Cybersecurity Starts in the Boardroom
Threat actors invest time and effort into beating security measures, especially when the targets are so profitable. Android users have proven to be lucrative targets: Malware devs already bypassed Android 13’s new security feature (bleepingcomputer.com) Make sure you have policies and procedures in place if your team are BYODing Android …
Continue reading “Android malware has already circumvented new OS security features”
We have clients who use the popular VNC (Virtual Network Computing) service to access computers – all of them implement our security policy. Do you have a security policy that covers this type of software and access? Over 9,000 VNC servers exposed online without a password (bleepingcomputer.com)
Be More Like Dave – Dilbert Comic Strip on 2022-08-07 | Dilbert by Scott Adams …so you or your cyber security consultant should check any code (web app or software) you have written for you. How secure is open source software? Do you use open source software or have software …
Continue reading “Because It’s Friday – Writing code is difficult…”
The US Cybersecurity and Infrastructure Security Agency has added a new vulnerabilities to it’s Known Exploited Vulnerabilities Catalog. CISA Adds One Known Exploited Vulnerability to Catalog | CISA This is an interesting issue, as credentials had been hard coded into the application: “Atlassian Questions For Confluence App has hard-coded credentials, …
When we undertake any cyber security survey, and we ask about software, we know the greatest amount of work we will have to do, is when the client says “we had this written for us” or we use this “open source software”. (We will not get into Android apps or …
