How I got scammed
Privacy and Data Protection Compliance Will Become More Fragmented in 2024
Privacy and Data Protection Compliance Will Become More Fragmented in 2024
Why using Google OAuth in work applications is unsafe
A bug in the Google OAuth sign-in mechanism can be exploited by fired employees to retain access to accounts
Study exposes hidden mental health toll of ransomware
Partly funded by the U.K's National Cyber Security Center (NCSC), the study found a cyber security specialist for whom a ransomware attack...
More than half of data breaches at UK legal firms were caused by insiders
One of the biggest risks is accidental data leakage.
Executing Zero Trust in the Cloud Takes Strategy
Law firm that handles data breaches was hit by data breach
Everyone will get breached, eventually.
A Practical Guide to Good Password Hygiene
On December 2nd, 2023, the Cybersecurity and Infrastructure Security Agency (CISA) reported that an Iran-linked hacking group had been targeting US critical infrastructure, specifically US Water Facilities. Two harsh realities made this hack possible. First, system misconfigurations allowed systems to be publicly accessible via the internet vs. limiting its access to their intranet. Second, administrators used weak…
PSA: Fake CVE-2023-45124 Phishing Scam Tricks Users Into Installing Backdoor Plugin
A fake Wordpress security warning, and fix, are showing up in email.
CISA Finalizes Microsoft 365 Secure Configuration Baselines