Cybersecurity Starts in the Boardroom
I know this, and you should realise this, because Big Tech and little tech are often caught abusing your privacy for their financial gane. How big? Meta and Yandex have both been caught de-anonymizing website visitors by abusing legitimate Internet protocols and causing browsers to send unique identifiers to apps …
Having written yesterday about why technical cyber security defences are essential but are flawed because of the human element can be exploited directly by social engineering, here is a costly real world example of social engineering working: North Korean Hackers Steal $1.5B in Cryptocurrency – Schneier on Security There is …
It is not unreasonable to say that ransomware is at epidemic levels, report after report says that malware, ransomware and cyber extortion is on the rise (Beaman, Barkworth, Akande, Hakak and Khan. 2021 and Oz, Aris, Levi and Uluagac. 2021), and that cyber security is important. We all take precautions …
Continue reading “When technical cyber security fails you…”
After all the “excitement” of CrowdStrike last week, let’s start this week with some good old fashioned bad news cyber security research. Secure Boot is completely broken on 200+ models from 5 big device makers | Ars Technica Let’s get a definition of Secure Boot from Copilot AI: “Secure Boot …
…then we should take notice. New Open SSH Vulnerability – Schneier on Security It is technical, if you do not understand if this impacts you then ask someone. regreSSHion: Remote Unauthenticated Code Execution Vulnerability in OpenSSH server | Qualys Security Blog
