Cybersecurity Starts in the Boardroom
It is actually a serious cyber security incident, with many questions for Toyota to answer. An outsourced developer left crucial security information, that could have exposed hundreds of thousands of customer records on a public facing repo on GitHub. This was done in 2017 and only discovered in September 2022, …
Continue reading “Supply Chain slip up… Something like this could easily happen to you…”
As computing power increases and the ability of cloud platforms and software to create realistic deepfake impersonations of people improves, so does the increased use of such techniques by threat actors – of course. Here are a couple of articles looking at the technology and the threat: Seeing is disbelieving: …
I wrote about the insider threat to organisations last week: And today there is a story with an insider threat twist. The president of a Japanese Sushi company, Kobi Tanabe, has been arrested and accused of accessing information from his previous employer, through contacts and sub-ordinates who still work there. …
Continue reading “The Insider Threat – it may be at the top of the company…”
Steganography When we were looking at steganography cyber attacks – hiding malicious code inside for instance image files – I was surprised just how much malware could be hidden without degrading the image. Here is a real-world example of this rare type if attack, spy are code embedded in a …
The moment you step outside your secure office and want to work – or you need anonymity on the internet – a VPN is your go to solution for privacy and security. I have written an article for the blog on our cyber awareness and online training site CyberAwake looking …
Continue reading “VPNs are an important part of any cyber security plan”
