Here is a clue – social engineering. I am often asked this by clients, especially those who I am suggesting need to up their cyber security game. Here is a very good article by the cyber security expert Brian Krebs looking in detail at the recent high profile data breaches …
National Cyber Security Centre Threat Report 24 February 2023
Threat Report 24 February 2023 – NCSC.GOV.UK
CISA advises three exploited vulnerabilities
Although a US government agency the Cybersecurity and Infrastructure Security Agency’s (CISA) Known Exploited Vulnerabilities Catalog is a valuable resource for anyone responsible for cyber security. It reports on mainstream and less used software so that offbeat package you use could be reported on one day! They have released an …
Continue reading “CISA advises three exploited vulnerabilities”
Would you be taken in?
I have written a lot about the fact that many cyber attacks include an element of social engineering, to tease the victim into lowering their guard and doing what the threat actor wants. Here is an excellent example of that, described by Xavier Mertens on SANS Internet Storm, where the …
More cyber security advisories this week from CISA
To add to those I listed on Wednesday, the very useful US government Cybersecurity and Infrastructure Security Agency (CISA) site has security advisories for Cisco and another entry added to its Known Exploited Vulnerabilities Catalog: Cisco Releases Security Advisories for Multiple Products | CISA (we use some of these products …
Continue reading “More cyber security advisories this week from CISA”