I have just started an IT and Cyber Security Audit for a client and we have barely started when the issue of mobile phone use has come up – because there are more cyber security risks with Android devices when compared to iOS devices. Over 90 malicious Android apps with …
USB cyber-attack – Device Security (Pt. 4)
I thought I was done with device security for the time being – but then, of course, I got a question from a client. “What about USB drives?” Rather than write a completely new article let me reprint an article I wrote for CyberAwake looking at USB storage security – …
Continue reading “USB cyber-attack – Device Security (Pt. 4)”
Threat actors target MFA
Whatever you read here in a few moments – it is my opinion that MFA (Multi-factor authentication) still remains a key tool in protecting your team’s credentials and defending your information. MFA under attack There have always been weaknesses in and attacks against, some very simple such as just annoying …
You need an Android smartphone BYOD policy
Here is another mass download of a malware infected Android app: SpinOk Android malware found in more apps with 30 million installs (bleepingcomputer.com) Please have a look at this: Scanning for Apple iPhone iOS malware You need a bring-your-own-device policy for your phones. This policy should also include to company …
Continue reading “You need an Android smartphone BYOD policy”
Scanning for Apple iPhone iOS malware
This is not what you are thinking. It is not a malware scanner on your Apple iPhone and it is for a very specific malware infection. What it is a multi-platform scanner produced by, the Russian security company, Kaspersky to detect if an iOS device has been infected with ‘Triangulation’ …
Let’s finish the week where we started it – Android Malware
Here is a deep dive on the operation of the Predator Android malware by Bill Toulas of Bleeping Computer from research by Cisco Talos and the Citizen Lab. Predator: Looking under the hood of Intellexa’s Android spyware (bleepingcomputer.com) Predator is commercially available malware – only sold to governments or authorised …
Continue reading “Let’s finish the week where we started it – Android Malware”
CISA Security Advisories – and why checking this post and software patching is important
CISA is the US government’s Cybersecurity and Infrastructure Security Agency and a very good source cyber security and software patching information. Last week they posted several software patching updates and known vulnerabilities that are being exploited and mitigations for them. Samba Releases Security Updates for Multiple Versions of Samba | …