Cybersecurity Starts in the Boardroom
Throughout this ransomware mini-series and other articles I write I refer to important documents you should have, a Cyber Security Master Document, an Incident Response Plan, a Business continuity Plan etc.. Once you have created these documents you need to keep them somewhere and that is something you need to …
Continue reading “Where do you keep that Incident Response Plan? (Ransomware Mini-series Part 8)”
I have written many time about how threat actors are always looking for the human event that they can take advantage of – with no scruples! The bigger the event, the bigger the opportunity. They have no scruples so to them it does not matter that they are taking advantage …
I love OneNote – it is my go to, cross platform/cross device app (it even works on my watch!) so I have been watching the increasing threat actor activity using OneNote attachments with interest, as we all use OneNote her at Smart Thinking and Octagon and I have encouraged many …
The US government Cybersecurity and Infrastructure Security Agency (CISA) added a vulnerability to its Known Exploited Vulnerabilities Catalog for ZK Framework: CISA Adds One Known Exploited Vulnerability to Catalog | CISA A updated version of the CISA Decider tool for the MITRE ATT&CK framework has been released. CISA Releases Decider …
Continue reading “CISA cyber security advisories and advice on MITRE ATT&CK”
…or did she? I got an email from Diana the other day asking me to transfer some company money to the listed account – because if I didn’t our Microsoft 365 account would be deleted. It also conveniently explained that she was in a meeting and could not be contacted …
Continue reading “CEO Fraud: Act quickly because your boss sent you this email…”
