Cybersecurity Starts in the Boardroom
Sorry, this is not a coffee* appreciation article it is an article about planning and preparation for an incident. Planning and Preparation = Good Governance Businesses and organisations need a cyber security policy and a plan covering what they do to mitigate the risk of an incident and what they …
Continue reading “Practice Drinking Coffee* better known as Planning and Preparation”
Ransomware will not go away – threat actors make too much money and steal too much valuable information using it. Now 36 nations and the EU member states have created a five department coalition of expertise to disrupt and combat ransomware. The International Counter Ransomware Task Force’s (ICRTF) operations cover: …
Continue reading “International Co-operation to Disrupt Ransomware”
If you do get infected with BanLian ransomware Avast may have a quicker answer for you, rather than using your ransomware resilient back-up – a free decryptor: Beating BanLian ransomware with decryption • The Register Obviously the are caveats, you have to be infected with the exact strain of ransomware …
Continue reading “A ray of hope if you are hit with BanLian ransomware”
Threat actors have been taking advantage of an exploited set of Microsoft credentials to embed ransomware attacks into signed drivers: Microsoft-signed malicious Windows drivers used in ransomware attacks (bleepingcomputer.com) And LockBit got through the cyber security defences of California’s Department of Finance: LockBit claims attack on California’s Department of Finance …
This is another good resource from the US government Cybersecurity and Infrastructure Security Agency (CISA). Vulnerabilities for Fortinet, Citrix have been added but also for Microsoft Defender and Veeam Backup both of which are vital tools in the fight against threat actors: CISA Adds Five Known Exploited Vulnerabilities to Catalog …
Continue reading “CISA adds five vulnerabilities to the Known Exploited Vulnerabilities Catalog”
