Technical

Tailored specifically for IT, security and DevOp pros, our Technical blogs get you into the nitty gritty details.

Technical

Dec 52018

Supply Chain Attacks

| Senior Threat Intel Analyst

Trusting third-parties in order to quickly add infrastructure and/or expertise to your business has become a common and, in many cases, essential business practice. These trust relationships are usually built upon agreements that both parties will do their part in a responsible manner. While that may be the case, businesses in different verticals often have […]

Corey Milligan

Senior Threat Intel Analyst

Corey has more than 18 years of IT experience. Before coming to Armor, he worked his way up the Army ranks, retiring as a Chief Warrant Officer and one of the Army’s first Cyber Operations Technicians. He holds some of the industries most sought after certifications including CISSP, GCIA, GNFA, and GCTI. As a member of Armor’s Threat Response Unit, Corey provides threat intelligence support to the SOC and other divisions as needed, enhancing their efforts by collecting and analyzing open and closed source threat intelligence feeds, reporting on priority threats, identifying IOCs in support of network monitoring and incident response, and analyzing logs to identify hidden threats.

Dec 42018

Diving Deeper into Man-in-the-Middle and Brute Force Attacks

| Senior Security Architect

There is no shortage of ways for attackers to try to compromise an organization’s IT environment or an individual’s computer. From cross-site scripting to social engineering, the tactics of today’s attackers will sound familiar to cybersecurity researchers and victims alike. However, the most effective cyberattacks are often not the most sophisticated, as capturing low-hanging fruit […]

Chris Hinkley, OSCP, CISSP

Senior Security Architect

As senior security architect of Armor, Chris Hinkley utilizes a decade of security expertise to design, test and deploy next generation security processes and techniques for the cloud. His work at Armor was instrumental in Armor being one of the first cloud companies globally to achieve PCI DSS compliance. Prior to Armor, Hinkley worked as a Web Developer for TargetScope, an interactive marketing and Web development company. In that role he created everything from website animations to complex and dynamic product configurations using the latest technology and development frameworks. With Armor, Hinkley has held a number of security and technology-related roles, including security engineer, lead engineer and support manager. In those roles he has serviced thousands of FireHost customer servers, including Windows and Linux, and overseen the security of all hosting environments to meet PCI, HIPAA and other compliance guidelines. Hinkley is a sought after speaker and author on cloud, security and open source topics, publishing regular columns in SecurityWeek and other industry magazines. Hinkley is a Certified Information Systems Security Professional (CISSP).

Nov 202018

The Anatomy of an Attack: Diving Deeper into Social Engineering

| Head of the Threat Resistance Unit

What happens when threat actors are faced with an impenetrable wall of perimeter defenses, hardened machines, and state-of-the-art security solutions? Well, first, the most determined attackers won’t easily throw in the towel, that’s for sure. Not when they could always use old-fashioned social engineering to exploit what’s usually the weakest link in an organization’s security–its people.    As […]

Troy Dearing

Head of the Threat Resistance Unit

Troy Dearing is the Head of the Threat Resistance Unit and oversees all cyber threat intelligence & threat hunting initiatives. He initially joined Armor’s TRU as a Senior Ethical Hacker leveraging 22 years of expertise in IT and cyber security.

Before joining Armor, Troy was a Computer Network Operator for the NSA, where he was tasked with performing Computer Network Exploitation operations. He retired from the Marine Corps after 20 years of service with distinction serving as a network intelligence subject matter expert, instrumental in the creation of a service level course on network exploitation and analysis. Early in his career he was selected for an internship at the NSA’s Red Team which established his foundation in cyber security expertise. He graduated magna cum laude from the University of Maryland University College attaining his Bachelor of Science in Cybersecurity. Troy is a Certified Information Systems Security Professional (CISSP).

