Once upon a time I would be lectured by Mac users on how Macs did not get malware or computer viruses. This was probably because the user base was not big enough to attract threat actors. Today however things are very different. Macs are as vulnerable as any other computer …
The US government Cybersecurity and Infrastructure Security Agency security advisories
The US government Cybersecurity and Infrastructure Security Agency (CISA) is a trusted source of information on security updates and exploited vulnerabilities. My team use it as one of their go to resources. The latest updates include the other vendors that release updates around the same time as Microsoft’s Patch Tuesday. …
Move away from text- or voice-based multi-factor authentication
Let’s take a look at what good multi-factor authentication is. I am writing a mini-series for CyberAwake about the mistakes users make when choosing a secure password and how hackers can exploit those mistakes, so a quick look at MFA seems like a good idea. What is multi-factor authentication? A …
Continue reading “Move away from text- or voice-based multi-factor authentication”
Microsoft Patch Tuesday
As promised – a reminder of Microsoft’s Patch Tuesday… This morning, our support team have been reviewing our client monitoring reports and the SOC to check that the Microsoft Patch Tuesday updates have been completed. They will keep an eye on the reports all day to check there are no …
Zero-day Google Chrome vulnerability
Emergency patches have been issued for Google Chrome to address a vulnerability that is being exploited in the wild. Google fixes another Chrome zero-day bug exploited in attacks (bleepingcomputer.com) If your team uses Chrome then check these patches have been done. We use Google Chrome and we know our patching …
