Sometimes a cyber-attack is something as easy as adding a button saying “view document” when whale phishing senior people in an organisation. Ongoing Microsoft Azure account hijacking campaign targets executives (bleepingcomputer.com) Your takeaway When was the last time you audited the credentials and associated authorisations of those credentials? If you …
Credentials – A Primer
Today I am going to look at why credentials are so important in cyber security? Credentials for identity The management of credentials across your organisation for all services is an important impact of your cyber security, whether it is someone using the global administrator account as their “daily driver” work …
Because It’s Friday – The power of a font
This is a post for anyone who has had to sit in a client meeting where the attendees spend an unreasonable amount of time “debating” the font they want to use on their email signature. All I went along for was to make sure the signature was compliant but my …
Continue reading “Because It’s Friday – The power of a font”
Advice if you must use USB portable storage
Sometimes the easiest and best storage for your workflow, is a portable USB memory stick and the one thing that gives us a headache when we are carrying out a cyber security survey is the use of portable USB memory sticks! Do you want too why? Then hop over to …
Continue reading “Advice if you must use USB portable storage”
EU sets a new baseline for cyber security for critical services
This is an interesting development from the EU as a way to start to defend national infrastructure and critical services. EU lawmakers reach agreement on stronger cyber rules for critical sectors – The Record by Recorded Future We are not EU members, however as a CISO and cyber security expert, …
Continue reading “EU sets a new baseline for cyber security for critical services”