Cybersecurity Starts in the Boardroom
A pause to think before opening and email attachment or clicking on an unexpected link is good advice, but read why Bruce Schneier thinks we still need to do more: Why Take9 Won’t Improve Cybersecurity – Schneier on Security He is right, I speak about a pause, nine seconds in …
A series of fake Google ads leading to fake typosquatting domains, pretending to be for popular IT support tools and apps have been reported by BleepingComputer. Fake Zenmap. WinMRT sites target IT staff with Bumblebee malware Many of these tools require administrator access to networks and devices to function, so …
It’s 2025… so why are obviously malicious advertising URLs still going strong? – SANS Internet Storm Center The article by Jan Kopriva makes a number of excellent points about why threat actors continue with these types of social engineering attacks – but the bottom line is that lack of training …
Many of my cyber security investigations have involve the compromise of Microsoft 365 credentials. These are a valuable commodity for threat actors, as a carelessly managed set of credentials may give them the keys to raid your information. The latest attack on M365 credentials, in the tech news, is a …
Continue reading “Threat Actors want your Microsoft 365 Credentials”
It is a new year, so it is a good time for a new start. Over on Octagon’s blog this month the theme for the month is going to be “get organised” and I am going to start the 2025 Wednesday Bits on the same theme. Cyber Security and Get …
