Cybersecurity Starts in the Boardroom
I had to write about patches today – yesterday was Microsoft Patch Tuesday and we got a range patches for their software. Some of these were for critical vulnerabilities with one of them actually being exploited in the wild. Microsoft October 2021 Patch Tuesday (sans.edu) Other software vendors also seem …
Continuing our series for Cybersecurity Awareness Month From time to time it seems like it is government or MOD policy to leave a laptop on a train or taxi (delete as applicable). Then there are the smartphones that they lose. Thousands of mobiles and laptops lost by UK government in …
Continue reading “Don’t lose that laptop – but if you do… #BeCyberSmart”
Today’s security snippet comes from Randall Munroe at xkcd – pop over there now and have a look: https://xkcd.com/2522/ I have to agree with sentiment of the comic, multi-factor authentication (MFA, but see note below) can be difficult to set up, no one does it the same, authenticator apps can …
Microsoft Exchange server vulnerabilities On the 5th of January 2021 there was an exploit reported on the Microsoft Exchange server and on the 6th January 2021 the first breach was observed. But nobody really knew anything about it. “The attacker was detected by a group on the 5th of January …
Continue reading “Microsoft Exchange server vulnerabilities”
A classic ploy for an email attack is to make the message so urgent that you do not think carefully before clicking on the link or opening the attachment. The article below illustrates this ploy – the email creates a story where the result of not taking action is the …
Continue reading “If you are under pressure you may make a mistake”
