The US government Cybersecurity and Infrastructure Security Agency (CISA) site is one of the “go to places” for me and my team to keep up with vulnerabilities in our client’s software. Although aimed at the US Government and US users it is still really useful. The alerts cover both software …
MFA – A Primer
For the Wednesday Bit this week I am going to point you at a series I recently wrote about multi-factor authentication (MFA) – whilst I go out and do some Christmas Shopping! MFA is an important part of any cyber security plan and you should at least understand the basics …
Ransomware – If the government is not taking it seriously you should…
I will start with this report from The Record about the ransomware risk in the UK: UK government risking ‘catastrophic ransomware attack at any moment,’ parliamentary report warns (therecord.media) If you have now read that, then you should be taking responsibility for your organisation’s readiness for a ransomware or other …
Continue reading “Ransomware – If the government is not taking it seriously you should…”
Microsoft Patch Tuesday – December 2023
It is the second Tuesday of the month that means this morning, our support team have been reviewing our client monitoring reports and the SOC to check that the Microsoft Patch Tuesday updates have been completed. They will keep an eye on the reports all day to check there are …
WordPress backup plugin compromised
If you or your web developer uses the WordPress plugin Backup Migration as part of your cyber security plan to protect your website – then you need to take action as it has a fatal flaw: 50K WordPress sites exposed to RCE attacks by critical bug in backup plugin (bleepingcomputer.com) …