Security Breaches: NAKIVO's Vulnerability. A Whimsical Read for Sunday 2nd March 2025.
When backup needs backup.
Vulnerability Management
Digging Up Ancient Relics, Turncloak Alert, Cyber Ninjas Arise, Ransomware Sentinels, MS Botnets Running Amok, and Major Oopsies. It's CISO Intelligence for Friday 28th February 2025.
Old but still useful drivers put to bad use, rogue soldiers, red teams are the good guys, continuous vigilance required, botnets using a scattergun approach, and oh dear, Adobe and Oracle! TGIF!
Creek Meets CTEM Paddle, Death-Breaches-Taxes, Lazarus's New Sidekick, Digital Sleight of Hand, Google's AI Defense, and Levelling the Jurisdictional Landscape. It's CISO Intelligence for Wednesday 19th February 2025.
Today's topics: CTEM is the new lifeboat, cyber incidents are now an inevitable part of the digital world, Lazarus keeps rising and this time they brought a friend, digital laundering: a whole new magic trick, Google's new AI star player, and compliance is not an option.
The Cloak and Dagger Upgrade, A Different Kind of Stew, There's a Hole in the Keystore, Email Intruders, Trimming the Fat, and The New Directive in Town. It's CISO Intelligence for Monday 17th February 2025.
Today's topics: The world of espionage is now fully up to speed, sadly there's no comfort food in sight. "Is it secret? Is it safe?" Battening down the email hatches, shedding excess insurance premium weight, and the new GovTech safety blanket.
The Art of Persuasion, Trojans in Recruiter Clothing, More than Pesky Pests, Etsy: The Latest Scammer Target, Cyber Pirates Going Global, and Unwanted Exposure. It's CISO Intelligence for Friday 14th February 2025.
Today's food for thought: sweet-talking the bosses, beware of malware bearing job offers, bugs that need a whole lot more than spray, Etsy is the new hunting ground for support scammers, cyber assaults without frontiers, and stocks with the wrong kind of shares.
Risky Business, Crypto: A Whole New World, Shedding Old Wood, Your Money or Your Messages, One Click and Done, and Apple Getting Rolled. It's CISO Intelligence for Monday 3rd February 2025!
Today's subjects: the little guys leaving themselves vulnerable, inside the world of the crypto keepers, everything needs an occasional lift, when your Android devices have their own stalker, just one innocent click causes so much damage, and Apple getting slapped and flopped around.
Hackers Aiming High, ENGlobal's Six Week Timeout, The Mishing Game, Remote Assistance: the Hackers' Latest Exploitation Tool, Influencers under Siege, and Taking A Bite Out of the Apple. It's CISO Intelligence for Friday 31st January 2025.
Today's topics: cue the music for the smooth operators, the night they drove ENGlobal down, "It was only a pdf", when "the remote help" isn't what it seems, influencers: you thought you were safe? And what to do when the fruit is soured.
New Cryptojacking Swing, The Hole in Kubernetes, SaaS Cloud Busting, E-Signatures: Trust and Verify, All-Singing-and-Dancing MDR, and AI: the Good, the Bad and the Ugly. It's all in CISO Intelligence for Wednesday 29th January 2025
You don't know what you've got 'til it deteriorates, GETting a whole lot more than expected, there's always a dark side, testing the E-signature phishing boundaries, MDR teams: much more than a monitoring service, and we really need to talk about AI.
Knowing Limits, Fool Me Twice, Not Minding the Gaps, Heavy on the Condiments, Groundhog Syndrome, and Old Habits Create Jeopardy. It's CISO Intelligence for Tuesday 28th January 2025!
Today we're looking at data boundaries, when lessons not learned are repeated, more holes than substance, when over-seasoning leads to clogging the senses, the repetitive result of a self-inflicted mishap, and when "if it ain't broke don't fix it" is not a flex.
MS's Cracked Windows, Patching up Oracle, A Chip in a Cornerstone, AI: The Great Automater, The Exit Bag Check, and Digital Alarm Bells Ringing in the Car Industry. It's CISO Intelligence for Monday 27th January 2025.
Today's topics: hackers using the "sneak in/change account access/run rampant" technique, Oracle creating a veritable quilt to cover its flaws, issues with Apache's building blocks, AI easing the analyst's load, making sure leavers exit empty-handed, and a bumpy road trip into cybersecurity.
CISA's New Fangs, Fact Check, Fact Check and Fact Check Again, Smooth Ransomware Operators, The Great Data Breach Lawsuit Gallop, Patches Galore, and Loose Lips: Security Breach. It's CISO Intelligence for Thursday 23rd January 2025.
In today's issue, CISA now has more bite, always check sources before passing on information, smooth-talking hackers, you can't dance your way out of a lawsuit, there's a whole lot of patching going on, and when bragging becomes a security breach.
WordPress Whacked, the UK Says No, Talking About Regeneration, Turbo-Charged MicroSoft Password Hackers, Solara's Expensive Phishing Oops, and SimpleHelp's Huge Holes. It's CISO Intelligence for Friday 17th January 2025
Today's topics: the WordPress infiltration danger, the UK refusing ransomware extortion payouts, HexaLocker upscaling, MS vs the newest high-speed password hacking toy, the painful cost of not reinforcing cyber defenses, and remote support access tools needing to plug their own holes.