We do everything online – well that may be an over simplification – but last time I went to vote, I must admit I thought I could be doing this from my phone. But if we are going to vote online, we need very special precautions and checks to make …
Our future encrypted security – the new algorithm needs more work
The US The National Institute of Standards and Technology (NIST) has risen to the challenge of finding the encryption we will need when quantum (or just really capable) computers are developed in the future. After a strenuous vetting period they found four contenders to work with: NIST Announces First Four …
Continue reading “Our future encrypted security – the new algorithm needs more work”
How do threat actors get hold of your login credentials? They just ask you to send them over!
The US Government has issued a warning over the growth of text messages that are designed to manipulate you into giving away your secret information. US govt warns Americans of escalating SMS phishing attacks (bleepingcomputer.com) If it is happening in the US, why not extend the attacks to other English …
CISA Log4Shell examination
The US Government Cybersecurity and Infrastructure Security Agency has published a report examining the malware that infected an organisation with unpatched Log4Shell vulnerability in a VMware Horizon server. CISA Releases Log4Shell-Related MAR | CISA
Commercialised cyberweapons
For when you have time, here are two articles from Microsoft looking at cyberweapons: Continuing the fight against private sector cyberweapons – Microsoft On the Issues Untangling KNOTWEED: European private-sector offensive actor using 0-day exploits – Microsoft Security Blog The view from the US Government Pegasus spyware: Just ‘tip of …
