This is a story from a few days back but it came to mind following a discussion yesterday with a client who questioned “changing their router/modem/firewall” in a report a prepared for them. This is not the whole answer – which included VPN – but is some of it. SANS …
Cisco admits to leaving a backdoor open
Cisco – a company that likes to remind us how much of their hardware makes up the infrastructure of the internet – has released a statement warning that an “unintentional debugging credential” has not been removed from some of their devices before they were sold. This affects devices found in …
Don’t tell him Pike!
Such is the sophistication of the bad actors on the web that it is easy to get caught out and let people steal your credentials. Have you seen those games on Facebook, where for example you are asked to give the name of your first pet and the road you …
Apple Updates again
It is often said, by myself and other computer and security professionals that you need to update your hardware and software with the latest patches when they are addressing security vulnerabilities. However The Register is reporting that the update can brick some Apple computers: Apple’s macOS Monterey update breaks some …
Hiding the threat in plain sight
Attackers are always looking for new way to get their illicit packages through defences and this research paper outlines how by exploiting Unicode, malicious code can be written into software so that human code reviewers cannot recognise that it is there. Trojan Source: Invisible Vulnerabilities “This work has been under …
