Author: Clive Catton

Clive Catton MSc (Cyber Security)

Clive is the CISO at Octagon Technology Ltd with special responsibility for data privacy and cybersecurity. The world of business technology is constantly changing and to meet this challenge he recently graduated from Edinburgh Napier University with an MSc in Advanced Computer Security and Digital Forensics - this course is certified by the Nation Cyber Security Centre. His dissertation was on data privacy and classification in small businesses using Microsoft 365 for Business.

The degree is not the end of the studying – to keep current Clive spends some of his time at work simply reading and studying the latest technology trends and threats so our clients can benefit from this knowledge. This knowledge also shapes and supports the products and services Octagon delivers to clients.

To make full use of Clive’s Master’s degree in cybersecurity, Clive and Diana have a joint venture with an international research company to get access for our clients to up to date information, schemas, analytics, templates, actionable tools and guidance. Whatever the size of your organisation if you are not approaching IT, cybersecurity and information privacy in a way that supports and benefits you, they can help, from the boardroom to the shop floor.

Clive and Diana are also working on a project to provide flexible online cyber security training for businesses at CyberAwake - Train Your Team To Protect You Against Cyber Attacks. Clive is the cybersecurity consultant for the project.

Clive has a long running personal blog at Clive's Blog. Here he publishes articles about photography, walking, camping, technology, stuff he just likes and since January 1, 2012, he posts "a photo a day" on the blog.

30 August 202230 August 2022

Turkish Malware

The trick with this one is that it will delay installation to avoid detection: Turkish malware used to infect machines in 11 countries through fake Google Translate links – The Record by Recorded Future It appears to be a Google Translate or mp3 downloader link, and has infected machines across …

Continue reading “Turkish Malware”

30 August 202230 August 2022

Maybe this attack may not target my readers, but you never know?

The is active attack running on the internet at the moment targeting the CEOs and CFOs of some of the biggest companies around. These threat actors are not looking for targets of opportunity, for the work they put in they only want targets that can return millions of Pounds or …

Continue reading “Maybe this attack may not target my readers, but you never know?”

30 August 202230 August 2022

And here is another phishing attack story – have you visited CyberAwake.co.uk yet?

I have just written about this supply chain cyber attack: Developer software repositories will always be a prime target for threat actors – Smart Thinking Solutions And here is another phishing attack hunting for the unwary who will reveal their credentials: DoorDash customer info exposed in Oktapus phishing attack • …

Continue reading “And here is another phishing attack story – have you visited CyberAwake.co.uk yet?”

30 August 202224 May 2023

Software repositories are a target for threat actors

If you, as a threat actor, could embed your malware into a software module, that is then used by many innocent and unaware software developers in their packages, they release to the general public, wouldn’t you? That looks like a lot of infected machines for a small amount of work. …

Continue reading “Software repositories are a target for threat actors”

30 August 202231 August 2022

The FBI warning of DeFi vulnerabilities being exploited

The FBI has issued a warning to investors who plan to Decentralized Finance (DeFi) Platforms for crypto-currency transactions highlighting the ease with which threat actors are exploiting any vulnerabilities in the platform’s security. Cyber Criminals Increasingly Exploit Vulnerabilities in Decentralized Finance Platforms to Obtain Cryptocurrency, Causing Investors to Lose Money …

Continue reading “The FBI warning of DeFi vulnerabilities being exploited”

Cookie	Duration	Description
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.