This video features Kelly Hynes McDermott interview with Kyle Lai: A comprehensive discussion of the 10 best practices for cyberattack prevention 10 Best Practices for Cyberattack Prevention Kelly: So, Kyle today we talk about the best practices for cyberattack prevention. We go through our list of ten which are all really important. As we know …
About the solarwinds cyber attack Kyle LaiPresident and CISOKLC Consulting, Inc.CISSP, CSSLP, CISA, CDPSE, CIPP/US, CIPP/G, ISO 27001 Lead Auditor The Solarwinds cyber attack affects cybersecurity within government agencies like DHS, State Department, DoJ, DoD, and Defense Contractors Experts estimate 18,000 customers are affected The Cybersecurity and Infrastructure Security Agency (CISA) issued Emergency Directive 21-01 to …
This 4 1/2 minute Phishing Email Training Video-03 is the third in our FREE Phishing Email Training Video series. We review a “real world” phishing email example and show how to recognize them; so you don’t fall victim to hackers and personal identity theft. We’re going to go through another phishing email example today in …
Phishing Training Video 3: The Fake Financial Report Video Read More »
Our Phishing Training Video-02 is a 4-minute video in our FREE cybersecurity training series. It demonstrates a “real world” phishing email currently in wide circulation around the internet – The bogus FRANPRIX.Com email scam; and shows how to identify and distinguish phishing attacks from legitimate emails. Let’s look at a real Phishing scam We are …
Phishing Training Video 2: The bogus FRANPRIX Email Read More »
This web application and API vulnerabilities webinar was presented by Kyle Lai on 07/18/2020 at CISO Platform – a 40,000 member international community dedicated to information security (www.cisoplatform.com) 43% of all data breaches were through hacker attacks on web applications in 2019. And that’s more than twice as many as reported in the 2018 (Verizon …
Continuous Vulnerability Management Service also known as Continuous Monitoring: The traditional security assessment formula has become stale and obsolete. And some companies perform vulnerability assessments or Penetration Tests (PenTest) only once each year. Once each year isn’t enough because technology advances in modern society have made us more interconnected and software reliant. New technology frequently …
Continuous Vulnerability Management Service Video Read More »
KLC Consulting’s FREE Phishing Training-01 Video. This 4+ minute video, the first in our FREE cybersecurity training series, demonstrates a “real world” phishing email currently in wide circulation around the internet, and shows how to identify and distinguish phishing attacks from legitimate emails. A Real Phishing Email Example What you are seeing is a real …
Current Trends in Data Breaches Video (Episode#002). We discuss the current trends in data breaches from unsecure web application design, cloud misconfigurations and phishing email attacks; as reported in Verizon’s 2020 Data Breach Investigation Report (DBIR). And Kyle gives recommendations on how to develop strategy to mitigate those risks.
IDOR Vulnerabilities in Web Applications (Insecure Direct Object Reference) Chances are they’re alive and well in your web applications. The bad news is – if you’re foregoing source code reviews by a security professional and relying on automated scanning tools to detect them, you’re out of luck; you won’t find them. But hackers do. And …
This Hacking Web Applications and APIs Video talks about how to prevent cybercriminals from hacking web applications and API’s: Why are they difficult to secure? And what are the risks from these attacks? Also, how do we improve application security
