Cybersecurity Starts in the Boardroom
WordPress is one of the most – if not the most – popular website package on the web. Both professional web designers and less professional web designers use it. One of the reasons it is so popular is that with a little work, anyone can alter the code or download …
For those of you of a certain age, do you remember when we went from plain text email to rich content html emails? Of course, by rich content I mean some bold and italic text and some images! Here is a new attack using old technology – called Kobold Letters. …
The premium WordPress plugin LayerSlider, which is used in over one million sites, has been shown to be vulnerable to one of the most basic of cyber security hacks – unauthenticated SQL injection. There were tutorials at Napier University showing us how to carry out these types of hacks, it …
Continue reading “Attaching “Premium” to a product does not guarantee it’s cyber security…”
I wrote about a phishing-as-a-service (PhaaS) earlier this week – Threat actors target MFA – here is another one that is active on both iPhones and Android phones. New Darcula phishing service targets iPhone users via iMessage (bleepingcomputer.com) One of the main cyber security issues with PhaaS is that relatively …
Continue reading “You are vulnerable on both Android and Apple phones to this attack”
Whatever you read here in a few moments – it is my opinion that MFA (Multi-factor authentication) still remains a key tool in protecting your team’s credentials and defending your information. MFA under attack There have always been weaknesses in and attacks against, some very simple such as just annoying …
