Cybersecurity Starts in the Boardroom
There have been several high profile ransomware attacks this week – and small ones that do not make the news. Ransomware attack knocked a Kentucky city-operated ISP offline before holiday – The Record by Recorded Future Lorenz ransomware breaches corporate network via phone systems (bleepingcomputer.com) Ransomware gang threatens 1m-plus medical …
The death of Her Majesty Queen Elizabeth II and the associated ceremonies and period of national mourning will be no exception: Potential phishing activity update – NCSC.GOV.UK The National Cyber Security Centre has issued a warning that the potential for malicious phishing, social engineering and scam cyber-attacks is very high …
Before I start this post – remember you should have Windows updates set to automatic (we do make exceptions for some Windows servers) and you should be able to monitor the update status on all your organisation’s computers. You cannot check whether everyone has updated? Then do something about it …
CISA has issued security advisories for a range of vendors: Adobe Releases Security Updates for Multiple Products | CISA Apple Releases Security Updates for Multiple Products | CISA Microsoft Releases September 2022 Security Updates | CISA The US Cybersecurity and Infrastructure Security Agency also issues advisories on Industrial Control Systems …
Continue reading “CISA security advisories for Adobe, Microsoft and Apple”
Intermittent encryption is a recently detected method of obscuring malware from anti-virus software and other detection methods. It is not encryption of whole files, byte encryption of bytes within the malware. Research by SentinelOne has shown this evasion technique is being deployed by ransomware gangs in the wild: Crimeware Trends …
