Major Vulnerability in Microsoft DNS Needs Action

Microsoft announced a major vulnerability on July 14, 2020, in its Domain Name System (DNS) service component of Windows Server. The issue is documented as CVE-2020-1350 and is rated at the highest possible level of 10 out of 10. Descriptions of the security flaw state that it is ‘wormable’, which means it can be automated […]

Working with Law Enforcement During a Breach

We have a team of Digital Forensics and Incident Response (DFIR) experts here at Lodestone Security working daily with organizations that have fallen victim to a cyber attack. During our investigation, clients ask a lot of common questions. In this post, I am sharing some of the common questions about working with authorities, and our […]

What is MFA?

Let’s get the acronym out of the way so we are all on the same page – Multi-Factor Authentication (MFA). As a part of an overall Identity and Access Management (IAM) program, MFA has a couple other names that mean essentially the same thing: Two Factor Authentication (2FA), Two-Step Verification. We prefer to use the […]

How can we improve the security of our video conferencing?

Improving Video Conferencing Security Video conferencing platforms are a great way to enable communication and collaboration during these uncertain and unusual times. As more organizations and individuals turn to these platforms, malicious minded people take notice and look for ways to exploit it. Some platforms are seeing more popularity in both usage and attacks; in […]