October 2017

Capital One Fraud Seminar Recap

Michael Pitcher, Vice President, Technical Cyber Services, Coalfire Federal
Recently, I was honored to be invited as a panelist at a recent seminar hosted by Capital One Spark Business to share some views on fraud prevention and cybersecurity with their customers. I was joined by a few other industry experts, Gerald Glickman, a Manager of Capital One’s Fraud Analysis team, and Jennifer Smith, who led the Cybersecurity and Data Privacy group at the Shulman, Rogers, Gandal, Pordy & Ecker law firm, to round out a diverse group from various parts of the industry. Each of us deal with fraud daily, but we have very different roles: Jennifer on the litigation side, Gerald from inside a bank, and myself from the technical perspective. Read more
Scripted Inputs and Splunk

Josh Porto, Senior Consultant, Cyber Engineering, Coalfire

Splunk is an extremely versatile tool when dealing with data:

- Monitor files? Check!

- Listen in on an open port? Check!

- Monitor the file system? Performance monitor? HTTP Event Collector?

- Check, check aaaaand check!

But what if the data you want to ingest does not have a method listed above? Say, something like a database or a security tool’s API? Scripted inputs are the solution! Splunk can even employ a variety of scripts to include (but not limited to) PowerShell, shell scripts, and Python. Besides working around data sources, which do not use log files and cannot send via TCP or UDP, the advantages abound and include:
Read more
Top 10 Things CSPs Need to Know about FedRAMP Authorization on Amazon Web Services

Jennifer Tonisson, Partner Marketing Manager, Technology & Cloud, Coalfire

Coalfire conducted a webinar, FedRAMP on AWS: What you need to know. The discussion covered what cloud service providers need to know when pursuing FedRAMP authorization leveraging AWS U.S East/West or GovCloud. Below you’ll find the Top 10 things that cloud service providers should know.
Read more
An Analysis of PCI DSS Requirement 11.3.4.1 and the Compliance Expectations

Jason Pieters, Product Director, PCI, Coalfire

For some organizations, understanding, navigating, and complying with the Payment Card Industry (PCI) Data Security Standard (DSS), especially after the release of the latest version (v3.2) released in April 2016, has become confusing and/or challenging because of the inclusion of phased-in applicability of requirements. The most common questions that Coalfire receives from clients are regarding requirement 11.3.4.1
Read more
Blockchain: Are You Ready?

Mitch Ross, Senior Consultant, Cyber Engineering, Coalfire

By now, most of us have heard of Bitcoin. Few of us really know the specifics about what that is. Fewer still have a workable (or even cursory) knowledge of the underlying technology that makes Bitcoin possible.
Read more
How I discovered CVE-2017-13707

Michael Allen, Senior Consultant, Coalfire Labs

New Vulnerability Found Using Techniques Taught at Black Hat USA

One of the topics I teach in Coalfire's Adaptive Penetration Testing course, given most recently at Black Hat 2017, is manual privilege escalation on Linux- and Unix-based systems. I also talk about how common it is to gain an initial foothold in an environment by leveraging default or easily guessable login credentials. During a recent red team engagement, I leveraged both of these techniques – not only to fully compromise the organization's Active Directory environment, but also to discover and exploit a previously unknown vulnerability in the Replibit Linux distribution installed on a server on their network.
Read more
How You Respond Can Make All the Difference

Doug Hudson, Senior Director, Cyber Risk Advisory, Coalfire

(Part Three of a Three Part Series)

As the narrative on the Equifax compromise evolves, the general public, politicians, and speculators continue to seek blame for what happened. Was it an unpatched vulnerability? Was Equifax not following proper configuration management? Was management derelict in their duties? At this point, the damage of leaking records including the personally identifiable information (PII) of 143 million people is done. However, it might be a good to look at what could have been done differently to reduce impact to the organization.
Read more

