IT and Business Insights for SMB Solution Providers

Jay Ferron

I am a self proclaimed geek who has authored, may technical training courses. As a speaker Jay has presented at many events including, user groups, Computer trade shows, DOD and federal conferences, ISPCON, TechEd, and WPC. Jay is on the global board member of GITCA. Past President of ISACA-CT, Past president APCUG and is a Microsoft MVP Enterprise Security. Jay has been a MVP in in Windows, HPC, and Azure.

My information Resource
March 18th, 2022 | Jay Ferron | My information Resource
A few days ago, I found an interesting and dangerous situation that I would like to warn you about.  A company I know well was under attack from a weakness on their web site.  It was a major intrusion that needed immediate attention.  My issues started when I tried to contact anyone at the company - Read More
 
March 17th, 2022 | Jay Ferron | My information Resource
The list provided below is meant to provide an overview of the most prevalent exploit kit variants currently impacting US victims. This page is updated regularly with new information as it becomes available.Go here  - Read More
 
March 17th, 2022 | Jay Ferron | My information Resource
CrowdStrike security researchers discovered a high severity vulnerability, dubbed “cr8escape,” in the Kubernetes container engine CRI-O – an open source, community-driven container engine. Each Kubernetes node includes a container runtime such as CRI-O. Among other tasks, the - Read More
 
March 17th, 2022 | Jay Ferron | My information Resource
 QNAP is notifying users that Network Attached Storage (NAS) devices are impacted by the high severity Linux vulnerability dubbed “Dirty Pipe” that allows attackers with local access to gain root privileges. Dirty Pipe a vulnerability was discovered in the Linux kernels' handling of pipe buffer - Read More
 
March 15th, 2022 | Jay Ferron | My information Resource
 CISA and the Federal Bureau of Investigation (FBI) have released a joint Cybersecurity Advisory that details how Russian state-sponsored cyber actors accessed a network with misconfigured default multifactor authentication (MFA) protocols. The actors then exploited a critical Windows Print Spooler - Read More
 
March 15th, 2022 | Jay Ferron | My information Resource
 The National Security Agency (NSA) and CISA have updated their joint Cybersecurity Technical Report (CTR): Kubernetes Hardening Guide, originally released in August 2021, based on valuable feedback and inputs from the cybersecurity community.  Kubernetes is an open-source system that automates - Read More
 
March 11th, 2022 | Jay Ferron | My information Resource
 Beginning June 1, 2022, the CISSP exam in the Computerized Adaptive Testing (CAT) format will contain 50 pretest (unscored) items, which will increase the minimum and maximum number of items candidates will need to respond to from 100-150 to 125-175 items during the exam. To allow for these - Read More
 
March 11th, 2022 | Jay Ferron | My information Resource
The new Courseware is out. You have to decide if you like to take the old test by May 1 or new content On June 1 and beyond.The new content is as follows1 Information Security GovernanceA Enterprise Governance1A1 Organizational Culture1A2 Legal, Regulatory, and Contractual Requirements1A3 - Read More
 
March 9th, 2022 | Jay Ferron | My information Resource
 CISA, the Federal Bureau of Investigation (FBI), the National Security Agency (NSA), and the United States Secret Service (USSS) have re-released an advisory on Conti ransomware. Conti cyber threat actors remain active and reported Conti ransomware attacks against U.S. and international - Read More
 
March 9th, 2022 | Jay Ferron | My information Resource
The Office of the Director of National Intelligence has released an annual report providing an assessment of worldwide threats to U.S. national security.The 2022 Annual Threat Assessment of the U.S. Intelligence Community was released in accordance with Section 617 of the Intelligence Authorization - Read More
 

Pages