Cybersecurity Starts in the Boardroom
The Cyber Safety Review Board is operated by The Department of Homeland Security and in it’s inaugural report the Log4j vulnerability, spread and exploitation is discussed: CSRB Report on Log4j – Public Report – July 11 2022_508 Compliant (cisa.gov) It makes interesting reading. I wonder just how many developers do …
Continue reading “As predicted Log4j is going to be a problem for a long time”
This is not the first time Lenovo laptops have been found to have firmware issues – we do not specify Lenovo to our clients! New UEFI firmware flaws impact over 70 Lenovo laptop models (bleepingcomputer.com) Do you have a Lenovo laptop? If so then this post is for you. – …
Continue reading “More Lenovo Laptop firmware vulnerabilities”
The malware is called Autolycos and it has been found in at least eight apps on the Google Play Store by Evina’s security researcher Maxime Ingrao. Have you installed it? New Android malware on Google Play installed 3 million times (bleepingcomputer.com)
I have gathered here just a selection of the ransomware stories that have made the headlines – for these there are many more that go unreported in the media or even outside the organisation. ‘Lives are at stake’: hacking of US hospitals highlights deadly risk of ransomware | Hacking | …
This post was original published on 27 June 2022 Update 14 July 2022 Here is an article from the Microsoft Threat Intelligence Center (MSTIC) and the Microsoft 365 Defender Research Team outlining how the big phishing campaigns backed by experienced and skilled hackers can bypass the security of multi-factor authentication: …
