Peter Makohon’s Post

China has been executing a "death by thousand cuts strategy" for an absurd amount of time now so none of this should be a surprise. I’m certain China and Russia are deeply embedded within countless gov’t agency systems, services, and devices both domestically and internationally, …and backed up with significant penetration within and across mega-corp, multinational business models by industry and vertical market from coast-to-coast. We must shift U.S. defense, offense, and business posture from international and domestic angles with aligned domestic and global business strategy with diverse operations and market influence that shift America’s defense posture & competitive business stance serving federal & national defense agencies with international & domestic core systems, services, and trusted managed services providers that serve distinct industry & vertical market requirements with diverse product/service portfolios, and extensive focus on continuous learning, increasing capabilities that fuel creativity, greater level of innovation by TAM and product development, and your proven ability to ideate, socialize, and conduct business development to close net-new business in fresh target enterprise accounts. and drill into potential solution for US based accounts and sales ops generating diverse education paths by user that accelerate business formation user-driven paths for learning, respect for this industry, products, and services that serve and protect our population as a strategic GTM strategy with execution partners all driven by agreed upon guiding principles, focus, and celebration of STEM-fueled innovation, within the real world driven by field experience, and continuous learning, and experimentation that yield more strategic innovation and overall execution that may or may not benefit terrible tech conference and slack protocol to attract more talent,employ proven biz strategy with execution that yiekds valuable direct & indirect benefits across the top & bottom line, and driven by the CX for early-to-mid stage tech ventures for venture HQ’s located in any major US city. . GRNLIT

Rethinking network security to help protect users, devices, and applications As people, applications, devices, and data become increasingly distributed, the threat landscape is growing. https://lnkd.in/d2KDbmgM

This revelation about Bluetooth vulnerabilities underscores a critical aspect of our digital world: the continuous need for vigilance and evolution in cybersecurity. As technologies advance, so do the methods of exploitation, making it imperative for users and developers alike to stay ahead in securing their digital infrastructure.

🌐 A groundbreaking discovery by Eurecom researchers has unveiled vulnerabilities in Bluetooth technology, posing serious risks of MitM attacks. The study identifies two significant flaws (CVE-2023-24023) affecting Bluetooth Core Specification from version 4.2 onward, presenting six attack scenarios named "BLUFFS." This revelation highlights critical security concerns at a fundamental level, impacting billions of devices worldwide. Understanding and addressing these vulnerabilities is crucial for maintaining the integrity of our digital communications. Dive deeper into the research and its implications in the full study. 🔗 https://lnkd.in/gw6D4F7r #BluetoothSecurity #CybersecurityResearch #DigitalSafety #TechAlert #BLUFFS How do you think these vulnerabilities in Bluetooth technology will affect daily digital interactions and what steps can individuals take to safeguard their devices?

🌐💡 Embracing IPv6 🚀🔍 * Explore the journey from IPv4's 32-bit system to the pressing need for a more secure solution. * Learn how IPv6's 128-bit address space revolutionizes internet connectivity, bringing the promise of endless possibilities. * Delve into IPv6's role in enhancing speed, reliability, and security. * Learn how IPv6's design inherently boosts cybersecurity, making data transmission safer than ever. * The IPv6 Forum's initiative, led by Lawrence Hughes, is shaping a new generation of skilled professionals adept in IPv6 technology. Learn more at https://lnkd.in/ggZdGWRF

Here's a excerpt from a very interesting article I was reading today One of the most insidious threats posed by quantum computing is the Store Now, Decrypt Later (SNDL) attack. SNDL is a cryptographic technique that involves storing encrypted data for an extended period before decrypting it. Threat actors are already swiping up lots of encrypted information, often the kind with a long shelf life, and stockpiling it until quantum computers can crack it open for them in the future.  The potential risks of quantum computers are so threatening that in December 2022, U.S. President Joe Biden signed into law H.R.7535, the Quantum Computing Cybersecurity Preparedness Act, which encourages “federal government agencies to adopt technology that will protect against quantum computing attacks.” The full link is here: https://lnkd.in/gEW4g74D

Apple released their new "PQ3" post-quantum protection for iMessage this week to protect against "Harvest Now, Decrypt Later" attacks. These attacks revolve around malicious actors harvesting encrypted contents today and then storing the encrypted data until quantum computers exist that can easily crack them. 1. This is testament to the expected impact of "Harvest Now, Decrypt Later" attacks that companies like Apple are investing in modern protections. 2. PQC approaches like lattice-based cryptography are expected to protect against near-term quantum capabilities, but there is still a great deal of uncertainty around longer-term quantum and whether the current PQC mechanisms will hold up against key brute forcing or other vulnerabilities, even at level 3. 3. This reinforces the importance of not sharing information that will be sensitive for years to come over any messaging channel if possible. Protections are improving, but we are far from a perfect solution. If something is so important that it would be damaging if revealed in five years, organizations should try to leverage other channels than messaging platforms. Any other thoughts on this landscape after this release?

Great explanation of ESG+T Framework! #ESG #cybersecurity #dataprotection

Software without required continous monitoring and hardening are littered with opportunities for attacks across all layers in the OSI model. Continuous proactive hardening needs to evolve and correlated with Threat Intels, analytics from patterns of attacks, CVEs, results from pen testing, etc. Example of OS hardening: https://lnkd.in/gHYraqrq Each layer has its own set of best practices and is evolving rapidly. Stay current.