Cybersecurity Starts in the Boardroom
In a week when I have been talking about risk, just about everywhere, online, with clients and in our own staff meetings, it seems only right that one of my favourite YouTube channels produces a video on the risk with rockets. The footage of unmanned rockets exploding is spectacular, have …
Recently, I have been talking a lot with clients about risk. Some clients can see the point and are moving with us to work on those risks, others are harder to convince. I have an article on CyberAwake looking at the start of a risk journey: Risk. Where do you …
When LastPass reset their MFA security they locked their clients out as well as the threat actors. LastPass users furious after being locked out due to MFA resets (bleepingcomputer.com) Your takeaway LastPass is a good way to keep your passwords secure – but you are giving LastPass or other password …
The US government Cybersecurity and Infrastructure Security Agency (CISA) is one of our go to location for information about exploited vulnerabilities and patching – the type of resource I discuss in this week’s CyberAwake article: The Zero-day Threat – What can you do about it? Keeping up with these issues …
A spear phishing attack is a malicious email (usually) with content aimed to exploit the specific recipient. Yee Ching Tok, over on SANS Internet Storm has an excellent article taking apart a spear phishing email targeting YouTube content creators. Analyzing a YouTube Sponsorship Phishing Mail and Malware Targeting Content Creators …