Solutions
- Compliance services
- CoalfireOne℠
Move forward, faster with solutions that span the entire cybersecurity lifecycle. Our experts help you develop a business-aligned strategy, build and operate an effective program, assess its effectiveness, and validate compliance with applicable regulations.
Cloud security strategy and maturity assessment
Assess and improve your cloud security posture

Accelerated Cloud Engineering
Streamline cloud development with compliant-ready environments

Infrastructure as Code development
Build in cybersecurity right from the start
Cyber performance review
Secure your cloud and IT perimeter with the latest boundary protection techniques

Product applicability guides
Increase customer confidence by promoting your security story

Security operations and cyber dashboards
Make smart, strategic, and informed decisions about security events
CoalfireOne scanning
Confirm system protection by quickly and easily running internal and external scans

Penetration testing
Discover and remediate critical vulnerabilities before they’re exploited

Red team exercise
Boost your defenses by simulating a real-world attack
Threat modeling and attack simulation
Maximize security investments and prove their effectiveness

Vulnerability assessment
Strengthen your risk and compliance postures with a proactive approach to security
Strategy+ cybersecurity program assessment
Drive business success through cybersecurity strategy

CISO program management
Strengthen your program by putting our experts to work

Privacy services
Turn privacy into a competitive advantage
M&A cyber due diligence
Know what risks you’re facing with a merger or acquisition

Cyber risk assessment
Uncover the risks present in your organization

Healthcare security risk analysis and advisory
Safeguard protected health information and medical devices
Third-party risk management
Hold vendors and partners to your security standards

Cyber breach services
Don’t waste critical response time. Prepare for incidents before they happen.
Accelerated Cloud Engineering services
Reduce the operational burden associated with maintaining your FedRAMP boundary

CoalfireOne scanning
Confirm system protection by quickly and easily running internal and external scans

Security operations and cyber dashboards
Make smart, strategic, and informed decisions about security events
Application security
Identify weaknesses that make your applications ripe for attacks

Internet of Things security
Protect every aspect of your IoT solution
CMMC
Navigate your path to Cybersecurity Maturity Model Certification

DEA EPCS
Simplify and streamline DEA EPCS compliance

DoD RMF
Assess your systems to DoD RMF standards
FedRAMP
Get advisory and assessment services from the leading 3PAO

FFIEC
Reduce IT security risk in financial services

FISMA
Meet your FISMA authorization needs
HIPAA
Protect health data from threats and vulnerabilities

HITRUST
Receive guidance from an original HITRUST CSF Assessor firm

ISO management
Build a management system that complies with ISO standards
ITAR and EAR
Understand and address ITAR and EAR security obligations

NIST SP 800-171
Protect controlled unclassified information

PA-DSS/SSF
Validate the security of your payment applications
Payments services
Shape your overall payments program for current and future security

PCI DSS assessments and advisory
Protect cardholder data from cyber attacks and breaches

PCI Forensic Investigator
Suspect a cardholder data breach? Contact us now.
PCI in the cloud
Simplify and optimize PCI compliance in the cloud

P2PE
Secure data as soon as it’s entered into a point device

Report on compliance
Provide the strongest validation of your PCI program
SOC and SSAE 18
Ensure trust and confidence in your security and financial controls

White paper services
Demonstrate your commitment to cybersecurity
CoalfireOne overview
Use our cloud-based platform to simplify compliance, reduce risks, and empower your enterprise’s security

CoalfireOne assessment and project management
Manage and simplify your compliance projects and assessments with Coalfire through an easy-to-use collaboration portal

CoalfireOne scanning
Quickly configure and manage requirements for internal and external vulnerability scanning and PCI ASV scans
CoalfireOne Compliance Management
Maintain and improve security with year-round visibility and proactive management of your compliance program
Industries
While cybersecurity is a priority for enterprises worldwide, requirements differ greatly from one industry to the next. Coalfire understands industry nuances; we work with leading organizations in the cloud and technology, financial services, government, healthcare, and retail markets.

Coalfire can help cloud service providers prioritize the cyber risks to the company, and find the right cyber risk management and compliance efforts that keeps customer data secure, and helps differentiate products.

