Cybersecurity Starts in the Boardroom
With the current conflict between Russia and Ukraine taking up bandwidth on the internet this new technique for exponentially expanding the effectiveness of a distributed denial of service attack against website is not good news. New method that amplifies DDoSes by 4 billion-fold. What could go wrong? | Ars Technica …
Continue reading “Amplification of DDoS attacks – bad news day”
Xme over on SANS Internet Storm Centre has an interesting article highlighting the recently registered domains that could have a connection with the Russia Ukraine conflict. It also shows some of the content on these domains. Ukraine & Russia Situation From a Domain Names Perspective – SANS Internet Storm Centre …
Continue reading “Websites exploiting the Russia Ukraine conflict”
With the rapidly changing political situation around the world organisations have a responsibility to make sure their cyber security house is in order. Ukraine-Russia invasion: Russia launches attack on Ukraine from several fronts – BBC News This applies to all the systems and software you use – check now. WordPress …
Continue reading “Increase today in attack attempts against WordPress sites”
Backups are your best friend in a cybersecurity incident UpdraftPlus the popular back-up plug-in for WordPress needs an upgrade to plug a security vulnerability. This upgrade was pushed out last Thursday to millions of users, who have automatic updates enabled. UpdraftPlus security release – 1.22.3 / 2.22.3 – please upgrade …
Continue reading “WordPress UpdraftPlus needs patching urgently – check it!”
Here is an interesting article from the team at Apache dealing with patching the Log4j problem: The Apache Log4j team talks about the Log4Shell patching process – The Record by Recorded Future But the exploits in the wild are still happening: Threat actor target Ubiquiti network appliances using Log4Shell exploits …
Continue reading “Log4j exploits and behind the scenes with the Apache patching team”
