Defending Against the “Compromised Insider”

September 28, 2018
Dr. John Michener

Casaba's Chief Scientist Dr. John Michener discusses the risks and defenses around the compromised insider for utility companies.

Radio interview on the Tech Night Owl

April 14, 2018
Gene Steinberg at the Tech Night Owl

Gene Steinberg interviews Casaba's Chris Weber about security and privacy in today's world of big data, advertising, and social media.

HACKERS DIDN'T HAVE TO BE EXPERTS TO MAKE 'DESPACITO' DISAPPEAR

April 11, 2018
LILY HAY NEWMAN at Wired

Casaba's Chris Weber weighs in on the value of the VEVO account hijack on Youtube's platform.

https://commons.wikimedia.org/wiki/File:Meltdown_with_text.svg

The Hidden Toll of Fixing Meltdown and Spectre

January 12, 2018
Lily Hay Newman at Wired

"I remember first looking at it and thinking 'oh, shit,'" says John Michener, the chief scientist at the security consulting firm Casaba Security, which has helped retail vendors with Meltdown and Spectre remediation.

https://www.flickr.com/photos/156555495@N04/35611264264

Top Holiday Cyber Security Tips

November 17, 2017
Jasmine Cooper at WGN

Casaba's Jason Glassberg shares his tips on how to protect your devices and data over the holidays.

https://www.flickr.com/photos/143601516@N03/28011015990

Why Halting Social Media Use in the Workplace Fails

November 30, 2017
Ellen Chang at The Street

Casaba's Chief Scientist John Michener weighs in on the risks of social media in the workplace, and why blocking access isn't always the right solution.

Virtual Case Notes: No Internet Required for ‘aIR-Jumper’ to Manipulate Hacked Security Cameras

October 5, 2017
Laura French at Forensic Magazine

I spoke with Chris Weber, co-founder and managing principal of Casaba Security, about these types of covert “air gap” attacks that rely on subtle changes in light, sound—even temperature—to send coded messages to and from an attacker and a compromised, non-internet-connected device.

Employees Who Share Passwords Often Bear Responsibility for Hacks

October 4, 2017
Ellen Chang at The Street

The majority of cyber attacks begin with a phishing email because the hacker is targeting user passwords, and when they are reused by employees on several accounts, 'it's game over,' said Jason Glassberg, co-founder of Casaba Security, a Redmond, Wash.-based white hat hacking firm.

MIKE STEWART/AP

ALL THE WAYS EQUIFAX EPICALLY BUNGLED ITS BREACH RESPONSE

September 24, 2017
Lily Hay Newman at Wired

"Equifax sits on the crown jewels of what we consider personally identifying information," says Jason Glassberg, cofounder of the corporate security and penetration testing firm Casaba Security. "You’d think a company like that, guarding what they’re guarding, would have a heightened sense of awareness and that clearly was not the case."

Top 10 Targets on Hackers' Hit List

August 23, 2017
Ellen Chang at The Street

Energy companies and the healthcare industry along with others have not kept up with the pace of other industries against malicious hackers. These are the top 10 targets for hackers.

Virtual Case Notes: ‘Google Docs’ Phishing Scam Tricked Users

May 12, 2017
Laura French at Forensic Magazine

A closer look at the Google Docs phishing case and abuse of OAuth.

SMBs continue to be a target of cybercriminals

May 5, 2017
Kacy Zurkus at CSO

"There seems to be a time warp between the Fortune 100 companies and today's SMBs. Casaba Security's Chris Weber said that what SMBs can learn from enterprises can be summed up in one word: Everything."

Fake Google Docs

Virtual Case Notes: ‘Google Docs’ Phishing Scam Tricked Users

May 12, 2017
Laura French at Forensic Mag

Users were duped into installing a phony 'Google Docs' app which granted the attacker access to their Google account.

Michael Kelley at Yahoo Finance

As tensions rise with Russia, U.S. colleges still pay for Snowden speeches

April 11, 2017
Michael Kelley at Yahoo Finance

Casaba co-founder Chris Weber, who has written about government surveillance since before the PATRIOT Act of 2001, weighs in on perceptions of Snowden in light of recent tensions with Russia.

Windows IT Pro

Prevent criminal hackers who target IoT to gather private data and guess passwords

March 20, 2017
Mass Transit

Casaba's Chief Scientist John Michener discusses threats to IoT in enterprise envrionments.

