After two days of forewarning, Microsoft released its January 2020 collection of updates for “Patch Tuesday.” It had been leaked that there was a critical flaw in the crypt32.dll library that could represent a serious security flaw for the entire world. The crypt32.dll library provides the foundation for cryptographic operations in Windows and is often…

Read More

What an incredible, action-packed year 2019 turned out to be in cybersecurity. Throughout the past year, I interviewed industry experts, authors, and technology luminaries with topics ranging from quantum computing to authentication to top security threats to PKI evolution. Below are highlights from the 2019 The PKI Guy’s Q&A Series. Keep checking back to read…

Read More

Q&A with Roger A. Grimes, IDG/CSOOnline security columnist and Data-Driven Defense Evangelist for KnowBe4, Inc.  TPG: What’s the worst malware you’ve seen lately? RG: Ransomware in general. You’ve got tons of companies going down for days to weeks. Ten percent of small businesses never recover and go out of business. Most companies are paying the…

Read More

Recently, the National Security Agency (NSA) published a guide to Managing Risk from Transport Layer Security Inspection. The guide is designed to highlight the unique risks introduced into environments by the use of TLS inspection appliances. It also covers a few recommendations on how to secure these devices. There are some additional areas we recommend…

Read More