When LastPass reset their MFA security they locked their clients out as well as the threat actors. LastPass users furious after being locked out due to MFA resets (bleepingcomputer.com) Your takeaway LastPass is a good way to keep your passwords secure – but you are giving LastPass or other password …
Reduce that Attack Surface
The US government Cybersecurity and Infrastructure Security Agency (CISA) is one of our go to location for information about exploited vulnerabilities and patching – the type of resource I discuss in this week’s CyberAwake article: The Zero-day Threat – What can you do about it? Keeping up with these issues …
The anatomy of a spear phishing attack
A spear phishing attack is a malicious email (usually) with content aimed to exploit the specific recipient. Yee Ching Tok, over on SANS Internet Storm has an excellent article taking apart a spear phishing email targeting YouTube content creators. Analyzing a YouTube Sponsorship Phishing Mail and Malware Targeting Content Creators …
The Zero-day Threat – What is it?
Do you know what a zero-day cyber security threat is? Maybe you do and maybe you don’t, but we are going to take a couple of articles to look at: What is the Zero-day Threat? The competition between the threat actors and the anti-virus and cyber security software vendors should …
Just in case you thought ransomware had gone away
Ransomware is one of the biggest cyber security risks smaller organisations face (UK Government. 2022). It will not stop as criminals make a lot of money from it: LockBit victims in the US alone paid $90m+ since 2020 • The Register Your takeaway from this is you, your IT or …
Continue reading “Just in case you thought ransomware had gone away”