Mass Transit

Top 7 Security Mistakes When Designing a Mobile App

February 10, 2017
Mass Transit

Casaba Co-Founder Chris Weber discusses 7 security topics to be aware of when building mobile apps.

Wired

Inside LeakedSource and Its Database of 3 Billion Hacked Accounts

December 19, 2016
Wired

Casaba's Chief Scientist John Michener weighs in on the LeakedSource breach notification service.

Microsoft

Securing the Internet of Things: Introducing the Security Program for Azure IoT

October 26, 2016
Microsoft Secure Blog

As part of Microsoft's Security Program for Azure IoT, Casaba Security is recognized as a best-in-class expert for securing the Internet of Things.

Electric Light & Power

Defending Against the Ransomware Threat

August 22, 2016
Electric Light & Power

Electric power companies face a range of threats, from physical sabotage and malicious insiders to vulnerable network ports easily discoverable by almost anyone using the Shodan search engine.

FOX Media

Trump wants to shut parts of Internet to fight ISIS

December 16, 2015
FOX

Republican presidential candidate Donald Trump is renewing his call to hit ISIS hard by “knocking the hell out" of the terror group's Internet capabilities.

Youtube / Cisco

Here's the truth about the frightening hacking scenario in Cisco's ads

December 3, 2015
Business Insider

Cisco recently released a string of advertisements with a frightening scenario.

Image from mynorthwest.com

Chris Weber on the debate over encrypted apps following the Paris attack

December 1, 2015
KIRO Radio

The NSA's controversial phone spying program, supposedly, expired on Sunday. But there's still a debate over what the feds should have access to. We spoke with Chris Weber, co-founder of Casaba Security in Redmond, WA

Robert Churchill | Getty Images

Why more companies are using the cloud to fight cyberthreats

November 14, 2015
CNBC

Harnessing the cloud for cybersecurity

Image from Thinkstock via csoonline.com

Hacked Opinions: The legalities of hacking – Samuel Bucholtz

November 3, 2015
CSO Online

Samuel Bucholtz talks about hacking regulation and legislation

Image from Wikipedia

Back-to-School Cybersecurity - Seven Things Every College Student Should Do

August 5, 2015
Huffington Post

Jason Glassberg of Casaba provides some tips for college students.

Chris Weber on Q13 FOX

[video] Can computer glitches like the one that took down NYSE be prevented?

July 9, 2015
Q13 FOX

Chris Weber of Casaba Security is interviewed on Seattle's Q13 FOX News about the possibility of cyberattack in the NYSE outage.

AP Photo/Brian Snyder

Security experts: Israeli spy virus targeted hotels used for Iran nuke talks

June 10, 2015
Slate

Chris Weber of Casaba Security is quoted by BI describing Duqu 2.0 as an "extremely advanced malware platform with delivery mechanisms on part with Stuxnet."

http://pixabay.com/en/money-coins-euro-coins-currency-515058/

What to Do When Ransomware Takes Your Computer Hostage

June 10, 2015
Slate

So what do you do if you accidently fall victim to ransomware? Well, the first thing you may want to do is alert law enforcement, said Jason Glassberg...

https://en.wikipedia.org/wiki/Internal_Revenue_Service#/media/File:IRS.svg

Are You 'Over-Exposed' Online? Lessons From IRS Hack

May 28, 2015
FOX Business

Chris Weber said consumers should get identity protection and credit monitoring for themselves and their children, from companies such as Equifax or Experian. He said it’s important to protect children too, as their personal information may be found on social media and certain health-care websites.

http://pixabay.com/en/network-iot-internet-of-things-782707/

11 experts discuss the industrial Internet of Things

May 19, 2015
Control Design

International panel of IoT practitioners stress solutions, security and connectivity.

New WiFi Threat for Hotels - Security Tips for Travelers

Mar 27, 2015
Huffington Post

It's never a good idea to connect to the public WiFi network at a hotel (or anywhere else for that matter), but here's yet another reason why travelers should be ...

Will 2015 Be the Year of the Healthcare Hack?

Mar 26, 2015
Huffington Post

But until recently, most of these incidents were due to physical security mistakes like lost or stolen laptops - not sophisticated cyber attacks on the network.

