Please enjoy this encore of Word Notes.

A layer seven firewall designed to block threats at the application layer of the open system interconnection model, the OSI model. 

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/web-application-firewall⁠

Audio reference link: “VCF East 9.1 - Ches' Computer Security Adventures - Bill Cheswick.” YouTube, 29 Dec. 2015, ⁠https://youtu.be/trR1cuBtcPs⁠. 

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

An IT governance framework developed by ISACA. 

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/cobit⁠

Audio reference link: isacappc. “How Do You Explain Cobit to Your Dad – or Your CEO?” YouTube, YouTube, 24 Aug. 2016, ⁠https://www.youtube.com/watch?v=EYATVkddIyw⁠. 

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

A security architecture that incorporates the cloud shared responsibility model, a vendor provided security stack, and network peering with one or more of the big content providers and their associated fiber networks. 

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/security-service-edge⁠

Audio reference link: Netskope (2022). What is Security Service Edge (SSE). YouTube. Available at: ⁠https://www.youtube.com/watch?v=Z9H84nvgBqw⁠ [Accessed 21 Oct. 2022].

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

A social engineering tactic in which hackers build a malicious domain to mimic a legitimate one.

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/domain-spoofing⁠

Audio reference link: ⁠“Mission Impossible Fallout - Hospital Scene.”⁠ YouTube, YouTube, 8 Oct. 2018,

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

A layer seven firewall that sits in line at the boundary between the internet and an organization's network perimeter that allows security policy enforcement and can perform certain prevention and detection tasks.

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/secure-web-gateway⁠

Audio reference link: ‌Vintage Computer Federation (2015). VCF East 9.1 - Ches’ Computer Security Adventures - Bill Cheswick. YouTube. Available at: ⁠https://www.youtube.com/watch?v=trR1cuBtcPs.

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

Digital evidence that a system or network has been breached.

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/indicator-of-compromise⁠

Audio reference link: ‌”⁠Suicide or Murder? | The Blind Banker | Sherlock⁠,” uploaded by Sherlock, 18 October 2015

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

A system that monitors for malicious or unwanted activity, and either raises alerts when such activity is detected or blocks the traffic from passing to the target.

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/intrusion-detection-system⁠

Audio reference link: “⁠Network Intrusion Detection and Prevention - CompTIA Security+ SY0-501 - 2.1⁠,” Professor Messer, uploaded 16 November, 2017

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

Hackers bypass, multifactor authentication schemes by sending a blizzard of spamming login attempts until the accounts owner accepts the MFA prompt out of desperation to make the spamming stop. 

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/mfa-prompt-bombing⁠

Audio reference link: movieclips. “⁠Sneakers (2/9) Movie Clip - Defeating the Keypad (1992) HD.⁠” YouTube, YouTube, 29 May 2011, https://www.youtube.com/watch?v=oG5vsPJ5Tos. 

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

An optional security mode for macOS and iOS that reduces the attack surface of the operating system by disabling certain commonly attacked features. 

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/apple-lockdown-mode⁠

Audio reference link: “⁠How NSO Group’s Pegasus Spyware Was Found on Jamal Khashoggi’s Fiancée’s Phone⁠,” FRONTLINE, YouTube, 18 July 2021.

Learn more about your ad choices. Visit megaphone.fm/adchoices

While our team is out on winter break, please enjoy this episode of Word Notes.

A security awareness training technique in which authorized, but fake phishing emails are sent to employees in order to measure and improve their resistance to real phishing attacks. 

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/simulated-phishing⁠

Audio reference link: ⁠“Blackhat (2014) - Hacking the NSA Scene (4/10) | Movieclips.”⁠ YouTube, YouTube, 19 Apr. 2017.

Learn more about your ad choices. Visit megaphone.fm/adchoices