Cybersecurity Starts in the Boardroom
The cyber criminal group Keksec is using Enemybot to attack routers and IoT devices, exploiting a remote code execution (RCE) vulnerability CVE-2022-27226. Enemybot: a new Mirai, Gafgyt hybrid botnet joins the scene | ZDNet New Enemybot botnet blends Linux backdoor bot Gafgyt, Mirai • The Register This botnet is part …
Continue reading “New botnet in the wild targeting routers and IoT devices”
Hacker spent nearly five months inside a US regional government network, downloading files, using software and deleting logs, before deploying Lockbit ransomware. Sophos recreated the attack from what was left of the logs and believe the attackers got in through a public facing remote desktop protocol (RDP) port – something …
Continue reading “Sophos report even government agencies can miss hackers in their network”
Here is something I wrote for the Octagon Technology blog last month. It started out looking at the zero-day issue and then explored the tools available to create “defence in depth” cyber security and finished with an explanation of how you can keep up with this blog in using Outlook …
Continue reading “Why keeping up with the cyber security news is important”
Apache has issued another patch for a vulnerability in Struts 2 framework for Java applications as the one issued in 2020 did not quite work. Apache says 2-year-old Struts bug wasn’t fully fixed • The Register S2-062 – Apache Struts 2 Wiki – Apache Software Foundation
Patch Tuesday has come around again – and time for you check that ALL your updates and patches are up to date – not just your Microsoft ones. I know they are supposed to happen automatically but check anyway! Microsoft April 2022 Patch Tuesday – Sans Internet Storm Centre Microsoft’s …
Continue reading “Are your patches and updates being done everywhere?”
