The threat actors do not have it all their own way – law enforcement does fight back. IN this case the FBI infiltrated the Dark Web assets of the BlackCat/AlphV ransomware gang getting an insight into how they work. Domians were seized and closed down disrupting the gangs operations and …
Don’t Wait!
I write a lot about patches and updates – that is because they are an important element in any cyber security plan. The quote above from Bruce Schneier sums it up. However not everyone reads my articles or Bruce’s books: Xfinity waited 13 days to patch critical Citrix Bleed 0-day. …
Unsolicited MFA prompts
Last Wednesday I published my MFA Primer series and part two looks at this type of cyber attack against multi-factor authentication. In brief when the threat actors have a valid set of credentials they repeatedly try and access the service with them, generating multiple MFA requests to your authenticator app. …
Because It’s Friday – Christmas is almost here
This is not so much a funny as topical, with the online (and real world) Christmas shopping rush in full progress. (For those of you still shopping – I’m done.) One Foot Tsunami: Package Camoflauge So, talking of Christmas gifts, this is an opportunity to point you at Octagon’s blog …
Continue reading “Because It’s Friday – Christmas is almost here”
Microsoft takes a stand
This one action is not going to stop cyber-crime, but Microsoft has seized rogue domains in the past and there is no doubt that it has an impact on the threat actor’s illicit infrastructure. Microsoft seizes websites used to sell phony email accounts • The Register Your takeaway from this …
