Cybersecurity Starts in the Boardroom
We are always insisting that our clients always use multi-factor authentication (MFA) for absolutely every service they use. It is a prerequisite of any client we manage Microsoft 365 for that MFA is activated and enforced for everyone of their users. However, of course, there are ways that hackers exploit …
This is something we have been following in our “weekend read“ features: A big bet to kill the password for good | Ars Technica
This post was originally made on 22 March 2022 Following attacks on Nvidia and Samsung, there were claims over the weekend form the extortion gang Lapsus$ that they had breached Microsoft. Microsoft investigates Lapsus$ claim of Bing, Cortana theft • The Register Microsoft investigating Lapsus$ claims of Bing, Cortana data …
Continue reading “Has Microsoft been compromised? Check your Microsoft independent backups. UPDATED”
This browser-in-the-browser (BitB) is a technique for deceiving the user into thinking they are using a legitimate online login screen, such as when you log in to Microsoft 365 or Google Workspace. This browser-in-the-browser attack is perfect for phishing • The Register Behold, a password phishing site that can trick …
Continue reading “Be very careful when you log-in online – things may not be what they seem”
Recently the security of open source software has been questioned, particularly with respect to Linux vulnerabilities that have a huge impact due to Linux’s use as internet infrastructure. When volunteer coders are keeping the software secure – who takes responsibility. Steps have started to be taken to increase the security …
