The Coalfire Blog

Welcome to the Coalfire Blog, a resource covering the most important issues in IT security and compliance. You'll also find information on Coalfire's insights into the unique cybersecurity issues that impact the industries we serve, including Cloud Service Providers, RetailFinancial Services, Healthcare, Higher Education, Payments, Government, Restaurants, and Utilities.

The Coalfire blog is written by the company's leadership team and our highly-credentialed security assessment experts. We look forward to your comments, so please join the conversation.

  • Introducing Red Baron - Automate the Creation of Resilient, Disposable, Secure, and Agile Infrastructure for Red Teams

    February 06, 2018, Marcello Salvati, Senior Security Researcher, Coalfire Labs

    The need to automate the creation of disposable red-team infrastructure is key to providing effective adversary simulations. As Coalfire Labs continued to grow, our team needed a system to quickly configure and spin up C2 and/or phishing infrastructure, run multiple campaigns at the same time, and recreate infrastructure if some parts got detected and/or blacklisted.

    Read more
  • The Archimedes Medical Device Security 101 Conference - A Secure Forum for Security Issues

    January 26, 2018, Andrew Hicks, Managing Principal, Coalfire

    The University of Michigan’s Archimedes Center for Medical Device Security hosted its second annual MDS 101 conference in Orlando this month. The conference provides a secure forum for attendees to speak freely about cybersecurity issues with respected professionals who can help establish best practices for improving medical device security.

    Read more
  • Has Your O365 Account Been Hacked?

    January 16, 2018, Robert Meekins, Director, Forensics, Coalfire

    In the past six months, Coalfire has seen an increase in businesses receiving fraudulent emails from legitimate client accounts with fraudulent invoice attachments. In several cases, the recipient paid the invoices not realizing they were fraudulent. The losses have ranged between thousands and hundreds of thousands of dollars. When the business investigated, they found that the mailbox associated with the sender’s account did not contain the sent emails. Moreover, the authorized user claims they never sent the email.

    Read more
  • The Spectre of Chips on Meltdown

    January 05, 2018, Victor Teissler, Security Associate, Coalfire

    The news is rife with emerging details of Intel and other chip vulnerabilities and the hardware bugs that can potentially exploit them. While details are still developing and will likely continue to be uncovered in the days, weeks, and even months ahead, we will explore what is known to date.

    Read more
  • Healthcare Security Pros Prioritize Sharing and Caring in the Wild, Wild West of Healthcare

    January 02, 2018, Deborah McLain, Director, Heathcare & Life Sciences, Coalfire

    Security professionals from healthcare delivery organizations (HDOs), medical device manufacturers, and pharmaceutical companies gathered in Scottsdale, Arizona for the NH-ISAC Cyber Rodeo Summit last month. The big topics were how to share more threat intelligence, while at the same time ensuring the highest level of patient care and safety.

    Read more
  • Displaying results 11-15 (of 271)
     |<  <  1 - 2 - 3 - 4 - 5 - 6 - 7 - 8 - 9 - 10  >  >| 

Recent Posts

Post Topics


RSS Feed

The Coalfire BlogSubscribe to Feed
Chrome users will need to install RSS Subscription Extension (by Google)