Cybersecurity Starts in the Boardroom
A UK Government’s report looking at cybersecurity breaches across the country, (UK Government. 2022), prepared by Department for Digital, Culture, Media & Sport (and sport!) showed clearly email phishing is a real threat: “Of the 39% of UK businesses who identified an attack, the most common threat vector was phishing …
It is that time again – among the fixes and patches from Microsoft, for July 2022 is one addressing CVE-2022-22047, Windows Elevation of Privilege Vulnerability – according to Microsoft a zero-day flaw that is being exploited by threat actors. For more details see Bleeping Computer’s excellent round-up of Patch Tuesday: …
Comic book reading platform Mangatoon has leaked the personal data of over 23 million accounts: Mangatoon data breach exposes data from 23 million accounts (bleepingcomputer.com) Thankfully I do not use this service to read comics – but I do use “keyless” with my car!
It may be a new cyber gang but Luna Moth are using the oldest tricks in the book – phishing with social engineering to exploit user’s trust: New ‘Luna Moth’ hackers breach orgs via fake subscription renewals (bleepingcomputer.com) What you and your team need is an awareness of what social …
Continue reading “Social Engineering to breach security – fake subscription renewals”
This post was originally published on 8 July 2022 Update 12 July 2022 Microsoft says that this rollback of “stopping macros from the web being blocked, out of the box” is only temporary and it points out that admins can still implement this restriction through Group policies: Macros from the …
