Strategist, Researcher, Hacker, Advisor, CISO, and podcast co-host (WTF Did I Just Read) . Please remember Rule No. 1 "Do not act incautiously when confronting small bald wrinkly smiling men.
MORE BASIC things to think about in Safety and InfoSec... (#2) No2, REMOVE the easy ways in! 1. RDP does not belong on the Internet, welcome to OpenVPN! 2. ALL your networks should not belong to us...SEGMENT & VLAN 3. I get it, you have to use XP, then protect it from everything else 4. Your vendors need remote access, VPN or GTFO 5. No, DEV & UAT don't need to be public to the Internet... 6. ALL your Databases NEED to stay yours... Not Mine, therefore don't open 1433/4, 3306, 5432, 3050, Etc. to the Internet! 7. NO VNC is not a good replacement for RDP on the Internet! 8. Nobody wants to manage YOUR Cisco from the Internet... 9. Yes, I'm going to find your warehouse and it's separate Internet connection so treat it as kindly as you do the head office! There's more, but you get the idea, sweep up the easy stuff, clean up YOUR house and stop make things so bloody easy. 'all for now Chris
Thank you Chris! What I want people to learn from this thread is that few people learn from history. The second thing is 1-9. If you did not follow these best practices, you may be owned, depends on your exposure. I will let you know. Best regards.
I like basic and stick with the words, "Logic and Common-sense". It is amazng how it answers so many 'issues' requiring 'solutions' out there.
But Frank's needs that computer. It's ok though cause he brought in his own wifi router and hooked it up to the lan so it's ok
Could not be anymore on point than this.
Words of wisdom, Mr Roberts. 👍
SEGMENT!!! Yes! There is an easier way then VLAN’s and Firewalls tho!
You're spilling the beans! Those are our honeypots!
#3 "It's vendor managed, it's out of scope so don't worry about it!"
Cybercrime Expert Witness, Digital Forensic Investigator, Cybersecurity, Source Code, Scams, Software Engineer 23+ yrs, SCAMAssist, CCISO CFE CCE CHFI MCSD/E PRINCE2/P CEH CAMS PSM CCSM COBIT5 ITIL CBP HTCIA IEEE FDRP
6yRDP on the internet is like saying who wants to share with me? RCE exploit please.