Author: Clive Catton

Clive Catton MSc (Cyber Security)

Clive is the CISO at Octagon Technology Ltd with special responsibility for data privacy and cybersecurity. The world of business technology is constantly changing and to meet this challenge he recently graduated from Edinburgh Napier University with an MSc in Advanced Computer Security and Digital Forensics - this course is certified by the Nation Cyber Security Centre. His dissertation was on data privacy and classification in small businesses using Microsoft 365 for Business.

The degree is not the end of the studying – to keep current Clive spends some of his time at work simply reading and studying the latest technology trends and threats so our clients can benefit from this knowledge. This knowledge also shapes and supports the products and services Octagon delivers to clients.

To make full use of Clive’s Master’s degree in cybersecurity, Clive and Diana have a joint venture with an international research company to get access for our clients to up to date information, schemas, analytics, templates, actionable tools and guidance. Whatever the size of your organisation if you are not approaching IT, cybersecurity and information privacy in a way that supports and benefits you, they can help, from the boardroom to the shop floor.

Clive and Diana are also working on a project to provide flexible online cyber security training for businesses at CyberAwake - Train Your Team To Protect You Against Cyber Attacks. Clive is the cybersecurity consultant for the project.

Clive has a long running personal blog at Clive's Blog. Here he publishes articles about photography, walking, camping, technology, stuff he just likes and since January 1, 2012, he posts "a photo a day" on the blog.

12 June 202312 June 2023

Another network hardware flaw – this time VPNs

Lat week it was Barracuda this week it is Fortinet VPNs: Fortinet fixes critical RCE flaw in Fortigate SSL-VPN devices, patch now (bleepingcomputer.com) By now you should have realised that network hardware has to be on your cyber security to do list. A note on VPNs I am away this …

Continue reading “Another network hardware flaw – this time VPNs”

10 June 20239 June 2023

More on an AI risk and an extinction event

AI risk what is it? This is a follow-up to last weekend’s more extensive post looking at the AI extinction event that was making headlines in the mainstream media. If we’re going to label AI an ‘extinction risk’, we need to clarify how it could happen (theconversation.com) Professor Nello Cristianini, …

Continue reading “More on an AI risk and an extinction event”

9 June 202315 December 2023

Credentials – A Primer

Today I am going to look at why credentials are so important in cyber security? Credentials for identity The management of credentials across your organisation for all services is an important impact of your cyber security, whether it is someone using the global administrator account as their “daily driver” work …

Continue reading “Credentials – A Primer”

9 June 20239 June 2023

CISA cyber security advisories

The US government Cybersecurity and Infrastructure Security Agency (CISA) is one of my go to places for advice on product vulnerabilities and patching. There were two this week for VMware and Mozilla Firefox. VMware Releases Security Update for Aria Operations for Networks | CISA Mozilla Releases Security Updates for Multiple …

Continue reading “CISA cyber security advisories”

9 June 20239 June 2023

Why team training has to be part of your cyber security plan?

We all have the best technical cyber security defences in place we can afford (or we should have). The threat actors know this so they are always on the hunt for those techniques that our anti-virus and filtering systems cannot detect. PowerShell is a powerful Windows command line and automation …

Continue reading “Why team training has to be part of your cyber security plan?”

Cookie	Duration	Description
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.