cyberattacks

cyberattacks

Jul 102018

#TBT: A History of Cyber Threats

| Senior Ethical Hacker

Ransomware, fileless attacks, cryptomining malware, IoT botnets – these are just some of the latest entrants in the ever-growing horde of cyber threats. While many of these threats come and go, a lot of them have withstood the test of time. In the spirit of Throwback Tuesday* (#TBT), we thought we’d highlight a few of the threats that have been hounding us since… well, forever.  […]

Geoffrey Pamerleau

Senior Ethical Hacker

Geoffrey Pamerleau joined Armor as a senior ethical hacker bringing 10 years of expertise in IT and cyber security to the Threat Resistance Unit (TRU). Before joining Armor, Geoff was a Computer Network Operator for the NSA, where he was tasked with performing computer network exploitation operations. He served in the United States Air Force with distinction as a Cyberspace Operations Officer. Prior to his commission, Geoff received a Bachelor’s in Computer Science with a focus on Cyberwarfare from the United States Air Force Academy. While there, Geoff was a member of the Academy’s Cyber Warfare Club and competed in National and International information security competitions. Geoff has certifications in incident handling and penetration testing from SANS and Offensive Security. (GCIH, GPEN, and OSCP).

Jun 262018

You Can’t Afford a Cyberattack

| Head of the Threat Resistance Unit

When it comes to physical threats, business decision makers and executives are quick to invest in preventative measures that will thwart attacks. Whether it’s putting locks on front doors, storing critical materials in a safe or buying insurance, it’s easy to spend money on asset protection when there’s a tangible threat. When it comes to […]

Troy Dearing

Head of the Threat Resistance Unit

Troy Dearing is the Head of the Threat Resistance Unit and oversees all cyber threat intelligence & threat hunting initiatives. He initially joined Armor’s TRU as a Senior Ethical Hacker leveraging 22 years of expertise in IT and cyber security.

Before joining Armor, Troy was a Computer Network Operator for the NSA, where he was tasked with performing Computer Network Exploitation operations. He retired from the Marine Corps after 20 years of service with distinction serving as a network intelligence subject matter expert, instrumental in the creation of a service level course on network exploitation and analysis. Early in his career he was selected for an internship at the NSA’s Red Team which established his foundation in cyber security expertise. He graduated magna cum laude from the University of Maryland University College attaining his Bachelor of Science in Cybersecurity. Troy is a Certified Information Systems Security Professional (CISSP).

Jun 142018

Biometric Authentication: Is It Effective?

| Lead Ethical Hacker

In today’s world of security concerns, multifactor authentication plays a large role in proving one’s identity. The requirements of multifactor authentication include verifying what you have (such as a key, document or badge), what you know (like a name, password or secret) and who you are (such as a fingerprint or facial features). Being able to verify […]

Chris Hinkley, OSCP, CISSP

Lead Ethical Hacker

As Lead Ethical Hacker at Armor, Chris Hinkley utilizes a decade of security expertise to design, test and deploy next generation security processes and techniques for the cloud. His work at Armor was instrumental in Armor being one of the first cloud companies globally to achieve PCI DSS compliance. Prior to Armor, Hinkley worked as a Web Developer for TargetScope, an interactive marketing and Web development company. In that role he created everything from website animations to complex and dynamic product configurations using the latest technology and development frameworks. With Armor, Hinkley has held a number of security and technology-related roles, including security engineer, lead engineer and support manager. In those roles he has serviced thousands of FireHost customer servers, including Windows and Linux, and overseen the security of all hosting environments to meet PCI, HIPAA and other compliance guidelines. Hinkley is a sought after speaker and author on cloud, security and open source topics, publishing regular columns in SecurityWeek and other industry magazines. Hinkley is a Certified Information Systems Security Professional (CISSP).

May 32018

The Good, Bad & Ugly of IoT Security

| Senior Ethical Hacker

Through smart integrations of electronics, sensors and connectivity, the internet of things (IoT) has enabled us to automate an increasing number of day-to-day tasks. On the flip side, it’s also bringing in new threats. In fact, it didn’t take much time for IoT devices to be responsible for some of the largest DDoS attacks in […]

Geoffrey Pamerleau

Senior Ethical Hacker

Geoffrey Pamerleau joined Armor as a senior ethical hacker bringing 10 years of expertise in IT and cyber security to the Threat Resistance Unit (TRU). Before joining Armor, Geoff was a Computer Network Operator for the NSA, where he was tasked with performing computer network exploitation operations. He served in the United States Air Force with distinction as a Cyberspace Operations Officer. Prior to his commission, Geoff received a Bachelor’s in Computer Science with a focus on Cyberwarfare from the United States Air Force Academy. While there, Geoff was a member of the Academy’s Cyber Warfare Club and competed in National and International information security competitions. Geoff has certifications in incident handling and penetration testing from SANS and Offensive Security. (GCIH, GPEN, and OSCP).

Apr 172018

Enough with the Cybersecurity Talent Shortage

| Head of Security

Everyone, including us, continues to harp about the cybersecurity talent gap. But while we recognize the problem, no one ever offers advice or recommendations on how key organizations, such as educational institutions, security groups and private companies, can help mend it and begin producing educated, experienced workers in troves. The cybersecurity talent gap in numbers […]

Wayne Reynolds

Head of Security

Head of Security, Wayne Reynolds, manages the cyber and physical security operations at Armor. This unique, dual responsibility extends beyond the typical approach many cloud providers take in securing their own operations while leaving customers to fend for themselves. Key to establishing the strategic and operational vision at Armor, Wayne oversees the execution of Security Incident Management, Security Infrastructure, Vulnerability Threat Management, Threat Intelligence, Corporate Security, and Physical Security within both Armor’s corporate and customer environments. He leads Armor's Friendly Network Forces, a one-of-a-kind internal penetration testing organization designed to validate the company’s own security measures and evaluate risk from new or unforeseen threats. Prior to Armor, Wayne served in the U.S. Marine Corps for nearly 20 years where he led the Tactical Information Technology and Avionics Departments. In his civilian career, he has led organizations for a wide range of businesses including Conde Nast Publication, Copart Auto Auctions, Aerojet-Rocketdyne, Citi Group, and GameStop.

