Matt Chapman | Cyber Security Expert

Apex One SaaS Gets SIEM!

Apex One SaaS now has added the Syslog option to the SaaS console. Up until now you had to put a ticket into support and sign some paperwork to send data to your SIEM. But now you can simply login into your console and make the changes yourself. Enter in

Trend Micro

OfficeScan to Apex One SaaS IpXfer

So I figured I would write a quick post about another method for moving your on-premise Trend Micro OfficeScan XG SP1 agents over to your new Apex One SaaS console. So you can easily do this following the instructions at this link. That is great for using the "Move Agent"

Hacking

CVE-2017-5638 Struts2

If you read my last blog entry on the other struts attack you would know that I ended it with the words "this will not be the last time you see struts causing a vulnerability". This one is from last year but I thought it would be a nice one

Hacking

Air Canada Data Breach

Air Canada has stated that a data breach may have affected about 20,000 of its 1.7 million mobile app users. Customer data may have been improperly accessed during the between August 22 and 24th. The level of exposure is basic PII data such as customer's names, email addresses

Hacking

Kali Dual Boot On MacBook Pro

So I spend as much, if not more time, in Kali in a VMWare Fusion VM than I do the actual MacOS when doing a portion of my job. So being a long time Mac user and also a long time (probably longer) Linux user I am accustomed to dual

News

IoT and Healthcare – My thoughts from HIMSS

I recently attended the HIMMS conference in Las Vegas. Tough gig, I know. It rotates between Las Vegas and Orlando. I spoke with many in the healthcare industry about concerns about Cyber Security and IoT. In particular, the fact that IT is growing in the healthcare field and more and

Hacking

Windows 2003 SP2 RRAS – CVE-2017-11885

This CVE came out in December 2017 and you may be asking yourself why even post something now in May 2018. Because, when exploit code like Exploit-db hits and makes it so easy I figured why not revisit it. The vulnerability essentially can allow an attacker to compromise your Windows

News

Cloud App Security Gets ML and BEC for Office365

Trend Micro has announced an update to the Cloud App Security suite. For those of you not familiar with the Cloud App Security suite it covers Office365 applications as well as Box, Google Drive and Dropbox. It provides sandbox integration for email and API based non-interruption of mail flow with

Hacking

Microsoft Windows LNK CVE-2017-8464

Microsoft Windows LNK CVE-2017-8464. This is not the first time a LNK vulnerability has come around and caused issues for Windows machines. Probably will not be the last either. A patch is available as part of Microsoft “Patch Tuesday” for this and the rest of the 96 vulnerabilities addressed this

News

Resize your Apple APFS Volume

In this quick little post I will show you how to resize your new Apple macOS High Sierra APFS volume. You may be asking well I can just resize it from my Disk Utility app. But alas, you can not. When you go into Disk Utility and select an APFS

Hacking

WannaCry (CVE-2017-0145) Detect with Metasploit

So by now everyone should have heard of WannaCry and all the variants. Here is a good rundown on https://en.wikipedia.org/wiki/WannaCry_ransomware_attack. It stems from tools being made available that the NSA used in exploiting holes in the Windows SMB http://cve.mitre.org/cgi-bin/

Hacking

Apache Struts 2 (CVE-2017-5638)

On 3/6/2017 a vulnerability was found in Apache Struts 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1. Essentially it mishandles the upload from the parser and could allow remote attackers to execute commands from the command string. This includes,

News

Tech Trends: A vacation the high technology way.

I remember when I was a child and my family would have to move across country or go on vacation and my father would elect to drive. In those days, we didn’t have iPods, iPads or even a Walkman yet. I remember sitting in the rear of my parents’

Hacking

My heartbleed demo

Recently I was asked to present a live hack in front of an audience and I decided go back in time to the heartbleed bug. I say back in time but actually many sites are still vulnerable believe it or not. Little recap on what heartbleed is. For a brief

News

Alexa has a new skill – Celebration Bar Review Tips!

Before even purchasing an Amazon Echo some thought had already begun way back when it was just a demo video of it’s pending release. I wondered what I could make Alexa do for Bar Exam students. My partnership with Celebration Bar Review goes back about 18 years now. When

News

Apple Mesh Wireless

So if you are following home networking trends you will notice things like the Netgear Orbi, Google Wifi, Luma, eero and others hitting the market as “mesh” home networks. This is different from the old/current extenders you may be using. With extenders you often have to give the new