The SOC is blind to the attackable surface
The headline reads a bit like a haiku but there are some good points in here. I’ve been pushing the concept of combining threat modelling, asset management and configuration management […]
Author: peterglock
Ambit, Inc. Announces the Release of AmbitVPN’s Post-Quantum Native Windows Application
Buzzword alert! AmbitVPN leverages a hardfork of a new, modern network technology … “For true digital privacy and ongoing security assurance, Ambit is the only … Original article
Zero trust: The good, the bad and the ugly
We saw a lot of “Cloud Washing” when timeshare morphed via ASP to Cloud. I’ve seen disk drives marketed as “My Cloud” which kind of misses the point…: […] The […]
New Cring ransomware hits unpatched Fortinet VPN devices
If I asked you what the patch status is of all the assets connected to your network and then link that to active malware campaigns to come up with a […]
Gigaset Android phones infected by malware via hacked update server
You should be able to trust the update servers of your phone manufacturer?…: Owners of Gigaset Android phones have been repeatedly infected with malware since the end of March after […]
SAP warns of malicious activity targeting unpatched systems
It’s not exactly a shock that criminals are targeting unpatched systems, but SAP tends to drive critical systems in large businesses (think payroll, manufacturing, purchasing….) so the impact of this […]
Should firms be more worried about firmware cyber-attacks?
I’ll bet you’ve got equipment that hasn’t had a firmware update in years, even decades. The BBC tries to explain why this is an issue but I’d add that you […]
Welcome to the NCSC’s Cyber Security Toolkit for Boards
I welcome initiatives like this from governments but wonder if any board will actually work through the modules. My observation over the years is that cyber security makes it onto […]
Windows XP makes ransomware gangs work harder for their money
Nice to see the criminals’ continued support for legacy platforms…: […] If an organization uses Windows XP and a ransomware attack encrypts the device, it now falls on the threat […]
EU investigating ‘IT security incident’ involving multiple agencies
I’ll be watching for further details…: Cybersecurity experts at the European Union are investigating an “IT security incident” involving multiple institutions, though “no major information breach” has been detected, EU […]