WordPress is an extremely popular platform for producing web content – so threat actors are constantly probing it looking for gaps in the security. The popular plug-ins also make great targets because if their security fails the potential victims can number in the many thousands. Or millions. WordPress Elementor plugin …
CyberAwake – Incident Follow-up
CyberAwake has published a follow-up article to my previous article on Cyber Security Culture. It looks at what you need to think about when it comes to the meetings following an incident: Cyber Security Incident Follow-up Meetings – (cyberawake.co.uk) How you approach these meeting can have a huge impact on …
WordPress plugin vulnerability
A vulnerable WordPress plugin is in the news. The Advanced Custom Fields plugin needs to be updated or your site is vulnerable: WordPress plugin flaw puts ‘millions of websites’ at risk • The Register If you use this get it updated now. Do you know if your website uses this …
What to do if you think you have malware on you PC…
…and a good news story about Facebook. The information stealing malware, NodeStealer spotted by the Facebook security team stealing Facebook user information and hijacking accounts – so they stepped in and blocked it. Facebook disrupts new NodeStealer information-stealing malware (bleepingcomputer.com) The malware exfiltrated session cookies from a range of the …
Continue reading “What to do if you think you have malware on you PC…”
Cyber Security Culture
I have a new article on CyberAwake which starts to look at the benefits of having a positive cyber security culture in your organisation: The Cyber Security Culture – CyberAwake