Why does the Capita data breach have something to teach every organisation about cyber security? When a company has many clients for whom they do so many things, it stands to reason that threat actors will take an interest. One breach and the criminals get access to a wide range …
Stealing your data is a priority for threat actors
There is a highly completive market evolving to provide threat actors with malware that evades detection and then as quietly as possible exfiltrate sensitive data from the compromised system. This can include, cookies, session cookies, credentials, credit card and crypto-wallet data etc. The new info-stealing malware operations to watch out …
Continue reading “Stealing your data is a priority for threat actors”
Email Phishing is a constantly changing threat
One of the topics covered at the cyber security conference I was at last week was how AI tools such as ChatGPT are helping threat actors refine the social engineering messages that enable the success of an email phishing attack. Our Cyber Security Awareness Training still includes looking out for …
Continue reading “Email Phishing is a constantly changing threat”
Passwordless Google Accounts
I’m in. I have written about passwordlessness (I probably made that word up!) before. Eliminating the password makes it much harder for threat actors to compromise your security, exploit stolen credentials and gain unauthorised access to systems such as Microsoft and now Google: Google adds passkeys support for passwordless sign-in …
What to do if you think you have malware on you PC…
…and a good news story about Facebook. The information stealing malware, NodeStealer spotted by the Facebook security team stealing Facebook user information and hijacking accounts – so they stepped in and blocked it. Facebook disrupts new NodeStealer information-stealing malware (bleepingcomputer.com) The malware exfiltrated session cookies from a range of the …
Continue reading “What to do if you think you have malware on you PC…”
