Profile

CommunityPlatform_1350x900.jpg

Alex Keller

Edit My Profile


My Content

1 to 18 of 18 total
Posted By Alex Keller 03-12-2024 04:15:51 PM
Found In Egroup: Cybersecurity
\ view thread
+1 for BitWarden, we run it onsite and are very pleased with the product. It's free/open-source, although we opted for the Enterprise support plan as the cost is fairly for our small team. Would recommend across the board. My only (minor) gripe is that I wish there was a history for all fields (like ...
Posted By Alex Keller 05-12-2023 10:35:33 AM
Found In Egroup: Cybersecurity
\ view thread
Be advised - active exploitation within higher education of critical vuln in PaperCut (CVE-2023-27350, CVSS 9.8): "CISA and FBI have released a joint Cybersecurity Advisory (CSA), Malicious Actors Exploit CVE-2023-27350 in PaperCut MF and NG. This joint advisory provides details related to an exploitation ...
Posted By Alex Keller 12-21-2022 12:04:14 PM
Found In Egroup: Cybersecurity
\ view thread
+1 for Frank's constructive and common sense approach, paying it forward in the interest of student self-defense. For as long as I've been in security, the mantra of always wiping the OS post compromise has withstood the test of time and is almost never challenged under the heading of "you can never ...
Posted By Alex Keller 11-21-2022 03:55:13 PM
Found In Egroup: Cybersecurity
\ view thread
The Applied Cybersecurity (https://applied-cyber.stanford.edu/) student group at Stanford (for which I am honored to be the advisor) also had concerns which they put into action by evaluating the lofty security claims made by the developers/company: https://stanforddaily.com/2022/11/01/opinion-fi ...
Posted By Alex Keller 09-28-2022 08:51:27 AM
Found In Egroup: Cybersecurity
\ view thread
This security analysis of 4 popular password managers is neither comprehensive nor decisive for "just making a selection", but for those interested in this topic does underscore the reality that none are perfect: https://www.ise.io/casestudies/password-manager-hacking/ For us (speaking only for our ...
Posted By Alex Keller 09-27-2022 11:39:26 PM
Found In Egroup: Cybersecurity
\ view thread
Hi Michelle, Here's a quick take not knowing what your requirements and scope are. For individual use and small teams KeePass is a proven path that’s both free and open source. For better multiuser and team support, BitWarden and Thycotic Secret Server are both highly regarded. If you are looking for ...
Posted By Alex Keller 08-26-2022 10:07:22 AM
Found In Egroup: Cybersecurity
\ view thread
Do you serve as an advisor or coach to a collegiate cyber club or know someone who does? The Global Collegiate Penetration Testing Competition (CPTC) is a super fun, real world, offensive contest and there are still slots open for the 22-23 season. Synopsis: The Collegiate Penetration Testing Competition ...
Posted By Alex Keller 08-22-2022 06:47:47 PM
Found In Egroup: Wireless Local Area Networking
\ view thread
Not sure if randomization can be disabled, but this gentleman reports that after finding his MAC, he had no trouble with his school network: https://www.youtube.com/watch?v=Ew7e93ZiSLU HiSense RemoteàMenuàSettingsàHelpàSystem Message: Wired Ethernet & Wireless MAC are shown. Best, Alex ...
Posted By Alex Keller 08-01-2022 01:55:00 PM
Found In Egroup: Cybersecurity
\ view thread
Wanted to give a H/T to Jesse Moore's response on this thread. Vulnerability management scans can provide useful information on the low hanging fruit – potentially exploitable OS and application level flaws exposed to the network. Typically the most actionable of these vulns will be those that enable ...
Posted By Alex Keller 07-28-2022 11:46:00 AM
Found In Egroup: Cybersecurity
\ view thread
Hi Carlos et al, This is a popular service with students at our University. I offer no endorsements nor detractors on its use, but will note that the name and password are arbitrary and PER EVENT. Meaning you can put anything you want in those fields, the optional password is only used to edit your ...
Posted By Alex Keller 06-18-2022 08:25:00 PM
Found In Egroup: Cybersecurity
\ view thread
 Stanford University is hiring for the position of Chief Information Security Officer: https://careersearch.stanford.edu/jobs/chief-information-security-officer-17671 Please note I am not involved in the search, just posting for reach. Best, Alex Alex Keller Stanford | Engineering ...
Posted By Alex Keller 05-04-2022 09:55:51 AM
Found In Egroup: Wireless Local Area Networking
\ view thread
+1 for FS.com, solid SFPs and fiber patch cables, great pricing. Like many vendors some items are on delay due to supply chain woes. Best, Alex
Posted By Alex Keller 05-03-2022 08:46:11 PM
Found In Egroup: Wireless Local Area Networking
\ view thread
Hi Debbie et al, RE: Can you share what Mac OS versions this applies to? Not positive but guessing the potential for this to be an issue started with the deprecation of kernel extensions and the transition to systems extensions (so Big Sur & Monterey): https://developer.apple.com/support/kernel-extensions/ ...
Posted By Alex Keller 04-27-2022 12:37:56 PM
Found In Egroup: Wireless Local Area Networking
\ view thread
hi Folks -- A colleague from the EDUCAUSE Security community suggested this topic might be of interest to EDUCAUSE Wireless-LAN. The short version is that MacOS does not reliably support multiple socket filters, resulting in a myriad of difficult to diagnose connectivity issues, acutely observed ...
Posted By Alex Keller 04-27-2022 10:22:00 AM
Found In Egroup: Cybersecurity
\ view thread
Hello EDUCAUSE Security, Slightly tangential, but worthy of visibility. A few months ago we started seeing a significant uptick in WiFi issues on MacOS. Errant behavior isn't entirely deterministic but may include loss of connectivity to the SSID, "!" on the WiFi status indicator, inability to ...
Posted By Alex Keller 12-17-2021 12:18:00 PM
Found In Egroup: Cybersecurity
\ view thread
EDUCAUSE Colleagues, It has been one week since the emergence of CVE-2021-44228, a highly critical (CVSS rating 10.0) and pervasive vulnerability affecting specific versions of the widely integrated Log4j library. Arguably the most significant security vulnerability since the NSA lost control ...
Posted By Alex Keller 10-20-2021 02:17:00 PM
Found In Egroup: Cybersecurity
\ view thread
We have seen significant network printing issues crop up in the last week and our limited testing suggests this is a client side issue Windows 10 and the October security rollup KB5006670 (and possibly KB5006674 for Windows 11). Uninstalling KB5006670 on the client seems to reliably mitigate the network ...
Posted By Alex Keller 10-08-2021 04:31:00 PM
Found In Egroup: Cybersecurity
\ view thread
hi Folks, This collegiate cyber competition is an outstanding opportunity for students interested in infosec – please consider forwarding to your relevant student groups/clubs. Every region still has open team slots, but they need to get registered ASAP! Synopsis: "CPTC focuses on mimicking ...