Category Archives: Security

As you may have seen EvL Consulting has selected 1Password as the password manager of choice for individuals, families, teams and businesses.

The decisions to select 1Password did not come as a random selection. There are various products and solutions on the market, which all have their pros and cons. 1Password was selected on a range of criteria, of which security and product architecture were on the top of the list. Next to that came ease of use within the various subscription options.

1Password has proven to be the solution of choice for many organisations and is under constant active development to lead the way with actively collaborating with as well as adopting of industry standards like FIDO2.

Furthermore, 1Password is continuously assessed by various external security auditors and the reports are made public over here: https://support.1password.com/security-assessments/

Our shop has attractive options for families and teams. If you are part of a larger organization whereby licence seats of 100+ are required, please contact us and we will be able to discuss the options.

Cyber Security awareness

18/10/2022

Erwin van Londen

Security No Comments

As the field of risks in cyberspace expands more and more, it is imperative to understand these and reduce your areas of vulnerabilities.

From a consumer perspective this mostly touches on a few points:

Reduce exposure
Only provide what is required
Secure credentials
Maintain retention policies
Change often and unique

So what do I mean by the above as these do not seem to be really “consumer” terminologies. Lets go through them one-by-one.

Continue reading →

The Optus data breach and why it was so simple.

27/09/2022

Erwin van Londen

OK, first off, “It wasn’t me !!!” Even though the title may indicate otherwise.

Just in case you’re not in Australia and have no idea what this is about. Optus is Australia’s second-largest Telco, with around 11 million subscribers. On September 22nd 2022 they suffered a major data breach where it was announced that PII (Personal Identifiable Information) data of almost all their customers was stolen. Now, we’re not talking about the phone number and the name, nooo, basically everything that is required to really disrupt someone’s life. This included names, addresses, date of birth, drivers-licence details, passport details, banking and payment information, other identity verifiers like Medicare numbers, and potentially other grade two1 or three details that would allow a person to accrue enough points for online or phone identity verification. Let me be clear here, NO OPTUS CUSTOMER IS SAFE FOR YEARS TO COME !!.

Continue reading →

NXDOMAIN hijacking and ISP behaviour

28/08/2020

Erwin van Londen

Linux Security No Comments

Something none storage related. This article at “The Register” triggered me to write this post and explain why I don’t see this behaviour in my household. The trick is to configure DNS-over-HTTPS in your network.

For the non-technical people who read this the title may already be an incentive to not read any further but please bear with me.

Continue reading →