The Royal Mail had to close its Click and Drop website this week, as a security slip up allowed some customers access to information, they should not have been able to see. Royal Mail customer data leak shutters online Click and Drop • The Register Engineers solved the issue within …
Steal the code… Dropbox
Dropbox has admitted that 130 of its confidential private GitHub repositories were coped by a threat actor. Among the haul were secret APUI codes. They do reassure users that no user content, usernames or passwords were stolen. Well of course not. That is not the issue. Why bother stealing those …
Do you use Cisco AnyConnect? If so make sure you have ALL the clients patched.
Threat actors are carrying out massive attacks, looking for unpatched Cisco AnyConnect Windows clients: Cisco AnyConnect Windows client under active attack • The Register
What do you know about going passwordless? Find out here why you should do it.
Passwordlessness now extends to PayPal… …at least if you have an iPhone. PayPal ditches passwords, at least on Apple devices • The Register Ditching passwords is the best step in preventing the recycling of passwords by users and the subsequent credential stuffing attacks by threat actors. Find out in this …
Continue reading “What do you know about going passwordless? Find out here why you should do it.”
What are the most spoofed brands in social engineering/phishing attacks?
It is not really a surprise, with the exponential rise in home shopping and deliveries because of the pandemic, that the delivery service DHL is the most impersonated organisation when it comes to cyber attacks: DHL named most-spoofed brand in phishing • The Register Microsoft and LinkedIN are close behind. …
Continue reading “What are the most spoofed brands in social engineering/phishing attacks?”
