I am back in the office this week so let’s get a round-up of the security advisories issued by The US government Cybersecurity and Infrastructure Security Agency (CISA), one of my trusted sources for information about cyber security vulnerabilities. Oracle Releases October 2023 Critical Patch Update Advisory | CISA Fortinet …
LinkedIn Phishing
LinkedIn is extremely popular among business professionals and is a perfectly acceptable social media platform to use and interact with, whilst you are at work. It is designed for just that. So make sure you and your team understand how the platform can easily be abused to steal your credentials. …
You cannot see a zero-point font…
The old trick of using a zero-point font in a document to conceal information you do not want to be readily detected by the reader, is being exploited again in a new way. This time it is being used to show Outlook emails as having been safely scanned when in …
Ransomware is back in the news
Ransomware is probably the most serious cyber security threat any organisation has to deal with. The threat actors are relentless with their efforts to infect both targeted victims and victims of opportunity. The usual ways in are a phishing email or infected webpage, with a convincing social engineering message. Here …
Take care with unsolicited Teams files
A series of phishing attacks are being run using infected .zip files distributed via Microsoft Teams: Microsoft Teams phishing attack pushes DarkGate malware (bleepingcomputer.com) The zip file says it is a vacation schedule – but it is not really. A quick look at the article will show you how convincing …