0-day Atlassian Confluence vulnerability, no patch yet. Known as CVE-2022-26134 it was acknowledged by the Atlassian team on the 31st May 2022. Update 04/06/2022: patch… Read More »0-day Atlassian Confluence vulnerability, no patch yet
Follina 0 day – Microsoft Office Macro protection eaten for breakfast!, those of you who know me, know that I embrace Microsoft Defender as a security tool that is top notch, not just my view but the view of the analysts that report on cyber security as well, here for example with the Mitre Evaluations for 2022 where Microsoft Defender for Endpoint P2 shows its ‘chops’ and performs like the participants on “Dancing with the Stars”, not the ones who get booted early on, of course!
Lapsus$: Microsoft and Okta “breaches”: When our children start being involved in masterminding cyber “breaches”, the methods change………. Microsoft and Okta were attacked in the… Read More »Lapsus$: Microsoft and Okta “breaches”
CS Energy in Queensland, Australia recently made the headlines when a breach was detected and thwarted before any harm was done to their customers. I… Read More »CS Energy Breach
I had no idea at all! over 100 notifiable and probable “State Based” significant hacks to October 2021 – either against government orgs or with… Read More »It all adds up!
Small to Mid enterprise companies in Australia are extremely vulnerable to revenue disruption and most likely financial disaster from cyber breach – Auto parts importer… Read More »No business too small to be a target for Cyber crime
Story: Another ‘murican Fortune 500 company breached and affected by a Ransomware attack. With Broadcasters, retailers (online and store), NBN service providers, BNPL, Transport, Tourism… Read More »Sinclair Broadcasting Breach
Cyber Security is a necessary part of your operation, no Cyber Security plan places your business at risk of being ruined, unlike traditional theft where a criminal needs to breach your physical office location. A Cyber Security attack from criminals is targeted across as many businesses as they can reach, searching for an easy victim, just like a predator will take the slowest and the weakest victim in a herd, because its easy!
Microsoft Exchange servers autodiscover function, configured by the wrong hands, is not secure! A systems administrator who incorrectly sets up their on-premise Autodiscover record could be assisting miscreants to slurp up credentials from an organisations users trying to connect to their corporate email account.
Do the easiest(cheapest) thing first that give your the biggest benefit or the first 80% of a job takes 20% of the time, both statements… Read More »Human error, human error, ho hum…