I write a lot about phishing emails and social engineering attacks, because it is probably the way threat actors could most easily get malware inside your defences and from there compromise your security, your information and ultimately your wallet! The Berkshire based construction company, Interserve Group Ltd, with an employee …
CISA security advisories
The US Cybersecurity and Infrastructure Security Agency is a good source of cyber security information – which is why I try and pass on those that are relevant to my readers. Here are two of the latest: Their Known Exploited Vulnerabilities Catalog is a resource for tracking flaws and issues …
Mis-configuration – a common mistake many organisations make when setting up their cyber security – including Microsoft!
We often find problems with client configurations when we take over jobs, particularly when less-technically-able client try to do-it-themselves. If anyone needs an example as to why getting things set up correctly is difficult, Microsoft made a mistake with a server config and exposed some of their client’s information: Microsoft …
US Cybersecurity and Infrastructure Security Agency security advisories
The US government Cybersecurity and Infrastructure Security Agency (CISA) has issued security advisories for Zimbra and Oracle: CISA Updates Advisory on Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite | CISA Oracle Releases October 2022 Critical Patch Update | CISA
Do Not Use Microsoft Remote Desktop – it can be a gateway for ransomware.
I have said this before, do not use Microsoft Remote Desktop (RDP) as it is too easily attacked and exploited, even if you use a non-standard port number – there are better solutions out there. Just to make the point – here is a new ransomware attack exploiting RDP. – …
Continue reading “Do Not Use Microsoft Remote Desktop – it can be a gateway for ransomware.”