Kason Y.’s Post

A technical and ethical debate around your neighbour's wifi. ps: This plot is staged by two actors. Digital literacy is important. Like what you see? Follow Kason Y. for daily insights on technology and cybersecurity. Click the 🔔 to get a notification so you don't miss my new posts. #wifi #internet #technology ps: This plot is staged by two actors. Digital literacy is important.

Meeting starts at 9am... Oops... I actually appreciate working in the office days – at least it reminds me to dress like a human. Happy Weekend! Like what you see? Follow Kason Y. for daily insights on technology and cybersecurity. Click the 🔔 to get a notification so you don't miss my new posts. #worklifebalance #wfh

Feeling overwhelmed by the complex layers of protocols, components, and systems in cybersecurity? Unlike simply putting a padlock on your front door, cybersecurity is abstract and often overwhelming. Many people struggle to visualize it and don’t know where to start. Threat modeling helps you get a clear picture of your system, profile potential attackers, and list out possible threats. It's like the art of war—first, you need to know your enemy to strategize effectively. This PDF dives into various threat modeling methods to help you build a strong defense against cyber attacks. #cissp #cybersecurity #threatmodelling

"You can build a website just with a few clicks." - The Reality... Like what you see? Follow Kason Y. for daily insights on technology and cybersecurity. Click the 🔔 to get a notification so you don't miss my new posts. #webdevelopment #software #internet

Remember the old Nokia phones? They were indestructable. Just calls, texts, and Snake. And those physical buttons—so satisfying to press. Still miss those good old buttons and the straightforwardness they brought to our lives. No notifications, no constant updates—just pure functionality. Like what you see? Follow Kason Y. for daily insights on technology and cybersecurity. Click the 🔔 to get a notification so you don't miss my new posts. #technology