Cybersecurity expert: Expect more cyber attacks on health care

Mar 23, 2015
Puget Sound Business Journal (Seattle) (blog)

According to Verizon's 2014 Data Breach Investigations Report, these accounted for 46 percent and 15 percent of all security incidents in 2013, respectively.

Experts are skeptical that Hillary Clinton's 'homebrew' email server could withstand cyberattacks

Mar 10, 2015
Business Insider

Had there been a security hole in Clinton's server, it would have been fairly easy for a hacker to infiltrate the network and have access to her entire inbox," security expert Chris Weber, co-founder of Casaba Security, told Business Insider.

Experts: Hillary Clinton better have had a very good tech team

Mar 10, 2015
Business Insider Australia

On the nation-state level, bad guys have the ability to pinpoint security holes that other ... Chris Weber, co-founder of Casaba Security, told Business Insider.

Why Apple Pay Isn't As Secure As You Think

Mar 8, 2015
Motley Fool

Both sides play a role because Apple could have done more, Samuel Bucholtz, co-founder of Casaba Security told CNBC. "But where the fraud is really ...

Is Apple Pay Safe? Fraudulent Activities Raise Questions

Mar 7, 2015
Money Talks News (blog)

“Both sides play a role because Apple could have done more,” said Samuel Bucholtz, co-founder of Casaba Security. “But where the fraud is really coming from ...

http://pixabay.com/en/money-coins-euro-coins-currency-515058/

Who's at fault in Apple Pay fraud Apple or banks?

Mar 5, 2015
CNBC

Both sides play a role because Apple could have done more, said Samuel Bucholtz, co-founder of Casaba Security. "But where the fraud is really coming from ...

What You Need to Know About 'Drive-By' Cyber Attacks

Feb 4, 2015
Fox Business

Jason Glassberg is co-founder of Casaba Security, a white hat hacking firm that performs hacking tests and security consulting for banks, retailers, government ...

http://pixabay.com/en/clouds-mammatus-mammatus-cloud-747254/

[video] Are cloud services like Box safe?

Jan, 2015
FOX News

Casaba Security Co-Founder Samuel Bucholtz on cloud computing, information safety and Box.

[video] Will Obama's new cyber security plan work?

Jan 16, 2015
FOX News

Casaba's Jason Glassberg on how the imperfect proposals offer important improvements over the status quo

A No-B.S. Look at the Top Cyber Threats for 2015

Jan 9, 2015
Huffington Post

A number of security firms will be coming out with dire predictions for ever more exotic, extreme and dangerous attacks that could potentially occur in 2015.

http://pixabay.com/en/matrix-earth-global-international-434036/

[video] Can cyber-attacks be stopped?

Dec 18, 2014
FOX Business

Casaba Security Co-Founder Jason Glassberg explains the different types of cyber-attacks and how companies may be impacted by hacks.

(c) Associated Press

How Kim Jong Un's scrappy cyberarmy operates

Dec 18, 2014
CNBC

This incident covers the broad spectrum of your worst nightmare for cybersecurity, said Jason Glassberg, co-founder of Casaba Security, based in Seattle.

Sony Hackers Risk Exposure with Each Data Leak

Dec 11, 2014
Variety

... more information about themselves,” said Jason Glassberg, co-founder of cybersecurity firm Casaba Security. “Nothing can be done without leaving evidence.

http://pixabay.com/en/hammer-books-law-court-lawyer-719066/

Former Sony employees mulling class action lawsuit

Dec 9, 2014
Fox News

Jason Glassberg, co-founder of Casaba Security and an ethical hacker routinely hired to break into the networks of Fortune 500 companies and major banks, ...

http://pixabay.com/en/security-protection-anti-virus-265130/

Data security Goes Mainstream After High-Profile Hacks

Nov 10, 2014
NBCNews.com

... time," said Jason Glassberg, co-founder of consulting firm Casaba Security. ... years ago, Glassberg and other security experts told NBC News in interviews.

http://pixabay.com/en/the-question-mark-sign-question-ask-350168/

A Hacker Survival Guide For SMBs

Nov 5, 2014
Huffington Post

Unfortunately, simply meeting the Payment Card Industry (PCI) security standards isn't enough to prevent these attacks. What To Do: Make sure you're running ...