Apr 122018

Crisis Communications in the Wake of a Cyberattack

| Head of Security

More than a decade ago, TJ Maxx experienced one of the earliest major credit card breaches, and it led to a significant negative impact on customer loyalty and profitability. Today, however, it appears headlines are littered with new reports of large-scale data breaches compromising customer’s personal and financial information… yet customers keep coming back. What […]

Wayne Reynolds

Head of Security

Head of Security, Wayne Reynolds, manages the cyber and physical security operations at Armor. This unique, dual responsibility extends beyond the typical approach many cloud providers take in securing their own operations while leaving customers to fend for themselves. Key to establishing the strategic and operational vision at Armor, Wayne oversees the execution of Security Incident Management, Security Infrastructure, Vulnerability Threat Management, Threat Intelligence, Corporate Security, and Physical Security within both Armor’s corporate and customer environments. He leads Armor's Friendly Network Forces, a one-of-a-kind internal penetration testing organization designed to validate the company’s own security measures and evaluate risk from new or unforeseen threats. Prior to Armor, Wayne served in the U.S. Marine Corps for nearly 20 years where he led the Tactical Information Technology and Avionics Departments. In his civilian career, he has led organizations for a wide range of businesses including Conde Nast Publication, Copart Auto Auctions, Aerojet-Rocketdyne, Citi Group, and GameStop.

Mar 12018

Business Continuity and Disaster Recovery: Prepare for When, Not If

| Head of Security

As technologies become more sophisticated, so do cybercrimes and the threat actors behind them. In 2017 alone, these types of threats made more headlines than ever before – so much so that ABC’s hit drama Grey’s Anatomy highlighted the issue in its most recent Fall finale.  It’s estimated that the cost of cybercrimes against enterprises […]

Wayne Reynolds

Head of Security

Head of Security, Wayne Reynolds, manages the cyber and physical security operations at Armor. This unique, dual responsibility extends beyond the typical approach many cloud providers take in securing their own operations while leaving customers to fend for themselves. Key to establishing the strategic and operational vision at Armor, Wayne oversees the execution of Security Incident Management, Security Infrastructure, Vulnerability Threat Management, Threat Intelligence, Corporate Security, and Physical Security within both Armor’s corporate and customer environments. He leads Armor's Friendly Network Forces, a one-of-a-kind internal penetration testing organization designed to validate the company’s own security measures and evaluate risk from new or unforeseen threats. Prior to Armor, Wayne served in the U.S. Marine Corps for nearly 20 years where he led the Tactical Information Technology and Avionics Departments. In his civilian career, he has led organizations for a wide range of businesses including Conde Nast Publication, Copart Auto Auctions, Aerojet-Rocketdyne, Citi Group, and GameStop.

Dec 52017

S.O.S. – Why Shiny Object Syndrome Is the Enemy of Security, Part 1

| Chief Information Security Officer

What is Shiny Object Syndrome and What Does It Have to Do with Information Security? There are many descriptions for S.O.S. out there, but the following may be the most concise I’ve seen: “Shiny Object Syndrome (Objectivius Shinium Syndromus) is defined as the attraction to objects that exhibit a glassy, polished, gleaming or otherwise shiny […]

Kurt Hagerman

Chief Information Security Officer

Kurt Hagerman has over twenty-five years in the field of information technology, including over 6 years as Chief Information Security Officer at Armor. He is responsible for the governance, risk and compliance side of the security mission for customer facing products. He regularly consults with Armor prospects and customers on PCI, HIPAA and financial services regulations and helps them understand how these regulations impact their business and how Armor can help them meet their regulatory responsibilities. Kurt regularly speaks and writes on information security topics in the payments and health care spaces as well as on cloud security. He holds CISA and CISSP certifications and is an active participant with local chapters of ISACA, CSA and ISSA.

Prior to joining Armor, he was a Managing Director and national PCI Practice Director for Coalfire Systems, Inc., a leading IT Security GRC company. Kurt has conducted hundreds of security reviews and audits across a number of industries including the payment space, healthcare, financial services and higher education. During his twenty-five plus years in the field of information technology, he has held a wide number of positions encompassing many IT and security disciplines including: network engineering; systems engineering; security engineering; and IT/Security auditing and compliance.

Nov 252017

Navigating AWS re:Invent: A First-timer’s Guide

You finally decided to see what all the fuss over the cloud is about by attending the 2017 AWS re: Invent conference, Las Vegas, NV, Nov. 27-Dec. 1. Let me be one of the first to welcome you to the cloud industry’s largest and most dynamic shows, breaking records with over 30,000 attendees at last […]

Oct 122017

Why Cloud Security Matters For Business Leaders

National Cyber Security Awareness Month (NCSAM) seems like a quaint idea these days, does it not?  Unless you’ve been living under a rock, it’s tough not to be hyperaware of the nearly endless stream of news around high-profile breaches and new threat actor exploits. But like most things – awareness means little unless it translates […]