𝐅𝐫𝐞𝐞 𝐎𝐧𝐥𝐢𝐧𝐞 𝐂𝐲𝐛𝐞𝐫𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐂𝐨𝐮𝐫𝐬𝐞𝐬 𝐚𝐧𝐝 𝐂𝐞𝐫𝐭𝐢𝐟𝐢𝐜𝐚𝐭𝐢𝐨𝐧𝐬 𝐢𝐧 2024. 15 FREE courses to help you kick start your carrer in #cybersecurity 1. 𝐈𝐁𝐌 𝐂𝐲𝐛𝐞𝐫𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐀𝐧𝐚𝐥𝐲𝐬𝐭 𝐏𝐫𝐨𝐟𝐞𝐬𝐬𝐢𝐨𝐧𝐚𝐥 𝐂𝐞𝐫𝐭𝐢𝐟𝐢𝐜𝐚𝐭𝐞 https://lnkd.in/gUxm8sNX 2. 𝐌𝐢𝐜𝐫𝐨𝐬𝐨𝐟𝐭 𝐂𝐲𝐛𝐞𝐫𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐀𝐧𝐚𝐥𝐲𝐬𝐭 𝐏𝐫𝐨𝐟𝐞𝐬𝐬𝐢𝐨𝐧𝐚𝐥 𝐂𝐞𝐫𝐭𝐢𝐟𝐢𝐜𝐚𝐭𝐞 https://lnkd.in/gUf4rUzH 3. 𝐂𝐥𝐨𝐮𝐝 𝐀𝐩𝐩𝐥𝐢𝐜𝐚𝐭𝐢𝐨𝐧 𝐃𝐞𝐯𝐞𝐥𝐨𝐩𝐦𝐞𝐧𝐭 𝐅𝐨𝐮𝐧𝐝𝐚𝐭𝐢𝐨𝐧𝐬 𝐒𝐩𝐞𝐜𝐢𝐚𝐥𝐢𝐳𝐚𝐭𝐢𝐨𝐧 https://lnkd.in/gUf4rUzH 4. 𝐃𝐞𝐯𝐞𝐥𝐨𝐩𝐢𝐧𝐠 𝐀𝐩𝐩𝐥𝐢𝐜𝐚𝐭𝐢𝐨𝐧𝐬 𝐰𝐢𝐭𝐡 𝐆𝐨𝐨𝐠𝐥𝐞 𝐂𝐥𝐨𝐮𝐝 𝐒𝐩𝐞𝐜𝐢𝐚𝐥𝐢𝐳𝐚𝐭𝐢𝐨𝐧 https://lnkd.in/gdZKkJ3b 5. 𝐈𝐧𝐭𝐫𝐨𝐝𝐮𝐜𝐭𝐢𝐨𝐧 𝐭𝐨 𝐂𝐥𝐨𝐮𝐝 𝐂𝐨𝐦𝐩𝐮𝐭𝐢𝐧𝐠 https://lnkd.in/g3NQyM8H 6. 𝐔𝐧𝐝𝐞𝐫𝐬𝐭𝐚𝐧𝐝𝐢𝐧𝐠 𝐆𝐨𝐨𝐠𝐥𝐞 𝐂𝐥𝐨𝐮𝐝 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐚𝐧𝐝 𝐎𝐩𝐞𝐫𝐚𝐭𝐢𝐨𝐧𝐬 https://lnkd.in/guDuszP9 7. 𝐈𝐧𝐧𝐨𝐯𝐚𝐭𝐢𝐧𝐠 𝐰𝐢𝐭𝐡 𝐃𝐚𝐭𝐚 𝐚𝐧𝐝 𝐆𝐨𝐨𝐠𝐥𝐞 𝐂𝐥𝐨𝐮𝐝 https://lnkd.in/g7_2f7Na 8. 𝐌𝐢𝐜𝐫𝐨𝐬𝐨𝐟𝐭 𝐀𝐳𝐮𝐫𝐞 𝐅𝐮𝐧𝐝𝐚𝐦𝐞𝐧𝐭𝐚𝐥𝐬: 𝐃𝐞𝐬𝐜𝐫𝐢𝐛𝐞 𝐜𝐥𝐨𝐮𝐝 𝐜𝐨𝐧𝐜𝐞𝐩𝐭𝐬 https://lnkd.in/gfdRUt7G 9. 𝐆𝐨𝐨𝐠𝐥𝐞𝐂𝐥𝐨𝐮𝐝: 𝐆𝐨𝐨𝐠𝐥𝐞 𝐂𝐥𝐨𝐮𝐝 𝐂𝐨𝐦𝐩𝐮𝐭𝐢𝐧𝐠 𝐅𝐨𝐮𝐧𝐝𝐚𝐭𝐢𝐨𝐧𝐬: 𝐂𝐥𝐨𝐮𝐝 𝐂𝐨𝐦𝐩𝐮𝐭𝐢𝐧𝐠 𝐅𝐮𝐧𝐝𝐚𝐦𝐞𝐧𝐭𝐚𝐥𝐬 https://lnkd.in/g38t9RYH 10. 𝐂𝐥𝐨𝐮𝐝 𝐂𝐨𝐦𝐩𝐮𝐭𝐢𝐧𝐠 𝐁𝐚𝐬𝐢𝐜𝐬 (𝐂𝐥𝐨𝐮𝐝 101) https://lnkd.in/g36Sagrh 11. 𝐈𝐓 𝐅𝐮𝐧𝐝𝐚𝐦𝐞𝐧𝐭𝐚𝐥𝐬 𝐟𝐨𝐫 𝐂𝐲𝐛𝐞𝐫𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐒𝐩𝐞𝐜𝐢𝐚𝐥𝐢𝐳𝐚𝐭𝐢𝐨𝐧 https://lnkd.in/gjknqS5e 12. 𝐈𝐧𝐭𝐫𝐨𝐝𝐮𝐜𝐭𝐢𝐨𝐧 𝐭𝐨 𝐂𝐲𝐛𝐞𝐫𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐓𝐨𝐨𝐥𝐬 & 𝐂𝐲𝐛𝐞𝐫 𝐀𝐭𝐭𝐚𝐜𝐤𝐬 https://lnkd.in/gtKW9ZPw 13. 𝐂𝐲𝐛𝐞𝐫 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐂𝐨𝐮𝐫𝐬𝐞 𝐟𝐨𝐫 𝐁𝐞𝐠𝐢𝐧𝐧𝐞𝐫𝐬 https://lnkd.in/gxt88Njk 14. 𝐈𝐧𝐭𝐫𝐨𝐝𝐮𝐜𝐭𝐢𝐨𝐧 𝐭𝐨 𝐂𝐲𝐛𝐞𝐫 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 https://lnkd.in/gSnaFEMq 15. Introduction to Cyber Security -Free Cyber Security Online Course With Certificate https://lnkd.in/gcJtujqj Like what you see? Follow Kason Y. for daily insights on technology and cybersecurity. source:coders.learning

