Cybersecurity Starts in the Boardroom
It is not really a surprise, with the exponential rise in home shopping and deliveries because of the pandemic, that the delivery service DHL is the most impersonated organisation when it comes to cyber attacks: DHL named most-spoofed brand in phishing • The Register Microsoft and LinkedIN are close behind. …
Continue reading “What are the most spoofed brands in social engineering/phishing attacks?”
We often find problems with client configurations when we take over jobs, particularly when less-technically-able client try to do-it-themselves. If anyone needs an example as to why getting things set up correctly is difficult, Microsoft made a mistake with a server config and exposed some of their client’s information: Microsoft …
The issues with Microsoft’s Windows SSL/TLS handshake failures is too important to wait for next month’s Patch Tuesday: Microsoft fixes Windows TLS handshake failures in out-of-band updates (bleepingcomputer.com)
I have said this before, do not use Microsoft Remote Desktop (RDP) as it is too easily attacked and exploited, even if you use a non-standard port number – there are better solutions out there. Just to make the point – here is a new ransomware attack exploiting RDP. – …
Continue reading “Do Not Use Microsoft Remote Desktop – it can be a gateway for ransomware.”
Research is showing that Microsoft’s Office 365 Message Encryption is good for privacy – as it makes accessing the message difficult, rather than security, putting the message out of reach of anyone but the recipient. Microsoft disputes report on Office 365 Message encryption issue after awarding bug bounty – The …
