Cybersecurity Starts in the Boardroom
I have just written this article, showing that more than 24billion stolen credentials are available for sale on the dark web: Now here is a voice mail phishing attack that is designed to steal your Microsoft credentials – so they can join the other 24 billion on the Dark Web: …
Continue reading “Threat actors come up with yet another way to steal your Microsoft credentials…”
End of support for Internet Explorer 11 web browser Today 15 June 2022, Microsoft will retire the Internet Explorer (IE) 11 after 27 years of Internet Explorer being included with Windows. There will no longer be security updates for the application, which means when the threat actors find flaws in …
We will start with the good news – the zero-day threat Follina/msdt.exe has been patched. Let’s hope that it really is the fix we all need! Microsoft June 2022 Patch Tuesday fixes 1 zero-day, 55 flaws (bleepingcomputer.com) There are other fixes in the update, for Excel, Edge, Microsoft networking etc …
Continue reading “Microsoft Patch Tuesday – Follina zero-day fixed”
This post was first made on 24 March 2022 I wrote about this yesterday as it got caught up in Lapsus$/Microsoft story – but the network access company, Okta, has been compromised by Lapsus$: Hundreds of companies potentially hit by Okta hack – BBC News First Microsoft, then Okta: New …
Continue reading “Are you one of the 15,000 organisations using Okta? UPDATED 22 April 2022”
The ability to sideload apps on an Android device, bypassing any curation in the Google Play Store and the apparent regularity that that app store misses malicious content in Android apps, is an constant cyber security issue for anyone using Android. Here are two recent examples: Android apps with 45 …
Continue reading “Android apps found with hidden malicious functions”
