In several of my most recent IT and Cyber Security Audits I have encountered problems similar to those in this report from the US National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) – misconfigurations. NSA and CISA Release Advisory on Top Ten Cybersecurity Misconfigurations | CISA …
Let’s start the week with Ransomware
We finished last week with a ransomware story. let’s start this week with another: BlackCat ransomware hits Azure Storage with Sphynx encryptor (bleepingcomputer.com) This ransomware story has a twist, the prolific BlackCat ransomware gang are ow using stolen Microsoft credentials in custom software to execute their attacks. Your takeaway You …
Microsoft Office under attack… again…
So most organisations use Microsoft Office in some way. Even if it they do not use it, someone will email them a Word or Excel document. You cannot avoid it – even on a Mac or Linux computer. That makes it a juicy target for threat actors – there are …
Now Microsoft Teams is a target for threat actors
Once Microsoft finally closed the door on the Office macro the threat actors had to move on: Microsoft Office Macros – The Good, The Bad and the Ugly – CyberAwake OneNote was their first target: Now OneNote is an attack vector | Smart Thinking Solutions QakNote – OneNote malware now …
Continue reading “Now Microsoft Teams is a target for threat actors”
The Capita hack keep gathering victims
Capita is the largest outsourcing company in the UK and counts among it’s contracts the UK Government, the Ministry of Defence, local authorities and businesses. When Capita’s security was breached it was going to lead to an ever increasing list of victims as the investigation proceeded. Capita hack: 90 organisations …
