Cybersecurity Starts in the Boardroom
…ask the UK Government, HMRC and the UK taxpayer who will ultimately pay the bill. Here is Faarea Masud’s report on the HMRC cyber-attack: Scammers stole £47m from HMRC in phishing attack – BBC News Your Takeaway Here is what I have to say on phishing attacks and how to …
I am in the process of writing our new course at the moment – more details in our newsletter – so for the Wednesday Bit this week I have an article about the out-of-office email, first published on CyberAwake. I chose this article as I have been discussing with several …
Continue reading “The Out-Of-Office Email and How It Compromises Your Organisation’s Cyber Security”
This is not clickbait for hackers! Jan Kopriva has written an excellent article taking a phishing campaign apart so you can understand why the hackers like this attack vector to get into your organisation. Another day, another phishing campaign abusing google.com open redirects – SANS Internet Storm Center It is …
Continue reading “So you want to know how a phishing campaign works?”
Last week I had a prospective client take me up on our free 30 minute “ask me anything about your cyber security” Teams meeting. Things went well, she had some questions, I ran through my advice checklist with her – everyone was happy until I asked about their anti-virus – …
This one to be specific: WooCommerce admins targeted by fake security patches that hijack sites It is a phishing campaign, attacking the popular WordPress plugin WooCommerce, exploiting admins and their credentials with malicious security patches the admins think they must have – again a classic bit of threat actor social …
Continue reading “I was going to write about a WooCommerce attack…”