Oct 302018

Retailers & PII, Oh My!

| Senior Ethical Hacker

The holidays are often thought of as the season for giving. But in the retail industry, it is also a season of cyberattacks, fraud, and identity theft. In the world of cybercrime, the spirit of giving is replaced by the spirit of scheming, and threat actors are hard at work.   Retailers must be extra diligent in protecting the precious […]

Geoffrey Pamerleau

Senior Ethical Hacker

Geoffrey Pamerleau joined Armor as a senior ethical hacker bringing 10 years of expertise in IT and cyber security to the Threat Resistance Unit (TRU). Before joining Armor, Geoff was a Computer Network Operator for the NSA, where he was tasked with performing computer network exploitation operations. He served in the United States Air Force with distinction as a Cyberspace Operations Officer. Prior to his commission, Geoff received a Bachelor’s in Computer Science with a focus on Cyberwarfare from the United States Air Force Academy. While there, Geoff was a member of the Academy’s Cyber Warfare Club and competed in National and International information security competitions. Geoff has certifications in incident handling and penetration testing from SANS and Offensive Security. (GCIH, GPEN, and OSCP).

Oct 232018

Diving Deeper: Malware

| Head of Incident Response and Forensics

In 1971, Creeper, perhaps the earliest documented occurrence of malware, was created in an experiment designed to test how a program might move between computers. Fast forward to 2018, and the seeds planted in that experiment decades ago have grown into something far more dangerous – countless malware variants infecting personal and enterprise networks, raking […]

Kevin Dickinson

Head of Incident Response and Forensics

Kevin Dickinson is the Head of Armor's Incident Response and Forensics division and brings 10 years of experience in computer forensics and security to the organization. His team works closely together with Armor's Threat Resistance Unit (TRU) and Indications and Warnings (I&W) teams to stay abreast of the rapidly evolving threat landscape and provide resolution on a wide-range of security issues. Kevin demonstrates a strong understanding of attacker techniques and methodologies, providing a uniquely qualified perspective in identifying and investigating potential security incidents and minimizing threat actors. Kevin is a GIAC Certified Incident Handler (GCIH) and Offensive Security Certified Professional (OSCP).

Oct 172018

Security Considerations for Blockchain Technology

| Senior Ethical Hacker

Talk of blockchain technology often comes with a promise of better data management and security. History has shown, however, that full-proof cybersecurity is elusive, and new technologies always bring new security needs to focus on. In this regard, blockchain technology is no different. What is blockchain? Before going any further, let’s take a moment to […]

Geoffrey Pamerleau

Senior Ethical Hacker

Geoffrey Pamerleau joined Armor as a senior ethical hacker bringing 10 years of expertise in IT and cyber security to the Threat Resistance Unit (TRU). Before joining Armor, Geoff was a Computer Network Operator for the NSA, where he was tasked with performing computer network exploitation operations. He served in the United States Air Force with distinction as a Cyberspace Operations Officer. Prior to his commission, Geoff received a Bachelor’s in Computer Science with a focus on Cyberwarfare from the United States Air Force Academy. While there, Geoff was a member of the Academy’s Cyber Warfare Club and competed in National and International information security competitions. Geoff has certifications in incident handling and penetration testing from SANS and Offensive Security. (GCIH, GPEN, and OSCP).

Oct 112018

Cryptojacking & Blockchain

| Senior Ethical Hacker

Exploiting the ecosystem around cryptocurrencies has become big business for cybercriminals. During the past few years, cybersecurity firms and observers have noted a spike in everything from phishing scams targeting e-wallet credentials to targeting the initial coin offerings (ICO) that serve as crowdfunding for many companies.   Cryptojacking  Adding to this list of challenges is cryptojacking. […]

Geoffrey Pamerleau

Senior Ethical Hacker

Geoffrey Pamerleau joined Armor as a senior ethical hacker bringing 10 years of expertise in IT and cyber security to the Threat Resistance Unit (TRU). Before joining Armor, Geoff was a Computer Network Operator for the NSA, where he was tasked with performing computer network exploitation operations. He served in the United States Air Force with distinction as a Cyberspace Operations Officer. Prior to his commission, Geoff received a Bachelor’s in Computer Science with a focus on Cyberwarfare from the United States Air Force Academy. While there, Geoff was a member of the Academy’s Cyber Warfare Club and competed in National and International information security competitions. Geoff has certifications in incident handling and penetration testing from SANS and Offensive Security. (GCIH, GPEN, and OSCP).

