Vikas on Security

                           In order to stay updated and aware of the latest happening in InfoSec space it is essential to continuously update your knowledge  through learning. Attending conferences physically has its distinct advantages of learning and networking both. However  it is not always possible for busy professionals to attend the same.Most of this knowledge is acquired through various sources. In this blog I will jot down the various online sources of which I have used to update my knowledge in this field. Virtual conferences , On demand courses and webinars are the various ways which I have used to enhance my knowledge and skills. I will now list  down the specific resources I have used over the last two years to upgrade my knowledge of various areas of Cyber Security. Cybrary -   It is an online repository of ...

Equifax  breach  - What happened , poor response and what can we learn from it Equifax is one of the biggest credit rating agencies in the world and stores data of large number of Americans while rating their credit worthiness. It is recently came into news that a large amount of their data had been compromised and been stolen by hackers. They had become aware of the breach in July but officially declared it a month later. The immediate outcome of the breach has been that both the CISO and the CIO have “ retired ” from the company. Hackers stole personal information for as many as 143 million individuals from Equifax’s credit files, leaving them vulnerable to identity theft. The information includes names, birth dates, addresses and Social Security numbers. Reason for the breach Technically, the fault lay in an unpatched Apache Struts server application which was exploited by hackers to steal data from the server. This again points to the fact that most br...