The Coalfire Blog

Welcome to the Coalfire Blog, a resource covering the most important issues in IT security and compliance. You'll also find information on Coalfire's insights into the unique cybersecurity issues that impact the industries we serve, including Cloud Service Providers, RetailFinancial Services, Healthcare, Higher Education, Payments, Government, Restaurants, and Utilities.

The Coalfire blog is written by the company's leadership team and our highly-credentialed security assessment experts. We look forward to your comments, so please join the conversation.

  • What does the FBI have to say about ransomware

    October 03, 2016, Tom Glaser, Healthcare Solutions Architect, Coalfire

    The FBI provided guidance on ransomware at a recent FBI/US Secret Service/ISAC event.  They defined ransomware as a type of malware that is commonly transmitted through malicious email, which is disguised to look normal.  Once the email link has been clicked on, or an email attachment has been opened, the malware installs on the computer.  After installation is completed, files on the computer become locked using encryption and cannot be opened without the key.  A ransom message is then displayed with information on how to pay the ransom.

    Read more
  • The Cost of a FedRAMP Assessment from a 3PAO Perspective

    September 22, 2016, Abel Sussman , Director, TAAS – Public Sector and Cyber Risk Advisory recently published a blog titled ‘How Much Does It Cost to Go Through FedRAMP?’ As a FedRAMP Third Party Assessment Organization (3PAO), we wanted to provide additional factors for consideration for organizations that are evaluating or pursuing a FedRAMP authorization.

    Read more
  • FedRAMP Prioritization

    August 29, 2016, Abel Sussman , Director, TAAS – Public Sector and Cyber Risk Advisory

    Coalfire has been participating in the American Council for Technology and the Industry Advisory Council (ACT-IAC) Cloud Computing community of interest in order to contribute in developing the new FedRAMP JAB Prioritization process.

    Read more
  • Thoughts on BSides Las Vegas 2016

    August 22, 2016, John Skipper, Associate Security Consultant, Coalfire Labs

    I recently attended “Infosec Week” in Vegas - Black Hat, BSides and DEFCON.  BSides is a high point every year.  This smaller Con has a plethora of perks which make it a “must attended” and also offers many of the same benefits or advantages or opportunities as Black Hat and DEFCON.

    Read more
  • Best of Enterprise and AD Exploitation at Black Hat / DEFCON

    August 22, 2016, Marcello Salvati, Associate Consultant, Coalfire Labs

    Lots of hacks, lots of people, lots of content, and lots of parties. That basically sums up this year’s BlackHat and Defcon. The two conferences seem to get bigger every year with no sign of slowing down, which emphasizes how cybersecurity is becoming more and more of an issue for everyone:  governments, fortune 1000 companies, small businesses and single individuals alike.

    Read more
  • Displaying results 1-5 (of 203)
     |<  < 1 - 2 - 3 - 4 - 5 - 6 - 7 - 8 - 9 - 10  >  >| 

Recent Posts

Post Topics



Follow us to get the latest updates.