Blog

Paulo Shakarian

Recent Posts

Watch Now: Hackers Exploit Low/Med. CVSS Vulnerabilities

Paulo Shakarian on Sep 24, 2020 6:00:00 AM

 

Today, we look at risks endured due to an over-reliance on the NIST CVSS ranking system.  While it has its uses, it was not designed to be predictive of threats to vulnerabilities.

Exposed Vulnerabilities on a DoD Server: Why Intelligence Should Have Driven Early Mitigation

Paulo Shakarian on Sep 9, 2020 6:30:00 AM

Last week it was reported that two RCE vulnerabilities were found to be exposed on a DoD server.  These were apparently exposed for about a year.  

Avoiding Ransomware: Case Study on University of Utah's $457,000 Payment to Malicious Hackers

Paulo Shakarian on Aug 23, 2020 3:32:42 PM

 

At the end of last week, ZD Net reported that the University of Utah paid $457,000 to malicious hackers who threatened to disclose university information following a ransomware attack...

LibreHealth Open Source Software Flaws

Paulo Shakarian on Jul 23, 2020 8:00:39 AM

Last week, on July 14, 2020, security researchers at BishopFox Labs (BFL) disclosed new vulnerabilities in the electronic health record (EHR) system LibreHealth EHR 2.0 that they had discovered in..

WAFs and Ignored Threats

Paulo Shakarian on Jul 13, 2020 11:37:11 AM

 

There is growing, general dissatisfaction with Web Application Firewalls (WAFs) as highlighted in a recent study by Neustar and subsequent article by DarkReading.

Identify and Mitigate Systemic Cyber Threat

Paulo Shakarian on Jun 1, 2020 6:11:29 AM

 

For CISO’s responsible for a portfolio of companies – whether at a private equity firm, holding company, or even just a large firm with multiple business units, understanding cyber threats that..

Interview with Ed Amoroso of TAG Cyber

Paulo Shakarian on May 18, 2020 8:03:41 AM

 

Last year, I had the good fortune to sit down and talk with Ed Amoroso, CEO of TAG Cyber, a top-notch cybersecurity research firm. 

ML for Cybersecurity

Paulo Shakarian on May 13, 2020 9:19:28 AM

 

Ever since we started CYR3CON, we are continually surprised at the hype cycle surrounding the application of machine learning.

Video blog: The Basics on Vulnerability Prioritization

Paulo Shakarian on Apr 27, 2020 5:30:40 AM

 

Today’s video discusses the basics on vulnerability prioritization.  In it we discuss how mounting vulnerability disclosures – which averaged over 1,000 per month last year lead to a difficult..

Video blog: AI and Cyber Security

Paulo Shakarian on Apr 21, 2020 8:29:30 AM

 

CYR3CON CEO discusses AI and cybersecurity with former AT&T CISO Ed Amoroso, who now leads TAG Cyber.  Learn more about how AI can be properly leveraged in cybersecurity.

Contact Us

Tempe, AZ 85280

Email: sales@cyr3con.ai
Phone: (833) 229-0110

Take the next step to be in the know, now.

Complete the form and a member of the CYR3CON team will contact you shortly to discuss your cyber security needs.