Cybersecurity Starts in the Boardroom
This article started life in couple of ways. Over on CyberAwake I re-ran an article from summer 2022, looking at how some information, useful to a threat actor, could leak out of your organisation this summer, just because of the use of a simple setting in Outlook: The Out-Of-Office Email …
Here is an interesting story about the new Microsoft Outlook app spying on you – well not on me I do not use it. It comes from a source that I am unfamiliar with, but it was referenced by Bruce Schneier, a source I respect. Outlook is Microsoft’s new data …
Continue reading “Is Microsoft and New Outlook being “reasonable”?”
The big vendors give you peace of mind when it comes to the services they offer. However the big vendors are big targets for threat actors. Recently Microsoft Azure, OneDrive and Outlook portals have been suffering outages and service degradation – Microsoft’s investigation revealed they were under a sustained distributed …
…and a good news story about Facebook. The information stealing malware, NodeStealer spotted by the Facebook security team stealing Facebook user information and hijacking accounts – so they stepped in and blocked it. Facebook disrupts new NodeStealer information-stealing malware (bleepingcomputer.com) The malware exfiltrated session cookies from a range of the …
Continue reading “What to do if you think you have malware on you PC…”
Cyber incidents that impact your organisation are not always malicious. A cleaner could pull the plug on your server or a member of staff may inadvertently switch a vital bit of your network off (I have seen t done, too many times) or a service that you rely on may …
Continue reading “When planning for a cyber incident – remember about outages”
