Computer Security – CISSP Made Easy

A Future Ransomware Attack exploiting the CrowdStrike Incident Vulnerabilities

August 1, 2024

Timeline of Events Day 1: Discovery and Initial Breach 08:00 AMA group of sophisticated cybercriminals identifies a vulnerability in the CrowdStrike Falcon software, based on the incident from July 2024. They exploit an unpatched version running on the IT systems of a major metropolitan hospital and an international airline. 09:30 AMThe attackers breach the hospital’s … More A Future Ransomware Attack exploiting the CrowdStrike Incident Vulnerabilities

Understanding Security Governance through Principles and Policies

June 13, 2024

Welcome, friends! We continue our journey through Chapter One of the Sybex Ninth Edition book, which covers security governance through principles and policies. In our previous three videos, we discussed security principles and how we derive security policies. We also explored how security is developed using a security framework and the different steps in conceiving … More Understanding Security Governance through Principles and Policies

The Relevance of Mathematics to the Real World: A Deep Dive into Theory and Practice

June 13, 2024

Hello friends, This is an interesting question that I’ve been asked many times: “How does math relate to the real world?” Recently, while explaining algebra to my kids, this question came up again. It’s fascinating because we constantly use math in the real world, whether in arithmetic or algebra, and there are many engineering marvels … More The Relevance of Mathematics to the Real World: A Deep Dive into Theory and Practice

Encryption Algorithm “Types” and “Modes”

February 28, 2024

Very important topic for #CISSP. Following two tables are very important and the video in the end explains the table in detail. First a comparison table outlining the differences, advantages, and disadvantages of Encryption Algorithm Type, which is 1. stream ciphers and 2. block ciphers: Algorithm Type Stream Cipher Block Cipher Definition Encrypts data bit-by-bit … More Encryption Algorithm “Types” and “Modes”

What is Zero-Trust? Principle and Architectural Components. #CISSP #CCSP

February 23, 2024

Greetings, dear learners. Today, we delve into the realm of zero trust architecture, exploring its nuances and implications. Zero trust architecture isn’t a one-size-fits-all solution, akin to acquiring a device or deploying an appliance. Rather, it embodies a comprehensive approach towards security within organizational frameworks. Let’s dissect its essence and clarify misconceptions surrounding this concept. … More What is Zero-Trust? Principle and Architectural Components. #CISSP #CCSP

Spectre and Meltdown

January 18, 2024

Spectre: Spectre is a type of security vulnerability that exploits speculative execution in modern computer processors. In simple terms, processors try to predict what tasks they’ll need to do next to speed things up, and Spectre takes advantage of this prediction process. It’s like guessing what the chef is going to cook next and using … More Spectre and Meltdown

CVE-2021-44228 – Log4Shell/Log4J

March 5, 2022

🪢 There has always been this tug-of-war between what is “comfortable” vs. what is “healthy”, since ages, and has been more of discussion with technology proliferation in our day to day affairs. 👨🏻‍💻 Software developers, while documenting and logging an application’s physiology, tend to be creative and use “variables” in making the program’s footprint more … More CVE-2021-44228 – Log4Shell/Log4J

CISSP Made Easy

"I believe that the best way to truly understand something is to explain it clearly enough that someone else can understand it too. Writing has always been, for me, both a learning tool and a giving back." — Rashid Siddiqui

Category: Computer Security