Author: Clive Catton

Clive Catton MSc (Cyber Security)

Clive is the CISO at Octagon Technology Ltd with special responsibility for data privacy and cybersecurity. The world of business technology is constantly changing and to meet this challenge he recently graduated from Edinburgh Napier University with an MSc in Advanced Computer Security and Digital Forensics - this course is certified by the Nation Cyber Security Centre. His dissertation was on data privacy and classification in small businesses using Microsoft 365 for Business.

The degree is not the end of the studying – to keep current Clive spends some of his time at work simply reading and studying the latest technology trends and threats so our clients can benefit from this knowledge. This knowledge also shapes and supports the products and services Octagon delivers to clients.

To make full use of Clive’s Master’s degree in cybersecurity, Clive and Diana have a joint venture with an international research company to get access for our clients to up to date information, schemas, analytics, templates, actionable tools and guidance. Whatever the size of your organisation if you are not approaching IT, cybersecurity and information privacy in a way that supports and benefits you, they can help, from the boardroom to the shop floor.

Clive and Diana are also working on a project to provide flexible online cyber security training for businesses at CyberAwake - Train Your Team To Protect You Against Cyber Attacks. Clive is the cybersecurity consultant for the project.

Clive has a long running personal blog at Clive's Blog. Here he publishes articles about photography, walking, camping, technology, stuff he just likes and since January 1, 2012, he posts "a photo a day" on the blog.

31 January 202324 May 2023

Supply chain vulnerability

We have many clients who have their own software or have custom software on their website or web apps written for them by developers. These developers may or may not reuse code or modules written by third party developers and sourced through a software repository – such as GitHub or …

Continue reading “Supply chain vulnerability”

31 January 202331 January 2023

If you have a QNAP NAS then get t patched

QNAP NAS devices are becoming very popular in smaller organisations that want a back-up and/or storage device, mainly we think because of their rich feature set, price and availability through Amazon. But a vulnerability has been discovered in the firmware and the vendors have a patch for it – so …

Continue reading “If you have a QNAP NAS then get t patched”

30 January 202330 January 2023

JD Sports hit by a cyber incident

The sportswear company JD Sports is reporting that potentially the data it held on over 10 million customers may have been accessed in a cyber attack: JD Sports says 10 million customers hit by cyber attack. – BBC News The issues covers several of the company’s brands: JD Sports is …

Continue reading “JD Sports hit by a cyber incident”

30 January 202330 January 2023

National Cyber Security Centre Threat Report 27 January 2023

Threat Report 27th January 2023 – NCSC.GOV.UK

27 January 202326 January 2023

CISA adds a software development tool vulnerability to the Known Exploited Vulnerabilities Catalog and security advisories

The US government Cybersecurity and Infrastructure Security Agency (CISA) has added a vulnerability for Telerik, a software development tool, to it’s Known Exploited Vulnerabilities Catalog: CISA Has Added One Known Exploited Vulnerability to Catalog | CISA This week CISA also released a security advisory for a range of Apple products, …

Continue reading “CISA adds a software development tool vulnerability to the Known Exploited Vulnerabilities Catalog and security advisories”

Cookie	Duration	Description
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.