Author: Clive Catton

Clive Catton MSc (Cyber Security)

Clive is the CISO at Octagon Technology Ltd with special responsibility for data privacy and cybersecurity. The world of business technology is constantly changing and to meet this challenge he recently graduated from Edinburgh Napier University with an MSc in Advanced Computer Security and Digital Forensics - this course is certified by the Nation Cyber Security Centre. His dissertation was on data privacy and classification in small businesses using Microsoft 365 for Business.

The degree is not the end of the studying – to keep current Clive spends some of his time at work simply reading and studying the latest technology trends and threats so our clients can benefit from this knowledge. This knowledge also shapes and supports the products and services Octagon delivers to clients.

To make full use of Clive’s Master’s degree in cybersecurity, Clive and Diana have a joint venture with an international research company to get access for our clients to up to date information, schemas, analytics, templates, actionable tools and guidance. Whatever the size of your organisation if you are not approaching IT, cybersecurity and information privacy in a way that supports and benefits you, they can help, from the boardroom to the shop floor.

Clive and Diana are also working on a project to provide flexible online cyber security training for businesses at CyberAwake - Train Your Team To Protect You Against Cyber Attacks. Clive is the cybersecurity consultant for the project.

Clive has a long running personal blog at Clive's Blog. Here he publishes articles about photography, walking, camping, technology, stuff he just likes and since January 1, 2012, he posts "a photo a day" on the blog.
Posted on

Then there was a third problem with WordPress… BackupBuddy

wordpress icon

WordPress plugin called BackupBuddy I wrote an article today for our training site CyberAwake, questioning exactly how much governance organisations are extending to their websites. The article started off because of two WordPress issues this week and during my background reading for the article I came across this from last …

Continue reading “Then there was a third problem with WordPress… BackupBuddy”

Posted on

Every major event will attract cyber criminals. What is your organisation doing on Monday 19 September?

The Queen

The death of Her Majesty Queen Elizabeth II and the associated ceremonies and period of national mourning will be no exception: Potential phishing activity update – NCSC.GOV.UK The National Cyber Security Centre has issued a warning that the potential for malicious phishing, social engineering and scam cyber-attacks is very high …

Continue reading “Every major event will attract cyber criminals. What is your organisation doing on Monday 19 September?”

Posted on

Two WordPress vulnerability posts in a day – WPGateway zero-day vulnerability

WordPress website claim makes it a BYOD risk

Earlier today I wrote about the FishPig/Magento supply chain attack, now I have come across another WordPress cyber security problem. A popular WordPress plugin is being actively exploited. PSA: Zero-Day Vulnerability in WPGateway Actively Exploited in the Wild (wordfence.com) The Wordfence Threat Intelligence team have warned that WordPress sites running …

Continue reading “Two WordPress vulnerability posts in a day – WPGateway zero-day vulnerability”

Posted on

Do you use FishPig ecommerce software? You don’t know. Then check now because it may have been compromised.

This is a classic supply chain attack. UK based FishPig, seller of Magento WordPress integrations, ecommerce software has discovered that its distribution server had been compromised, which allowed threat actors backdoor access to the customer’s systems. The ecommerce software is believed to be used by more than 200,000 websites. Breach …

Continue reading “Do you use FishPig ecommerce software? You don’t know. Then check now because it may have been compromised.”