Supply Chain slip up… Something like this could easily happen to you…

It is actually a serious cyber security incident, with many questions for Toyota to answer. An outsourced developer left crucial security information, that could have exposed hundreds of thousands of customer records on a public facing repo on GitHub. This was done in 2017 and only discovered in September 2022, …

Log4shell – the vulnerability that is inside many software packages – just ask VMware – is here to stay

The SolarWinds attack, where the threat actors got inside SolarWinds’ systems and added their malicious code to a legitimate software update, so having SolarWinds distribute this malware to many of its high and low profile customers around the world, seems a long time ago now. But at least in this …

This time there is more of a security issue with iOS rather than Android

Usually when I am discussing smartphone app security, Apple iOS has an advantage over Android apps, because of it’s curated App store that stops (most) of the security issues from getting through to the end user’s devices. Now researchers have discovered Amazon Web Service credentials hard coded, by careless developers …