Cybersecurity Starts in the Boardroom
To fix a recently discovered zero-day flaw across the range of Apple operating systems a series of Rapid Security Response (RSR) updates: Apple Rapid Security Update Patches Three Exploited Vulnerabilities – SANS Internet Storm Center The flaw was discovered in WebKit browser engine developed by Apple used across the OS …
The Zero-day Attack. Is there something more I can do? As I discussed in the first and second part of this mini-series looking at the zero-day threat, what you are having to do is defend against the unknown – something that at first glance would seem impossible. Zero-day – It …
Continue reading “The Zero-day Problem – Do Something Special”
A spear phishing attack is a malicious email (usually) with content aimed to exploit the specific recipient. Yee Ching Tok, over on SANS Internet Storm has an excellent article taking apart a spear phishing email targeting YouTube content creators. Analyzing a YouTube Sponsorship Phishing Mail and Malware Targeting Content Creators …
Modern software often offers extra features through the use of code extensions such as using Python or in the case of Microsoft the macro. We all love the extra functionality – threat actors like the way this functionality allows them to slip malicious code through our defences to us. Microsoft …
Continue reading “Why modern software does not help with the cyber threat”
Today is Patch Tuesday. Here is why it is important: How Microsoft Patch Tuesday can help your cyber security planning – CyberAwake Johannes Ullrich has written a summary of Microsoft’s June 2023 cyber security patches and updates: June 2023 Microsoft Patch Tuesday – SANS Internet Storm Centre Microsoft always has …
