Anglin’ for Your Creds: Phishing via Social Media Connections

Written by Joe Kozlowicz on Thursday, December 19th 2019 — Categories: Security

This past week Green House Data employees found an invitation to connect in their LinkedIn inboxes from one Coleman Anglin, who claimed to be a Marketing Specialist at the company (unsurprisingly, no one in the marketing department received this invitation). 

Of course the humorous last name of “Anglin” belies the true nature of this connection: phishing. While our security team was swift to send out a notice not to connect to this individual, the attempt highlights a growing trend of phishing attacks reaching beyond e-mail to the social media realm.

But why bother posing as a fellow employee or a friend on social media? Several employees asked what the threat could be from this seemingly innocuous connection, even if it was made in bad faith. 

Continue Reading...


Shift Left? Shift Right? Continuous Improvement Depends on Both

Written by Joe Kozlowicz on Thursday, December 12th 2019 — Categories: DevOps, Enterprise Applications, IT Operations

As you dig into DevOps methodology, you’re likely to encounter the term “shift left” and the slightly less common “shift right.” What exactly are we shifting here?

The two terms are sides of the same coin. They refer to when you will test your application or piece of technology – is it during development or once your solution has already entered production? Of course, for true DevOps success, the answer is both! Continuous improvement involves testing at all phases of the application lifecycle.

Let’s take a closer look at the ideology behind “shift left” and its counterpart as well as how they affect the development cycle (which can also be applied beyond app development itself and used when designing and deploying most IT systems).

Continue Reading...


The InfoSec Threat Lineup: Biggest Threats from 2019

Written by Joe Kozlowicz on Friday, December 6th 2019 — Categories: Security

As we approach year-end and look forward to future tech trends, we also reflect on the lessons learned over the past year. In the information security realm, things seem to stay the same even as they change.

Pervasive and persistent threats that are hardly new to the scene have made their way past small fry to take down some of the biggest service providers around. In many ways, 2019 proved the most effective threat vectors remain the most difficult to protect against, with the crucial attack point coming in the form of people – the hardest thing to control for within your organization.

There are some newer threats to consider as well, of course. Hackers never sleep!

Here’s our lineup for the nastiest InfoSec baddies of 2019.

Continue Reading...


What Are SysAdmins Thankful For?

Written by Joe Kozlowicz on Tuesday, November 26th 2019

It’s Thanksgiving week here in the United States, and while we’re all thankful for the usual suspects like our families, homes, health, and employment, there are some special things that technical workers are extra glad to have in the workplace.

Here are our Top 10 Things SysAdmins Are Thankful For in 2019:

Continue Reading...


Step-by-Step Planning for Data Migration

Written by Joe Kozlowicz on Thursday, October 31st 2019 — Categories: Migration, Cloud Storage

Data migration takes many forms, including moving data between storage locations or mediums, changing the format of the data, and sharing or importing data between applications. It’s required when retiring a legacy system, introducing new apps or services, migrating to the cloud, or consolidating your data center.

Data storage can be a complicated beast thanks to the myriad ways data grows and integrates with various components of your IT infrastructure. A secondary goal of any data migration project should therefore be data management itself, reducing complexities introduced by application logic, customization, governance, and other entanglements.

Regardless of the destination of your data or the business drivers behind the migration, you’ll need to extract your data, modify it, and perform the actual data transfer. Detailed planning and risk evaluation are key before proceeding, especially as you are likely to handle some sensitive information.

Continue Reading...