http://pixabay.com/en/access-data-password-mask-matrix-694541/

6 Ways Developers Can Prevent Password Breaches

Aug 18, 2014
Huffington Post

Throughout the year, we've seen a number of large-scale data breaches affecting user passwords, such as eBay and Yahoo, and recently security researchers ...

https://www.flickr.com/photos/pbarry/976719

Six Mistakes to Avoid When Writing Code for the Internet of Things

Jul 23, 2014
Huffington Post

But a key problem we're already seeing with IoT products is that security is clearly an afterthought. At the upcoming Black Hat conference, which kicks of August ...

http://pixabay.com/en/matrix-earth-global-international-434036/

Beware of These 4 Common and Dangerous Cyberattacks

Jul 23, 2014
NBCNews.com

... to change their approach over time," Chris Weber, the co-founder of Casaba Security, told NBC News. "But really, these are new spins on old kinds of attacks.".

http://pixabay.com/en/windows-logo-microsoft-310290/

Why the Microsoft Active Directory design flaw isn't serious

Jul 15, 2014
CSO Online

Monitoring Active Directory for password resets would be one way to prevent the Aorato attack, Blake Hutchinson, security engineer at Casaba Security, said.

http://pixabay.com/en/money-card-business-credit-card-256315/

Accepting Credit Card Orders by Phone: a New-Business Owner's

Apr 17, 2014
Fox Business

Then follow your processor's security guidelines to validate transactions, suggests John Michener, chief scientist at Casaba Security, a white hat hacking firm ...

http://commons.wikimedia.org/wiki/File:MtGox.png

Mt. Gox is Dead: Long Live Bitcoin?

Feb 28, 2014
NBCNews.com

... currency argue that the problem is limited to Mt. Gox's lax security controls. ... first one that does it right," said John Michener, chief scientist at Casaba Security.

http://commons.wikimedia.org/wiki/File:US-WhiteHouse-Logo.svg

White House Unveils Plan To Cut Hacking Risk But Will It Work?

Feb 12, 2014
NBCNews.com

There is value in that setup, said John Michener, chief scientist at Casaba Security. "I find it valuable, and people who read it can certainly use it to build their ...

http://commons.wikimedia.org/wiki/File:Snapchat_Logo.png

Snapchat rival hopes to pounce on security breach

Feb 6, 2014
CNBC.com

Wickr is light-years ahead of Snapchat and they have an entirely different philosophy, said Chris Weber, a co-founder of Casaba Security, a firm that ...

[video] Who’s Behind the NY Times Outage

Aug. 27, 2013
Bloomberg

Cabasa Co-Founder Chris Weber discusses the New York Times' Internet registration being hacked and the discovery of malware on the pages of Facebook users. He speaks with Emily Chang on Bloomberg Television's "Bloomberg West."

http://pixabay.com/en/clouds-mammatus-mammatus-cloud-747254/

[video] Is it Safe in the Cloud?

Aug. 26, 2013
CNBC

Popular mobile services suffered an outage this weekend; the common denominator for all of them was they are hosted in the cloud by Amazon's web service. Rohit Sethi, Security Compass, and Chris Weber, Casaba, discuss how safe and dependable the cloud really is.

http://pixabay.com/en/call-sim-card-cell-cellphone-71168/

[video] Is there a Security Flaw with your SIM card?

July 25, 2013
FOX

Chris Weber on new technology allowing hackers to obtain mobile data and control victims' cell phones.

http://en.wikipedia.org/wiki/National_Security_Agency#/media/File:National_Security_Agency.svg

Who knew what about the PRISM spying program: 3 theories

Jun 8, 2013
CNNMoney

It's possible that only a small number of people at the companies knew about the government access, noted John Michener, chief scientist at Casaba Security.

http://pixabay.com/en/smartphone-android-os-samsung-153650/

Smartphones and Cyber Insecurity?

