Brian Epstein
ep@infosec.exchange

@chronovore this is great! Thanks for sending it!

May 02, 2025
Brian Epstein
ep@infosec.exchange

I found this video by 3Blue1Brown to be an excellent, if not the best, explanation of Quantum Computing. I highly recommend it and the resources he lists as well. https://youtu.be/RQWpF2Gb-gU

May 02, 2025
Brian Epstein
ep@infosec.exchange

New SSL/TLS certs to each live no longer than 47 days by 2029

The depreciation schedule is now as follows:

March 15, 2026: renewed every 200 days.

March 15, 2027: down to 100 days.

March 15, 2029: limited to 47 days, and 10 days for DCVs.

https://www.theregister.com/AMP/2025/04/14/ssl_tls_certificates/

April 15, 2025
Brian Epstein
ep@infosec.exchange

FBI report: Violent Online Networks Target Vulnerable and Underage Populations Across the United States and Around the Globe

Stay safe out there and learn to recognize the markers of abuse for our vulnerable anger underage population.

https://www.ic3.gov/PSA/2025/PSA250306

March 10, 2025
Brian Epstein
ep@infosec.exchange
January 13, 2025
Brian Epstein
ep@infosec.exchange

This type of identity theft specifically targets kids. Definitely something to be aware of.
'Frankenstein Fraud' Is Quickly Becoming the Most Dangerous Form of Identity Theft
https://www.cnet.com/personal-finance/frankenstein-fraud-is-quickly-becoming-the-most-dangerous-form-of-identity-theft/

January 08, 2025
Brian Epstein
ep@infosec.exchange

FBI: Criminals Use Generative Artificial Intelligence to Facilitate Financial Fraud. It was only a matter of time.
https://www.ic3.gov/PSA/2024/PSA241203

December 04, 2024
Brian Epstein
ep@infosec.exchange

myE-Verify can lock your Social Security Number to help protect yourself from identity theft. It is similar to freezing your credit, but for your SSN. https://myeverify.uscis.gov/

November 22, 2024
Brian Epstein
ep@infosec.exchange
October 23, 2024
Brian Epstein
ep@infosec.exchange

Announcing Approval of Three Federal Information Processing Standards (FIPS) for Post-Quantum Cryptography. https://csrc.nist.gov/News/2024/postquantum-cryptography-fips-approved

August 13, 2024
Brian Epstein
ep@infosec.exchange

This is a compelling paper even though they say, "we are not able to break CRYSTALS-Kyber yet. We leave the task of improving the approximation factor of our quantum algorithm to future work." Stay tuned! eprint.iacr.org/2024/555
Source (I know, I know): https://x.com/monsoon0/status/1778665371907895639?t=1at1E2syTEJ7jOT_vhPA2g&s=09

April 12, 2024
Brian Epstein
ep@infosec.exchange

How Google’s 90-day TLS certificate validity proposal will affect enterprises https://www.helpnetsecurity.com/2024/04/11/tls-certificate-renewal-proposal/

April 11, 2024
Brian Epstein
ep@infosec.exchange

"Finance worker pays out $25 million after video call with deepfake ‘chief financial officer’." Be careful out there, folks. Create and follow procedures to ensure this doesn't happen to you. https://www.cnn.com/2024/02/04/asia/deepfake-cfo-scam-hong-kong-intl-hnk/index.html

February 05, 2024
Brian Epstein
ep@infosec.exchange
February 01, 2024
Brian Epstein
ep@infosec.exchange

Ransomware attacks backups. This is why read-only backups are crucial. Also, detect if your newest backup is much larger than expected, you might be backing up a maliciously encrypted file that is going to ruin your day in a year.
https://www.helpnetsecurity.com/2024/01/12/finland-akira-ransomware/

January 15, 2024
Brian Epstein
ep@infosec.exchange
October 21, 2023
Brian Epstein
ep@infosec.exchange

NSA, FBI, and CISA Release Cybersecurity Information Sheet on #Deepfake Threats. I thought this was the most interesting read in a long time. https://www.cisa.gov/news-events/alerts/2023/09/12/nsa-fbi-and-cisa-release-cybersecurity-information-sheet-deepfake-threats

September 13, 2023
Brian Epstein
ep@infosec.exchange
September 13, 2023