"Success" at a government entity looks different at a commercial organization. Create cybersecurity solutions to support your mission goals with a team that understands your unique requirements.

The financial services industry was built upon security and privacy. As cyber-attacks become more sophisticated, a strong vault and a guard at the door won’t offer any protection against phishing, DDoS attacks and IT infrastructure breaches.

The continuum of care is a concept involving an integrated system of care that guides and tracks patients over time through a comprehensive array of health services spanning all levels of care. Interoperability is the central idea to this care continuum making it possible to have the right information at the right time for the right people to make the right decisions.

Maintaining network and data security in any large organization is a major challenge for information systems departments. However, in the higher education environment, the protection of IT assets and sensitive information must be balanced with the need for ‘openness’ and academic freedom; making this a more difficult and complex task.

When it comes to cyber threats, the hospitality industry is not a friendly place. Hotels and resorts have proven to be a favorite target for cyber criminals who are looking for high transaction volume, large databases and low barriers to entry.

The global retail industry has become the top target for cyber terrorists, and the impact of this onslaught has been staggering to merchants. To secure the complex IT infrastructure of a retail environment, merchants must embrace enterprise-wide cyber risk management practices that reduces risk, minimizes costs and provides security to their customers and their bottom line.

Private enterprises serving government and state agencies need to be upheld to the same information management practices and standards as the organizations they serve. Coalfire has over 16 years of experience helping companies navigate increasing complex governance and risk standards for public institutions and their IT vendors.

Technology innovations are enabling new methods for corporations and governments to operate and driving changes in consumer behavior. The companies delivering these technology products are facilitating business transformation that provides new operating models, increased efficiency and engagement with consumers as businesses seek a competitive advantage.

Cybersecurity has entered the list of the top five concerns for U.S. electric utilities, and with good reason. According to the Department of Homeland Security, attacks on the utilities industry are rising "at an alarming rate".
About
- Richard E. Dakin Fund
Since 2001, Coalfire has worked at the cutting edge of technology to help public and private sector organizations solve their toughest cybersecurity problems and fuel their overall success.

Coalfire helps organizations comply with global financial, government, industry and healthcare mandates while helping build the IT infrastructure and security systems that will protect their business from security breaches and data theft. The company is a leading provider of IT advisory services for security in retail, payments, healthcare, financial services, higher education, hospitality, government and utilities.

The Coalfire Board of Directors provides invaluable guidance for the organization and reflects Coalfire’s dedication to achieving success for our customers.

Coalfire’s executive leadership team comprises some of the most knowledgeable professionals in cybersecurity, representing many decades of experience leading and developing teams to outperform in meeting the security challenges of commercial and government clients. With diverse backgrounds in IT systems security, governmental security, compliance, and reducing risk while implementing the latest enabling technologies (such as the Cloud and IoT), our leaders understand the challenges customers face.

Security is a team game. If your organization values both independence and security, perhaps we should become partners.

With a passion for quality, Coalfire uses a process-driven quality approach to improve the customer experience and deliver unparalleled results.

Created in honor of the late co-founder of Coalfire, the Richard E. Dakin Fund at The Denver Foundation is supporting scholarship programs at several universities for promising college students studying cybersecurity and related fields.
Insights
Get valuable insight into what matters most in cybersecurity, cloud, and compliance. Here you’ll find resources – including research reports, white papers, case studies, the Coalfire blog, and more – along with recent Coalfire news and upcoming events.

Written by Coalfire's leadership team and our security experts, the Coalfire Blog covers the most important issues in cloud security, cybersecurity, and compliance.

Find information that can help you approach cybersecurity programmatically. Explore our research reports, white papers, on-demand webinars, videos, case studies, and more.

Stay up-to-date with all things Coalfire. Find upcoming events and webinars. See what’s new with your cybersecurity partner. And read the latest media coverage.
Careers
Contact
- Locations
Search for:

Top

Recent Posts

Post Topics

Archives

RSS Feed

RSS Feed

Tags