Mar 22, 2013
Fox Business

As ethical hacking firm Casaba's security researcher Walter Pearce explains “You need to start considering them a computer in your pocket, not a phone.”.

http://en.wikipedia.org/wiki/Barack_Obama#/media/File:President_Barack_Obama.jpg

President Obama cracks whip on cybercrime

Feb 12, 2013
CNNMoney

"We cannot look back years from now and wonder why we did nothing in the face of real threats to our security and our economy," Obama said. The order will ...

http://pixabay.com/en/qr-code-scanner-bar-code-156717/

Clickjacking QR Code scams -- more holiday shopping traps

Dec 12, 2012
KOMO News

An innocent looking free ringtone app allowed Internet security experts to track ... our computer," explained Jason Glassberg of Casaba, an Internet security firm ...

http://pixabay.com/en/christmas-claus-cute-gift-girl-15651/

[video] Interview with Katie Moussouris and Chris Weber

Sept 18, 2012
MSDN Channel 9

Chris Weber is co-founder at Casaba Security where he's leading product development for new tools to assist in the field of Unicode and Web-application security. He's authored several security books, articles and presentations, and regularly speaks at industry conferences.

http://pixabay.com/en/christmas-claus-cute-gift-girl-15651/

Smartphone scams plentiful during holiday season

Dec 11, 2012
KOMO News

With record online spending predicted this year, Seattle-based Internet security firm Casaba predicts this will also be a big year for online fraud and identity theft.

http://pixabay.com/en/twitter-tweet-twitter-bird-312464/

'Real Housewife' Alexis Bellino denies she bought Twitter followers

Aug 16, 2012
Fox News

Chris Weber, co-founder of Casaba Security, and Mark Wuergler, senior security researcher at Immunity Inc. both concurred that the activity on her accounts are ...

http://pixabay.com/en/rail-railway-railroad-train-car-163472/

SCADA Systems in Railways Vulnerable to Attack

Jan 25, 2012
eWeek

According to a Transportation Security Administration memo obtained by ... to experts from Casaba Security, a security analysis and consulting company.

http://pixabay.com/en/matrix-earth-global-international-434036/

[video] Shedding Light on Recent Hack Attacks

Jun 27, 2011
FOX News

Who is helping businesses learn how to protect themselves from future hack attacks?

http://en.wikipedia.org/wiki/World_IPv6_Day_and_World_IPv6_Launch_Day#/media/File:World_IPv6_launch_badge.svg

Editorial: How Secure is IPv6?

Jun 8, 2011
The Tech Herald

It s also important to note that IPv6 does come with better security options and ... Casaba, provides security testing services to key software developers like ...

http://pixabay.com/en/elections-vote-sheet-paper-pen-536656/

Washington State Online Election Doesn't Click

Apr 15, 2011
Fox News

If I compromise a computer, I control all the activities that go on in a computer, said Samuel Bucholtz of Casaba Security. "So it doesn't matter what you're doing ...

http://commons.wikimedia.org/wiki/File:WikiLeaks-humor.png

Amazon.com's Success in Wikileaks Attack is Proof of Cloud Safety

Dec 20, 2010
Fox Business

Chris Weber, co-founder and managing partner of Casaba Security, is a noted security researcher and a speaker at the Black Hat security conference.

http://pixabay.com/en/skull-stick-bells-black-fool-161417/

'Hacktivist' Jester Claims Responsibility for WikiLeaks Attack

Dec 3, 2010
Fox News

He's kind of famous, said Jason Glassberg, managing principal of Casaba Security, a computer and network security firm. "He claims to have this super tool ...

http://en.wikipedia.org/wiki/File:Nobel_Prize.png

China suspected in hacking of Nobel website

Oct 28, 2010
Washington Times

Advocates of open-source software generally regard it as more secure, and Zero ... the Peace Prize, said Jason Glassberg of the computer firm Casaba Security.

http://pixabay.com/en/matrix-earth-global-international-434036/

Hackers shopping malware network

Oct 26, 2010
Washington Times

A hacker group calling itself the Iranian Cyber Army is assembling a network of infected computers, and selling it to cybercriminals to spread spam and malicious software, according to security researchers.

http://commons.wikimedia.org/wiki/File:Visual_Studio_2013_Logo.svg

Microsoft juices Visual Studio with secure coding tools

Feb 2, 2010
NetworkWorld.com

Microsoft will upgrade its Security Development Lifecycle (SDL) process with ... members are Booz-Allen Hamilton, Casaba Security and Consult2Comply.

http://commons.wikimedia.org/wiki/File:Opera_browser_logo_2013_vector.svg

Opera 10.01 security release

Oct 27, 2009
ithinkdifferent (blog)

Opera Software has just released Opera 10.01, an update to Opera 10. Opera 10.01 for Windows comes out as a security and stability upgrade.