𝐖𝐡𝐢𝐜𝐡 𝐩𝐚𝐲𝐬𝐜𝐚𝐥𝐞 𝐚𝐫𝐞 𝐲𝐨𝐮 𝐢𝐧? 💰 With great money comes with greater responsibility! I share my journey, tips, and insights into the exciting world of cybersecurity. Let's level up together! Follow Kason Y. for daily insights on technology and cybersecurity. Click the 🔔 to get a notification so you don't miss my new posts. #cybersecurity

𝐅𝐢𝐧𝐝 𝐭𝐡𝐚𝐭 𝐖𝐢𝐅𝐢 𝐝𝐞𝐚𝐝 𝐬𝐩𝐨𝐭! Ever wish you had X-ray vision to track your WiFi coverage? This AR tool lets you visualize and manage your WiFi signal with ease. Imagine this integrated with WiFi routers that allow you to annuate the signal. It would be a game changer. Like what you see? Follow Kason Y. for daily insights on technology and cybersecurity. Click the 🔔 to get a notification so you don't miss my new posts. #vr #wifi #network #technology source: BadVR

𝐒𝐒𝐇: 𝐌𝐨𝐫𝐞 𝐓𝐡𝐚𝐧 𝐉𝐮𝐬𝐭 𝐑𝐞𝐦𝐨𝐭𝐞 𝐀𝐜𝐜𝐞𝐬𝐬 When you think of SSH, remote login might be the first thing that comes to mind. But did you know it's capable of so much more, especially in cybersecurity? ✔ 𝐒𝐎𝐂𝐊𝐒 𝐏𝐫𝐨𝐱𝐲 𝐟𝐨𝐫 𝐒𝐞𝐜𝐮𝐫𝐞 𝐖𝐞𝐛 𝐓𝐫𝐚𝐟𝐟𝐢𝐜: Tunnel your web traffic securely, especially handy when traveling. ✔𝐏𝐨𝐫𝐭 𝐅𝐨𝐫𝐰𝐚𝐫𝐝𝐢𝐧𝐠 𝐟𝐨𝐫 𝐑𝐞𝐦𝐨𝐭𝐞 𝐒𝐞𝐫𝐯𝐢𝐜𝐞𝐬: Access services like RDP, VNC, LDAP, and CUPS securely without exposing their ports to the world. ✔𝐒𝐒𝐇 𝐊𝐞𝐲 𝐌𝐚𝐧𝐚𝐠𝐞𝐦𝐞𝐧𝐭: Generate, manage, and distribute SSH keys to enhance secure access. ✔𝐂𝐨𝐧𝐟𝐢𝐠𝐮𝐫𝐚𝐭𝐢𝐨𝐧 𝐒𝐢𝐦𝐩𝐥𝐢𝐟𝐢𝐜𝐚𝐭𝐢𝐨𝐧: Use the SSH configuration file to streamline your connections, making them quicker and more secure. ✔𝐄𝐧𝐡𝐚𝐧𝐜𝐞𝐝 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐰𝐢𝐭𝐡 𝐂𝐨𝐦𝐦𝐚𝐧𝐝-𝐋𝐢𝐧𝐞 𝐎𝐩𝐭𝐢𝐨𝐧𝐬: Utilize options for compression, dynamic forwarding, and agent forwarding to bolster security. SSH is an essential tool in a cybersecurity professional's toolkit, offering robust features that extend far beyond simple remote access. How are you leveraging SSH in your security protocols? Like what you see? Follow Kason Y. for daily insights on technology and cybersecurity. Click the 🔔 to get a notification so you don't miss my new posts. Credit: Ben Cotton #cybersecurity #webdevelopment #software #ssh

