Regular readers know that I use the US government Cybersecurity and Infrastructure Security Agency (CISA) website as a reliable source of information on software and hardware vulnerabilities. Ones that impact the organisations we support are escalated to our support team, then I write about those and the rest here, for …
Because It’s Friday – Two Password Stories
Password! Bear with me, this is not a regular cyber security article – although it does depend on the password. As with all the “Because It’s Friday” articles – it will ease you into the weekend. Password Rules We have all had password frustrations. You think you have put in …
Continue reading “Because It’s Friday – Two Password Stories”
Now Microsoft Teams is a target for threat actors
Once Microsoft finally closed the door on the Office macro the threat actors had to move on: Microsoft Office Macros – The Good, The Bad and the Ugly – CyberAwake OneNote was their first target: Now OneNote is an attack vector | Smart Thinking Solutions QakNote – OneNote malware now …
Continue reading “Now Microsoft Teams is a target for threat actors”
Ransomware and the Phishing Email
There has been some very high profile international cases of organisations getting infected with ransomware. Especially active is the LockBit gang. LockBit ransomware infection hits Japan’s top cargo port • The Register TSMC says IT supplier extorted by LockBit • The Register We should assume these organisations – a world …
The Zero-day Problem – Do Something Special
The Zero-day Attack. Is there something more I can do? As I discussed in the first and second part of this mini-series looking at the zero-day threat, what you are having to do is defend against the unknown – something that at first glance would seem impossible. Zero-day – It …
Continue reading “The Zero-day Problem – Do Something Special”
