Author: Clive Catton

Clive Catton MSc (Cyber Security)

Clive is the CISO at Octagon Technology Ltd with special responsibility for data privacy and cybersecurity. The world of business technology is constantly changing and to meet this challenge he recently graduated from Edinburgh Napier University with an MSc in Advanced Computer Security and Digital Forensics - this course is certified by the Nation Cyber Security Centre. His dissertation was on data privacy and classification in small businesses using Microsoft 365 for Business.

The degree is not the end of the studying – to keep current Clive spends some of his time at work simply reading and studying the latest technology trends and threats so our clients can benefit from this knowledge. This knowledge also shapes and supports the products and services Octagon delivers to clients.

To make full use of Clive’s Master’s degree in cybersecurity, Clive and Diana have a joint venture with an international research company to get access for our clients to up to date information, schemas, analytics, templates, actionable tools and guidance. Whatever the size of your organisation if you are not approaching IT, cybersecurity and information privacy in a way that supports and benefits you, they can help, from the boardroom to the shop floor.

Clive and Diana are also working on a project to provide flexible online cyber security training for businesses at CyberAwake - Train Your Team To Protect You Against Cyber Attacks. Clive is the cybersecurity consultant for the project.

Clive has a long running personal blog at Clive's Blog. Here he publishes articles about photography, walking, camping, technology, stuff he just likes and since January 1, 2012, he posts "a photo a day" on the blog.

31 May 202331 May 2023

Explain to me what a phishing email looks like?

This is something I try and explain at every cyber security awareness session I run – what is a phishing email? The answer is constantly changing as the threat actors never stand still in their attempts to get us to infect our own computers. I used to point to bad …

Continue reading “Explain to me what a phishing email looks like?”

30 May 202329 May 2023

New info stealing malware

Bandit Stealer malware is promoted by the hacker developers as the most advanced information stealer available to threat actors. It can exfiltrate data from most popular browsers including usernames and cookies and other system information such as IP addresses and details of a victim’s computer. The Telegram messaging app is …

Continue reading “New info stealing malware”

30 May 202329 May 2023

CISA Advisory

The US government Cybersecurity and Infrastructure Security Agency (CISA) had added a vulnerability for Barracuda Networks devices to the Known Exploited Vulnerabilities Catalog: CISA Adds One Known Exploited Vulnerability to Catalog | CISA

30 May 202329 May 2023

PyPi software repository takes the most basic of security steps…

Having temporarily closed its doors last week to new business, PyPi – a python code repository – is now enforcing the most basic of cyber security precautions – 2FA! PyPI announces mandatory use of 2FA for all software publishers (bleepingcomputer.com) Your takeaway from this is that any essential business service …

Continue reading “PyPi software repository takes the most basic of security steps…”

27 May 202329 May 2023

LLM AI Vulnerabilities

Here is an excellent essay by Baldur Bjarnason on the manipulation of ChatGPT and other large language model AIs: The poisoning of ChatGPT (softwarecrisis.dev)

Cookie	Duration	Description
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.