Are you overlooking 𝐜𝐨𝐧𝐭𝐚𝐢𝐧𝐞𝐫 𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲? It's a common pitfall. Containers are essential for modern development, but they bring unique risks. This 𝐜𝐡𝐞𝐚𝐭 𝐬𝐡𝐞𝐞𝐭 is a great place to begin. It outlines key threats and basic mitigations, but remember, it's not exhaustive. Other controls and practices need to be in place to ensure robust security: 1️⃣ 𝐃𝐨𝐜𝐤𝐞𝐫 𝐁𝐞𝐧𝐜𝐡 𝐟𝐨𝐫 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 🛠️: This open-source script checks your Docker configuration against security best practices. It's a great way to get a comprehensive assessment of your current setup. 2️⃣ 𝐃𝐨𝐜𝐤𝐞𝐫 𝐂𝐨𝐧𝐭𝐞𝐧𝐭 𝐓𝐫𝐮𝐬𝐭 🔒: Enable Docker Content Trust (DCT) to verify the integrity and publisher of Docker images. This ensures you only run trusted images in your environment. 3️⃣ 𝐃𝐨𝐜𝐤𝐞𝐫 𝐒𝐞𝐜𝐫𝐞𝐭𝐬 🗝️: Manage sensitive data like passwords, API keys, and certificates securely using Docker secrets. This helps prevent secrets from being exposed within the container environment. 4️⃣ 𝐀𝐩𝐩𝐀𝐫𝐦𝐨𝐫/𝐒𝐄𝐋𝐢𝐧𝐮𝐱 𝐏𝐫𝐨𝐟𝐢𝐥𝐞𝐬 🛡️: Apply mandatory access control (MAC) policies using AppArmor or SELinux profiles. These profiles limit what resources a container can access, adding an extra layer of security. 5️⃣ 𝐇𝐨𝐬𝐭 𝐇𝐚𝐫𝐝𝐞𝐧𝐢𝐧𝐠 🖥️: Ensure the Docker host is secure by applying firewall rules, disabling unnecessary services, and keeping the system updated. A secure host is the foundation of a secure container environment. 6️⃣ 𝐈𝐬𝐨𝐥𝐚𝐭𝐞 𝐃𝐨𝐜𝐤𝐞𝐫 𝐃𝐚𝐞𝐦𝐨𝐧 🔐: Limit access to the Docker daemon to authorized users only. Unauthorized access can lead to significant security breaches. 7️⃣ 𝐀𝐮𝐝𝐢𝐭 𝐋𝐨𝐠𝐬 📋: Enable and monitor Docker audit logs. These logs provide valuable insights into actions taken on Docker resources, helping you detect and respond to suspicious activities. 8️⃣ 𝐑𝐞𝐬𝐨𝐮𝐫𝐜𝐞 𝐂𝐨𝐧𝐭𝐫𝐨𝐥𝐬 ⚙️: Use control groups (cgroups) to enforce resource constraints on your containers. This prevents a single container from consuming all system resources, ensuring fair resource allocation and system stability. 9️⃣ 𝐃𝐨𝐜𝐤𝐞𝐫 𝐒𝐰𝐚𝐫𝐦 𝐌𝐨𝐝𝐞 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 🌐: If using Docker Swarm, ensure mutual TLS (mTLS) is enabled for secure communication between nodes. This helps protect against eavesdropping and unauthorized access within the swarm. PFD source: container-solutions.com Like what you see? Follow Kason Y. for daily insights on technology and cybersecurity. Click the 🔔 to get a notification so you don't miss my new posts. #docker #container #cybersecurity #cheatsheet