Tales From The Hack >>
Linkedin

We're Social

10 Steps to Creating a Secure IT Environment

This article outlines ten actionable steps to build a secure technology environment across users, systems, and policies. It emphasizes layered defenses, staff training, and continuous security governance.

This article outlines ten actionable steps to build a secure technology environment across users, systems, and policies. It emphasizes layered defenses, staff training, and continuous security governance.

Membership Required

You must be a member to access this content.

View Membership Levels

Already a member? Log in here
Picture of Tony DeGonia

Tony DeGonia

Tony DeGonia is a seasoned Senior Sales Engineer specializing in SIEM, SOAR, MDR/XDR, SASE, Zero Trust, and enterprise network security design. With a proven track record supporting global and public sector environments, Tony delivers technical discovery, architecture development, POCs, and executive-level presentations for mission-critical cybersecurity programs. His experience spans AT&T Cybersecurity (SLED Public Sector), IBM Security QRadar Suite, Fortra Alert Logic, and multiple emerging security startups. Tony is known for his deep technical fluency across firewall architecture, threat detection engineering, cloud networking, encryption, and multi-vendor integrations — and for helping organizations turn complex security challenges into actionable solutions.
All Posts

Share:

More Posts

Send Us A Message

More Great Reads

Big “S” vs Big “E” — How Sales Engineering Really Breaks Down

Click here
I once had a more experienced Sales Engineer explain something to me that stuck—and I’ve found it to be consistently true over the years.

Sales Engineers, Trust, and the Work That Actually Matters

Click here
In complex cybersecurity sales, the most effective Sales Engineers are not the ones who push the hardest. They are the ones who understand risk, context, and consequence — and help customers navigate decisions they may not fully understand themselves.

What makes a cybersecurity sales engineer?

Click here
A cybersecurity sales engineer bridges the gap between technical complexity and customer understanding by translating security capabilities into real-world business value. This article outlines the core competencies required to succeed, including communication, technical depth, and the ability to guide customers through risk-driven decisions.

The Role of a Corporate Evangelist in Cybersecurity

Click here
A corporate evangelist champions a company’s security vision, helping customers understand the strategic value behind its products and roadmap. This article explains how trust-building, industry advocacy, and clear communication shape customer confidence and long-term adoption.

The Solutions Architect Journey in Cybersecurity: From Junior to Principal Architect

Click here
This article describes the progression from junior engineer to principal architect through increasing technical depth, architectural responsibility, and strategic influence.

Sales Engineer vs. Solutions Architect: What’s the Real Difference in Cybersecurity Pre-Sales?

Click here
While both roles blend technical and business skill sets, sales engineers focus on deal execution while solutions architects emphasize long-term design strategy. This article clarifies their responsibilities, overlaps, and where each position adds the most value in the sales cycle.

The Sales Engineer Journey in Cybersecurity: From Junior to Principal Architect

Click here
This article frames the sales engineer career path as one defined by growing technical credibility, customer influence, and revenue impact. It explains how senior SEs evolve into trusted advisors capable of guiding enterprise-wide security decisions.

Mastering Cybersecurity Discovery: Best Practices for Selling SIEM and MDR Services to Enterprise Customers

Click here
Effective SIEM and MDR selling begins with structured discovery that identifies customer risks, operational gaps, and maturity levels. This article outlines key questions, engagement techniques, and positioning strategies to align managed security services with customer objectives.

What is WCCP?

Click here
This post introduces Web Cache Communication Protocol (WCCP), explaining its purpose in optimizing and redirecting network traffic. It provides a straightforward overview of how the protocol works and why organizations use it in secure network designs.

Leading U.S. Cybersecurity Awareness Company Unknowingly Hires Remote North Korean Hacker

Click here
This article recounts a real-world case where a security training firm inadvertently hired a North Korean threat actor through remote contracting. It highlights the importance of rigorous identity verification and supply-chain diligence in the modern workforce.

Ticketmaster confirms hack which could affect 560m

Click here
This article summarizes the Ticketmaster breach, detailing how threat actors accessed customer data on a massive scale. It emphasizes the broader implications for enterprise risk management, third-party security, and regulatory exposure.

What makes a cybersecurity sales engineer?

Click here
This updated version reinforces the essential attributes of a high-performing cybersecurity sales engineer, including communication, problem-solving, and technical fluency. It further highlights how customer engagement and value-driven storytelling shape successful security outcomes.

DNS: Types of DNS Records, DNS Servers and DNS Query Types

Click here
This article provides a comprehensive overview of DNS fundamentals, including record types, server roles, and how queries resolve across the internet. It offers readers a clear technical foundation to better understand DNS operations and troubleshooting.

The Top 6 DNS Attack Vectors per ChatGPT

Click here
This post outlines the most common DNS-related attack methods, explaining how each one threatens availability, integrity, or data confidentiality. It also provides guidance on detection and defensive practices for organizations.

The 10 Domains of Cybersecurity

Click here
This article breaks down cybersecurity into ten core domains that define a complete security program framework. It serves as a high-level guide for understanding organizational responsibilities and risk management across each area.