Oct 42018

Cybersecurity Attacks vs. Physical Disasters

| Senior Ethical Hacker

Natural disasters caused by extreme weather conditions, particularly hurricanes and typhoons, are becoming more devastating than ever. But while the World Economic Forum has tagged extreme weather events and natural disasters respectively as the top two global risks most likely to occur, a purely man-made risk isn’t far behind. Number three on that list is […]

Geoffrey Pamerleau

Senior Ethical Hacker

Geoffrey Pamerleau joined Armor as a senior ethical hacker bringing 10 years of expertise in IT and cyber security to the Threat Resistance Unit (TRU). Before joining Armor, Geoff was a Computer Network Operator for the NSA, where he was tasked with performing computer network exploitation operations. He served in the United States Air Force with distinction as a Cyberspace Operations Officer. Prior to his commission, Geoff received a Bachelor’s in Computer Science with a focus on Cyberwarfare from the United States Air Force Academy. While there, Geoff was a member of the Academy’s Cyber Warfare Club and competed in National and International information security competitions. Geoff has certifications in incident handling and penetration testing from SANS and Offensive Security. (GCIH, GPEN, and OSCP).

Sep 202018

Diving Deeper: Phishing & BEC Scams

| Head of the Threat Resistance Unit

We continue with our ‘Diving Deeper’ series by discussing attack vectors that take advantage of human gullibility through what is arguably the most widely used business application on the Internet – email. We start by going through a brief history and introduction of phishing, spear phishing, and BEC scams; talk about how they are impacting […]

Troy Dearing

Head of the Threat Resistance Unit

Troy Dearing is the Head of the Threat Resistance Unit and oversees all cyber threat intelligence & threat hunting initiatives. He initially joined Armor’s TRU as a Senior Ethical Hacker leveraging 22 years of expertise in IT and cyber security.

Before joining Armor, Troy was a Computer Network Operator for the NSA, where he was tasked with performing Computer Network Exploitation operations. He retired from the Marine Corps after 20 years of service with distinction serving as a network intelligence subject matter expert, instrumental in the creation of a service level course on network exploitation and analysis. Early in his career he was selected for an internship at the NSA’s Red Team which established his foundation in cyber security expertise. He graduated magna cum laude from the University of Maryland University College attaining his Bachelor of Science in Cybersecurity. Troy is a Certified Information Systems Security Professional (CISSP).

Sep 112018

Diving Deeper: DDoS Attacks

| Head of the Threat Resistance Unit

Distributed Denial-of-Service (DDoS) attacks are not the most sophisticated attacks to launch, but they certainly can be costly. They cause outages, force businesses to take down their websites, and frustrate both e-commerce customers and businesses.   A favorite weapon of hacktivists, DDoS is an effective tool for anyone looking to disrupt an organization’s operations, whether they are disgruntled former employees […]

Troy Dearing

Head of the Threat Resistance Unit

Troy Dearing is the Head of the Threat Resistance Unit and oversees all cyber threat intelligence & threat hunting initiatives. He initially joined Armor’s TRU as a Senior Ethical Hacker leveraging 22 years of expertise in IT and cyber security.

Before joining Armor, Troy was a Computer Network Operator for the NSA, where he was tasked with performing Computer Network Exploitation operations. He retired from the Marine Corps after 20 years of service with distinction serving as a network intelligence subject matter expert, instrumental in the creation of a service level course on network exploitation and analysis. Early in his career he was selected for an internship at the NSA’s Red Team which established his foundation in cyber security expertise. He graduated magna cum laude from the University of Maryland University College attaining his Bachelor of Science in Cybersecurity. Troy is a Certified Information Systems Security Professional (CISSP).