Cybersecurity Starts in the Boardroom
I reported on the information leak that LockBit suffered when one of the hacker developers has a spat and leaked the software code. Security software vendors would have been checking out this code to improve their defences but there was also the opportunity for less experienced hackers to improve their …
Continue reading “New ransomwareattacks following the leak of LockBit software by a hacker insider”
I have just published an article over on our online training site – CyberAwake – looking at some of the steps in examining the risk of using employee devices for work purposes – BYOD or Bring Your Own Device. Are you using Bring Your Own Device – BYOD – to …
The latest release of Windows 11, now includes Enhanced Phishing Protection, which sounds complicated, and I am sure the implementation of it is complex, but the security advantage it offers is obvious and simple. Windows 11 will warn you when you type a password into an insecure website or application. …
When a threat actor compromises the coding of software the problems can be widepread – the SolarWinds attack and subsequent distribution of the infected software through legitimate update channels is a classic example. (Ironic but the SolarWinds customers who avoided the attack, were those with a poor cyber security stance …
Continue reading “Back to the supply chain and software compromise”
The original post was published on 16 September 2022 This is a real problem, no software or system should keep any security token in plain text, any time during operation. The user base for Microsoft Teams is in excess of 270 million users – we are part of that number …
