:17 p.m.40 views

DoD Cloud Computing Impact Level 6 – the unclassified edition

The final Impact Level IL referenced in the Department of Defense DoD Cloud Computing CC Security Requirements Guide SRG is IL6. IL6 allows Cloud Service Providers CSPs to store information up to SECRET or below. CSPs can utilize their own infrastructure or deploy their cloud service offering CSO...

0.9AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/11/13 11:21 p.m.40 views

Cloud tech first floor recommendations

I hate to say it, but Im an old, curmudgeonly guy thats been in the industry more than 20 years. And after a while, things just start to wear on you. In fact, there was a point in my career that I swore if I had to counsel just one more company on the importance of having strong passwords and...

0.8AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/08/17 9:53 p.m.40 views

Chasing doorbells: Finding IoT vulnerabilities in embedded devices

The goal of this research project was to see if we could find any vulnerabilities and obtain full persistence on an IoT device, while learning about embedded devices in general. This post will take you through our journey to find vulnerabilities in a common, reasonably priced IoT device. For our...

2.7AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2018/10/18 5:15 p.m.40 views

Coalfire Teams with Healthcare and Public Health Sector Coordinating Council (HSCC) for Fall Summit

The Department of Homeland Security DHS charged the Healthcare and Public Health Sector Coordinating Council HSCC with serving as a partnership between the private and public healthcare sectors. To that end, two unique councils were formed: The Healthcare and Public Health Government Coordinating...

1.4AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2021/04/01 4:13 p.m.38 views

Closing the technical gap with resiliency pen testing

Organizations across all industries are watching and weighing the real impact and cost of security breaches as they look to budget security spending for 2021. While remote operations are becoming the norm, threat actors have no intention of slowing down their efforts. Instead, they are taking ful...

0.7AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/10/01 5:11 p.m.38 views

PCI DSS version 4.0 – what we know so far

From September 23 - November 13, 2020, stakeholders can participate in the Request for Comments RFC on the draft of PCI Data Security Standard DSS version 4.0. This is the second RFC for the PCI DSS v4.0 draft--the first RFC was in late 2019 and that feedback was incorporated into the draft...

4AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2021/08/24 4:9 p.m.37 views

Crypto vulnerability management

In this blog series, weve discussed in detail how crypto assets and currencies are no longer passing fads. Even if your C-suite remains skeptical, security leaders and teams cant afford to keep watching, waiting, and speculating about whats going to happen or when your organization will be direct...

0.6AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2021/04/14 2:22 p.m.37 views

Coalfire ramps up for StateRAMP — What you need to know…

There has been a lot of buzz during the past year or so about StateRAMP SR. SR was an idea born out of helping state and local governments efficiently and effectively verify cybersecurity and manage third-party risk. SR is a 501-c6 non-profit, membership-based organization based in Indiana and...

3.4AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2021/06/28 7:18 p.m.36 views

Data privacy: What's new in cross-border transfers? The Standard Contractual Clauses

The transfer of personal data between companies and countries is vital for smooth data processing operations. When transferring data out of the European Union, companies are required to comply with the General Data Protection Regulation GDPR which requires that any data that is transferred to a...

4.3AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2021/06/17 4:49 p.m.35 views

The road to secure crypto: start getting risk management priorities on your threat modeling radar

While attending the biggest event in crypto history earlier this month in Miami, it struck me that, although irrational over-exuberance was the mood, the reality is really sinking in: We are in a new payments industry paradigm shift. Its not a fad anymore, and its not going away. An exclamation t...

1.7AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/04/09 8:52 p.m.35 views

Establishing remote data center assessment standards

For the foreseeable future, the COVID-19 crisis has changed the very nature of on-site cybersecurity compliance assessments and testing. Leading the way, the Payment Card Industry Security Standards Council PCI SSC quickly recognized that its requirements for physical, on-site data center...

7AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/04/02 4:4 p.m.35 views

Security considerations for the social distancing era?

COVID-19 is changing the way nearly all of us work and, for some specialist security operations, this is a real challenge. For others, its an excellent opportunity to add value to the business for when the economy starts to recover...

6.9AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/03/13 6:34 p.m.35 views

The Basics of Exploit Development 2: SEH Overflows

In this article we will be writing an exploit for a 32-bit Windows application vulnerable to Structured Exception Handler SEH overflows. While this type of exploit has been around for a long time, it is still applicable to modern systems...

1.6AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/03/02 7:19 p.m.35 views

Quality is Job One When it Comes to the HITRUST CSF Assurance Program

The HITRUST CSF® remains an essential security and privacy controls framework that addresses the multitude of security, privacy, and regulatory challenges facing both public and private sector organizations. As framework adoption increases across all industries, maintaining integrity is crucial,...

1.7AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2018/04/09 8:43 p.m.35 views

Amanda Mesler of Microsoft Addresses the Women of Coalfire

Last month RISE, Coalfires association of women in cybersecurity and leadership, welcomed our inaugural guest speaker, Amanda Mesler, General Manager of Microsoft Central and Eastern Europe. I had the great fortune to interview her and lead a discussion with our members...

3.3AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2021/01/12 6:47 p.m.34 views

Coalfire acquires penetration testing management platform

Over the past year, Coalfire has worked closely in partnership with Neuralys, a penetration testing management platform. Today, Coalfire is ecstatic to announce the acquisition of Neuralys, and welcome its founders, developers and sales team to our organization...

2.3AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/08/13 7:15 p.m.34 views

New OCR-ready risk analysis: Why the confusion?

Are you ready for an Office for Civil Rights OCR investigation? Will your risk analysis and risk management methodologies and documents be sufficient to meet the HIPAA Security Rule?...

1.1AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2019/04/24 5:46 p.m.34 views

A day in the life of a cybersecurity professional

After I graduated from high school, I knew I wanted to do something in computers and IT, but I did not know exactly what - the IT help desk route, databases and database management, programming and software development, or something else perhaps? I knew one thing though - I did not want to be in ...

6.8AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2018/05/21 6:21 p.m.34 views

Pro Tip: The Right Way to Test JSON Parameters with Burp

Heres a Burp trick you might not know, which helped find this instance of command execution and lots of SQL injection in other applications. Despite PortSwigger claiming otherwise, Burp does not parse JSON very well, especially nested JSON parameters and values like you see below...

3.6AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/06/19 9:0 p.m.33 views

Coalfire statement on racial injustice

In honor of Juneteenth, I wanted to reflect and share my thoughts. At Coalfire, we are committed to living our values: Respect, Excellence, Leadership, Integrity, Teamwork, and Enthusiasm. As a result, Coalfire stands against racism, violence, and hate. We stand with fairness, equity, and justice...

2.8AI score
Exploits0
Total number of security vulnerabilities603