Weekly Cybersecurity Wrap-up 9/17/23

Webinars

This week I watched a lot of youtubes. Some of the were okay.

The below brighttalk talk was one of the best I’ve been too and its monthly so you should really watch this and make sure to catch them monthly.

Verizon Threat Research Advisory Center MIB – Monthly Update for September. Great webinar and worth 1 CPE.

This one below from Black Hills Information Security was the best thing I watched this week. Great for beginners like me:

Articles

Podcasts

  • ISC Daily Stormcast – SANS Podcast for 8/21/23 – DNS TTls; Snatch Ransomware; npm packages; nagios xi vuln;
  • Cyberwire Daily – Ep 1910 | 9.20.23 – Hacking the ICC. ShroudedSnooper active, simple, and novel. New criminal malware used against Chinese-speakers. More on the materiality of cyberattacks.
  • BEERS WITH TALOS – Rachel Tobac on social engineering, expanding opportunities for women in cybersecurity

Projects

TryHackMe – SOC Level 1(74 % Complete): Windows Forensics 1 – Complete

Weekly Cybersecurity Wrap-up 9/11/23

Keep learning. Next month is cybersecurity month!!

Webinars

Articles

Podcasts

Projects

TryHackMe – SOC Level 1 (72 % Complete): Investigating with Splunk, Benign, DFIR: An Introduction – Complete

Weekly Cybersecurity Wrap-up 9/4/23

No webinars this week, but some fun articles!

Articles

Podcasts

Projects

TryHackMe – SOC Level 1: Splunk Basics, Incident Handling with Splunk – Complete

Weekly Cybersecurity Wrap-up 8/28/23

Little behind this week. It’s been busy. Still plugging away at learning all I can though.

Webinars

  • (ICS)2 – The Impact of Artificial Intelligence on the Cybersecurity Industry – 8/30/23 – The impact of artificial intelligence (AI) on the cybersecurity industry is among the hottest topics discussed and debated amongst security professionals. From a positive perspective, AI has infused a myriad of threat detection and prevention platforms with newfound methods for uncovering sophisticated threats. It has also helped short-staffed security teams automate complex processes, such as incident validation and response. But AI also comes at a price. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he addresses the good, the bad, and the ugly outcomes of artificial intelligence.

Articles

Podcasts

Projects

TryHackMe – SOC Level 1: Introduction to SIEM, Investigating with ELK 101, ItsyBitsy – Complete

Weekly Cybersecurity Wrap-up 8/20/23

Last week was vacation, but I’m back and as before devoted to learning as much about cybersecurity as possible.

Webinars

  • PCI DSS v4.0 – Navigating the Seven Cs – Verizon – Sam Junkin, Matt Arntsen, Ciske van Oosten & Peggy Nolan – Join us for the third installment of our webinar series, as we help companies act with confidence in light of significant updates to the flagship Payment Card Industry Data Security Standard (PCI DSS v4.0). Earlier in the series, we discussed the impact of PCI DSS v4.0, how to interpret key components and how to develop a plan to meet complex requirements. Now, we chart our course to conquer the “seven Cs” — the top constraints that most businesses face as they move forward in their transition. One of the most important things businesses must do to be successful is to take action now — and our panel is ready to show you how.

Articles

Podcasts

Projects

  • TryHackMe – SOC Level 1 (62% Complete) – Introduction to SIEM- Complete

Weekly Cybersecurity Wrap-up 8/7/23

Every week I post what I have been working on in my journey to learn more about cybersecurity and hopefully land a job in the field. I hope these post can help others on their cyber journeys.

Webinars

Articles

Podcasts

  • Darknet Diaries 136: TEAM XECUTER – Team Xecuter was a group involved with making and selling modchips for video game systems. They often made mods that allowed the video game system to rip games or play pirated games. It was a crowd favorite in the modding scene. Until it all fell apart.
  • Smashing Security 334: Acoustic attacks, and the tears of a crypto rapper

Projects

  • TryHackMe – SOC Level 1 (61% Complete)
    • Wazuh – Complete

Weekly Cybersecurity Wrap-up 7/31/23

Every week I post what I have been working on in my journey to learn more about cybersecurity and hopefully land a job in the field. Right now I’m working on a three part plan:

  1. Keep up with current events – This post is a big part of that
  2. Gain practical experience – Right now I’m working through TryHackMe learning paths
  3. Obtain cybersecurity certificates – I’ve earned the (ISC)2 Certified in Cybersecurity, and I am studying for the CompTIA Security+ currently

Webinars

Articles

Podcasts

Projects

  • TryHackMe – SOC Level 1 (58% Complete)
    • Windows Event Logs – Complete
    • Sysmon – Complete
    • Osquery: The Basics – Complete

Weekly Cybersecurity Wrap-up 7/24/23

Welcome to another cybersecurity wrap-up! This week I caught a great webinar by Rachel Tobac, that she presented to my company (sorry, no link to share for this one).

Webinars

  • Inside the Mind of a Hacker – Rachel Tobac

Articles

Podcasts

Projects

  • TryHackMe – SOC Level 1 (49% Complete)
    • sysinternals – Complete

Weekly Cybersecurity Wrap-up 7/17/23

Every week I writer here what I learn this week about cybersecurity.

Webinars

  • New Phishing Benchmarks Unlocked:Is Your Organization Ahead of the Curve in 2023 – Joanna Huisman, SVP, Strategic Insights and Research,KnowBe4: Cybercriminals continue to rely on proven attack methods while developing new ways to infiltrate digital environments and break through your human defense layer. But how can you reduce your organization’s attack surface? KnowBe4 looked at 12.5 million users across 35,681 organizations to find out.
  • 2023 DBIR Presents Episode 1: System Intrusion – The Verizon 2023 Data Breach Investigations Report (DBIR) examines confirmed breaches and sheds light on how the most common forms of cyber attacks affected the security landscape globally. System Intrusion is the number one breach pattern and represents of 37% all breaches. 80% of System Intrusion incidents involved Ransomware as attackers continue to leverage a bevy of different techniques to compromise an organization and monetize their access.
  • How to Design a Least Privilege Architecture in AWS – Dave Shackleford, SANS analyst; Sagar Khasnis, Partner Solutions Architect at AWS: Implementing a least privilege architecture can reduce risk and minimize disruptions by allowing only the minimum required authority to perform a duty or task. Adding network micro-segmentation also restricts east-west movement to reduce the number of vulnerable pathways to applications. When combined, these methods create a granular security environment that provides strong attack resistance. In this webinar, SANS and AWS Marketplace will present examples of how to set up a least privilege stack, covering such key issues as where to start and what to prioritize. Additionally, they will present real-world use cases of least privilege stacks and effective micro-segmentation methods that have been deployed in Amazon Web Services (AWS).

Articles

Podcasts

Projects

  • TryHackMe – SOC Level 1 (48% Complete)
    • Intro to Enpoint Security – Complete
    • Core Windows Processes – Complete