Bruce Schneier has this article about Albanian prosecutors holding IT admins, who failed to patch and update systems, responsible for cyber attacks on Albania: Arresting IT Administrators – Schneier on Security
Because It’s Friday – Bruce Schneier on CAPTCHA
Regular readers know I read and quote a lot of stuff by Bruce Schneier, today he will make you smile: CAPTCHA – Schneier on Security Something extra today One of my support team suggested I post this on my “Because It’s Friday” slot, for all the IT support staff everywhere …
Continue reading “Because It’s Friday – Bruce Schneier on CAPTCHA”
This is on my Christmas list…
…oh no! It’s not out until February 2023. It’s not just computers—hacking is everywhere. Bruce Schneier Diana and I have attended several of Bruce’s speaking events both in the real world and online and I have had him answer my questions as well (he did not think much of the …
Qatari World Cup apps
There is no denying the fact that the compulsory Qatari World Cup apps, Ehteraz, a Covid-19 tracker from the Qatari Ministry of Public Health, and Hayya from the Qatari Supreme Committee for Delivery & Legacy for the World Cup, will be collecting a lot of information on everyone attending. This …
The supply chain is complicated – which is why it is vulnerable to exploitation
Bruse Schneier has an interesting article out today, describing how a Russian company that produces code that is included in thousands of smartphone apps, both iOS and Android, masquerades as an US company. Russian Software Company Pretending to Be American – Schneier on Security There is no suggestion of wrong …
Continue reading “The supply chain is complicated – which is why it is vulnerable to exploitation”
Do you use Cisco AnyConnect? If so make sure you have ALL the clients patched.
Threat actors are carrying out massive attacks, looking for unpatched Cisco AnyConnect Windows clients: Cisco AnyConnect Windows client under active attack • The Register
CISA security advisories
The US Cybersecurity and Infrastructure Security Agency is a good source of cyber security information – which is why I try and pass on those that are relevant to my readers. Here are two of the latest: Their Known Exploited Vulnerabilities Catalog is a resource for tracking flaws and issues …