I have written about the risks of Android apps – a lot, see the highlights of the issue here: Device Security (Pt. 2) | Smart Thinking Solutions However to reinforce the statement that apps downloaded from the Google Play Store can be a serious security risk on your organisation’s information, …
I had not heard of eScan anti-virus…
…but a North Korean threat actor group had and they hijacked the update process to inject malware into the “protected” systems. Researchers at Avast believe the group is the North Korean APT group Kimsuki. The malware installs GuptiMiner – a crypto-miner – and disables several other security precautions if they …
Manage your security patching
Here are a couple of examples from the recent cyber-tech press of examples of software vulnerabilities that need patching… Promptly! Microsoft releases Exchange hotfixes for security update issues – BleepingComputer ArcaneDoor hackers exploit Cisco zero-days to breach govt networks – BleepingComputer The first illustrates that management is needed as not …
Why patching is important
Even though the US National Security Agency (NSA) reported this flaw to Microsoft and they patched it in their October 2022 Patch Tuesday, the threat group APT28 is still exploiting it. Microsoft: APT28 hackers exploit Windows flaw reported by NSA – BleepingComputer The Russian threat group uses a hacking tool …
Fake cheat codes should get you thinking about your hybrid workers
I am never popular when I am helping organisations create cyber security plans and I insist that company laptops are only for company business. This applies double when the laptop is used at home or on holiday – you cannot let your significant other or others use the company computer. …
Continue reading “Fake cheat codes should get you thinking about your hybrid workers”
