Cisco – a company that likes to remind us how much of their hardware makes up the infrastructure of the internet – has released a statement warning that an “unintentional debugging credential” has not been removed from some of their devices before they were sold. This affects devices found in …
Spyware Company added to trade blacklist
I have written about the controversial, commercially available, spyware Pegasus a number of times: Pegasus – Smart Thinking Solutions Frank Gardner, the BBC’s respected security correspondent refers to the Pegasus software as military grade spyware. Now the company behind the software, NSO Group of Israel, has now been added the …
Hiding the threat in plain sight
Attackers are always looking for new way to get their illicit packages through defences and this research paper outlines how by exploiting Unicode, malicious code can be written into software so that human code reviewers cannot recognise that it is there. Trojan Source: Invisible Vulnerabilities “This work has been under …
National Cyber Security Centre Threat Report
Here is a link to the NCSC weekly threat report for week ending 29/10/2021: Weekly Threat Report – NCSC.GOV.UK
Hands up if this surprises you?
The politicians thought that they were safeguarding us (the citizens they were charged with protecting) when they debated and then voted in the GDPR amendments to the Data Protection Act. As citizens we have the right to believe that those MPs who lack a technical education got advice from a …
