Cybersecurity
WordPress is a favorite blogging tool of mine and I share tips and tricks for using WordPress here.
-
Vestas hack latest: world’s biggest wind turbine maker admits IT infrastructure breached
Company says will share IOCs when investigation has made more headway
Read More » -
“Keys to the cloud” stored in plain text in Azure AD security blooper
"It is best to assume that the credentials may have been compromised..."
Read More » -
Understanding Cyber Essentials’ five core technical controls
At just £300 and with free insurance, you'd be mad not to...
Read More » -
BitLocker used to attack servers in “intrusion with almost no malware”
Hackers breached an organisation running on-premises Microsoft Exchange servers and after moving laterally proceeded to encrypt systems domain wide, using…
Read More » -
FBI software vulnerability let hacker send thousands of emails from a federal domain
FBI blames "software misconfiguration". It could have been a lot worse...
Read More » -
Critical pre-auth RCE revealed in Palo Alto Networks’ GlobalProtect
Wait, what? (Patch this one urgently...)
Read More » -
How a devastating ransomware attack forced a radical security rethink
"Like brain surgery without putting the victim to sleep"
Read More » -
REvil ransomware “affiliates” arrested, including alleged Kaseya hacker
Europol has announced the arrests of seven REvil/GandCrab ransomware group “affiliates”. The arrests came as part of a global effort…
Read More » -
Security over the total application lifecycle: Understanding assets, threat models
"In most cases, it’s easier and more efficient to have a pipeline run when a change is detected in a…
Read More » -
US Agencies given two weeks to patch 100+ exploited vulns — but who’s forcing compliance?
It took TWO YEARS for all agencies to meet an earlier 45 day deadline
Read More »