Cybersecurity Starts in the Boardroom
Microsoft’s VBScript has been over taken by both new technology and threat actors – it is time for it to go. Microsoft to start killing off VBScript in second half of 2024 – BleepingComputer I have written about the cyber security consequences of such built in functionality and what happens …
Continue reading “When a feature becomes a cyber security liability”
I am going to quote the BleepingComputer article by Sergiu Gatlan to illustrate the reach of the vulnerability in Fluent Bit. “Fluent Bit is an extremely popular logging and metrics solution for Windows, Linux, and macOS embedded in major Kubernetes distributions, including those from Amazon AWS, Google GCP, and Microsoft …
Zero-day software vulnerabilities are an issue for every vendor – how quick they react to them when they eventually find out they have a problem will be a key part of the risk in your cyber security planning. Google seems to get on this issue really quickly – as far …
…but sometimes they go wrong. Microsoft has had to fix a number of problems following the April Patch Tuesday. Microsoft says April Windows updates break VPN connections (bleepingcomputer.com) Microsoft: April Windows Server updates cause NTLM auth failures (bleepingcomputer.com) I included these stories in this week of device security as a …
Continue reading “There is no choice but to run cyber security updates…”
I have written about the risks of Android apps – a lot, see the highlights of the issue here: Device Security (Pt. 2) | Smart Thinking Solutions However to reinforce the statement that apps downloaded from the Google Play Store can be a serious security risk on your organisation’s information, …
