Cybersecurity Starts in the Boardroom
If you, as a threat actor, could embed your malware into a software module, that is then used by many innocent and unaware software developers in their packages, they release to the general public, wouldn’t you? That looks like a lot of infected machines for a small amount of work. …
Continue reading “Software repositories are a target for threat actors”
I am back in the office after my holidays today and the first thing I had to do was write a blog post for our training website, CyberAwake, on the topical subject of working securely when away from the office: Do you have a “work from anywhere” policy? We”ll Start …
Continue reading “The best security tool for when you are working whilst travelling…”
We cannot emphasise how important multi-factor authentication is to your cyber security – however, of course, the threat actors do have ways around it: Cookie stealing: the new perimeter bypass – Sophos News The threat is malware getting into your system and stealing session cookies that are associated with the …
Keeping your software up to date is important for all of us – doubly so if you are the people producing the code: GitLab ‘strongly recommends’ patching critical RCE vulnerability (bleepingcomputer.com)
The US Government’s CISA has released a range of security advisories, including updates required for VMware: VMware Releases Security Update | CISA CISA Updates Advisory on Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite | CISA CISA has also been issuing advice for industrial systems. If you use these …
Continue reading “US Cybersecurity and Infrastructure Security Agency security advisories”
