20

May 2015

Sword & Shield’s SOC is Monitoring New FREAK Vulnerability

As new details continue to emerge about the latest Freak related vulnerability, Sword & Shield’s Security Operations Center (SOC) is keeping a close eye on its customers’ networks.  The latest is entitled, “LogJam,”  a man-in-the-middle attack. Given the right circumstances, it can provide an attacker the ability to read encrypted data.  Although it is not a simple task, it is possible.  The SOC has already seen...

Read More


13

May 2015

Dumping a Domain’s Worth of Passwords with Mimikatz Part 3

By Russel Van Tuyl Before you go any farther into this post, please note this entire attack depends on already having obtained a shared local admin or domain admin credentials. If you only have a shared local admin password, this can land you domain admin credentials. In my case, I already had domain admin credentials, this attack landed me forest admin creds. This method rides...

Read More


07

May 2015

Breaches Happen.

Are You Prepared? You get a call from the FBI that your company’s computer network has been breached and some of your customer data has been compromised. After catching your breath from hyperventilating, the next thing you should do is realize that you’re not alone. You aren’t the first company to suffer from a breach and yours won’t be the last. In 2014, there were...

Read More


29

Apr 2015

Have I Been Hacked?

By Bill Dean After working in digital forensics for more than eight years, it is common to receive a call from a potential client that thinks they have been “hacked.” After a few minutes of conversation, my finely tuned “paranoid client” meter quickly becomes active. If it reaches my predetermined threshold, I try to systematically walk through the technical aspects required for this to be...

Read More


22

Apr 2015

Merchants Only Have a Few Months to Remove SSL

What Does My Company Need to Know? By now, most merchants know that the PCI Data Security Standard has deep-sixed Secure Socket Layers (SSL) and the earliest Transport Layer Security (TLS) encryption protocols in favor of a more secure version of TLS. But what does that really mean for business owners who rely on SSL or TLS to sell directly to customers on their websites...

Read More


15

Apr 2015

Sword & Shield Wins $20B NIH Contract

Sword & Shield is pleased to announce that it has been awarded a $20 billion National Institutes of Health contract to provide IT products and solutions to government and federal agencies. The Chief Information Officer-Commodity and Solutions (CIO-CS) will provide information technology products and services aligned to health and biomedical research, scientific, administrative, operational, managerial and information management requirements to any federal agency. “We are very...

Read More


09

Apr 2015

Cyberinsurance and Cybersecurity: Two Ways to Lower your Risks

Most companies think nothing of installing security cameras and purchasing theft insurance because they simply consider such things as a cost of doing business. But, when it comes to cybersecurity, some companies don’t understand the risks or the costs despite several large-scale breaches over the past few years. “Traditional liability insurance policies do not offer coverage for technology-related exposures. The truth is, the new liability...

Read More


07

Apr 2015

Dean to Serve as Panelist at TN MGMA Conference

Sword & Shield Director of Computer Forensics and Security Assessments Bill Dean will serve as one of four expert panelists discussing “Security Essentials for an Insecure World” at this year’s Tennessee Medical Group Management Association’s Spring conference in Chattanooga. The conference runs from April 8 – 10 at the Chattanooga Convention Center and features industry-specific information for healthcare administration management and medical practice managers. Dean’s panel,...

Read More


02

Apr 2015

Sword & Shield is Awarded a SEWP V Contract

Sword & Shield Enterprise Security, Inc. is one of a select number of companies that have been awarded the latest edition of NASA Solutions for Enterprise-Wide Procurement (SEWP) contract known as SEWP V. SEWP V is a fixed-price, indefinite-delivery, indefinite-quantity contract that federal agencies can use to procure IT equipment and technology. The contracts have a $20 billion ceiling and a potential 10-year ordering period....

Read More



Page 1 of 3212345...102030...Last »