How Network Traffic Can Mask A Serious Cyber Threat

Click here
This post explains how normal-looking network traffic can hide malicious activity, especially when attackers deliberately mimic expected patterns. It highlights the importance of behavioral analytics and anomaly detection in uncovering hidden threats.

Can Cybersecurity be Automated?

Click here
This article examines the capabilities and limitations of automation in modern cybersecurity operations. It explains where automation enhances detection and response and where human judgment remains essential.

5 Common Indicators of a Phishing Attempt

Click here
Phishing is one of the most common and effective cybersecurity attack vectors, accounting for roughly a quarter of all ransomware attacks between 2019 and 2021, according to research from Cloudian.

5 questions every higher-ed security leader should ask

Click here
This article presents five strategic questions that help higher-education CISOs evaluate their security posture and operational readiness. It emphasizes planning, resource allocation, and the unique risks facing academic environments.

Building A Home Cybersecurity Lab

Click here
This guide explains how to build a personal cybersecurity lab for training, testing, and hands-on experimentation. It covers essential tools, recommended setups, and the value of a safe environment for skill development.

Prevent WordPress hacking using this Pen Testing guide

Click here
This article walks through practical penetration testing techniques to identify and resolve vulnerabilities in WordPress sites. It stresses proactive hardening, plugin evaluation, and continuous security monitoring.

Hacking WordPress: Building the Lab

Click here
This companion article explains how to set up a controlled environment to practice WordPress exploitation techniques. It guides readers through safe tooling, sandboxing, and preparation for ethical testing.

10 Steps to Creating a Secure IT Environment

Click here
This article outlines ten actionable steps to build a secure technology environment across users, systems, and policies. It emphasizes layered defenses, staff training, and continuous security governance.

The Dark Web has a Serious Deduplication Problem

Click here
This post describes how poor data hygiene and duplicate content on the dark web reduce the reliability of leaked datasets. It examines what this inconsistency means for threat intelligence accuracy and breach impact analysis.

WannaCry (2017): The Ransomware That Moved Like a Plague

Click here
Everything that could blink or beep was suddenly held hostage. WannaCry used EternalBlue, a Windows exploit pulled straight out of the NSA’s toolkit and dropped online by the Shadow Brokers like some chaotic “free sample.”

NotPetya (2017): The Malware That Pretended to Be a Ransom Attack… Then Destroyed Everything

Click here
It began in Ukraine — inside a widely used tax accounting software called M.E.Doc. Attackers compromised the update server and delivered a poisoned software patch to businesses across the country.

Lizard Squad’s Christmas Chaos: The DDoS That Took Down Gaming (2014)

Click here
Christmas morning, 2014. Kids open new Xbox Ones and PlayStations. Parents are half-awake with coffee. Millions of people try to log in. And nothing works.

Heartbleed: The Bug That Bled the Internet Dry (2014)

Click here
In early 2014, security researchers discovered something that felt unreal — a flaw that let attackers silently siphon memory straight out of servers. Not files. Not logs. Memory. Raw, unfiltered thoughts of machines.

The Sony Pictures Hack: The Movie That Started a Cyberwar (2014)

Click here
Employees panicked as machines shut down, phones died, and entire servers started erasing themselves. Backup drives were overwritten. Render farms collapsed. Years of unreleased scripts, HR files, payroll, emails — all dragged into digital oblivion.

The Yahoo Mega Breach: 3 Billion Accounts Exposed (2013–2014)

Click here
Yahoo thought it was just another day in 2013. But deep inside their authentication systems, attackers were already rummaging around like they owned the place.

Target POS Breach (2013): The Christmas Heist Nobody Saw Coming

Click here
Snow was falling. Christmas music played in every Target store. Parents were hunting for deals. Kids were begging for toys. Target’s network was buzzing with the electrical joy of capitalism.

RSA Breach (2011): The Day a Spearphish Sank a Giant

Click here
RSA wasn’t supposed to be vulnerable. They were the company that made security tokens for militaries, governments, and Fortune 500s. Their job was to guard secrets — not lose them.

Stuxnet: The Virus That Sabotaged a Nuclear Program (2010)

Click here
The Iranians believed their centrifuges were secure — isolated from the internet on an air-gapped network. But Stuxnet didn’t need the internet. It needed a USB stick.

The Worm That Crashed the Early Internet (1988 — The Morris Worm)

Click here
On a cold November night in 1988, the glow of a lone monitor lit up a quiet lab at Cornell University. Robert Tappan Morris — 23 years old, brilliant, restless, and carrying the curiosity only early hackers possessed — leaned back in his chair as he compiled the final lines of code.

Captain Crunch & The 2600 Hz Whistle: The Toy That Opened the Phone System

Click here
Long before ransomware, zero-days, or nation-state APTs, the world’s most powerful communications network could be hacked with a plastic toy whistle from a cereal box.

Sales Engineer Cloud

Sales Engineer Cloud is in Beta

We’re opening early access to professionals who want hands-on tools, structured learning, and real certifications — and who are comfortable helping shape the platform as it evolves.

This is a participatory Beta program with discounted access and real influence on what gets built next.

Feedback is required as part of the Beta program.

Count Me In

Maybe Next Time