There are some simple, CHEAP, and straight forward steps to stop ransomware. No one should be administrator of anything with the ID they use to surf the web or open emails, or use removable… Read More

The recent cyber-attack on the US major oil and gas pipeline could become one of the most expensive attacks to an economy. 80% of senior cybersecurity leaders see ransomware as a dangerous g… Read More

Before we begin, let me answer this question for you, it is NO your not ready, if your the NSA or FSB, maybe you are. Other wise your not. Do you have a product or data that anyone woul… Read More

Many data centers that support the cloud as well as commercial buildings have not adequately addressed control system cyber security. The lack of adequately addressing building control syste… Read More

Control systems are systems of systems. Consequently, when one device or system is compromised, it can impact many others, potentially numbered in the tens to thousands. If I were to have co… Read More

When you think of a cyber criminal you probably think of an evil mastermind sitting behind a computer, launching sophisticated attacks over the internet. While some of today’s cyber cr… Read More

Boris Johnson’s personal phone number has been publicly available on the internet for 15 years, it has been revealed. Listed at the bottom of a 2006 press release, the number has repor… Read More

Business and government are exposing each other to an increasing range of cyber-risks. • Current efforts to pool cybersecurity resources are limited in scope. • Sharing threat in… Read More

After more than six months, Schrems II is still proving to be difficult to manage for many organisations across the world. In 2021, Schrems II – the landmark data privacy verdict issue… Read More

There is a say never say Never. But there are several times your should say Never. for 1 and 2 in Never say Never. Another one is NEVER give your social security number, Credit Card Numbe… Read More

I am happy to see ICS cyber security specifically being addressed by the US Secretary of Energy. It is “unobtainium” to secure the electric system, or any other industry which us… Read More

Read more at Woods LLP Licensed from http://www.securitycartoon.com/index.php?comic=20070914&tag=pharming&last= Read More

As tensions with China continue to grow, Japan is making moves to join the “Five Eyes” intelligence-sharing alliance. This week, Japan’s ambassador to Australia, Shingo Yam… Read More

In the digital age, ecosystems take the evolution of business to a whole new level. The ecosystem surrounding a company can include a network of partners, suppliers, manufacturers, as well a… Read More

Once upon a time. I was told by the Head of IT a Vice President in fact my job was to make sure the company did not get HACKED. the words were "Don't Get Hacked" Needless to say that sa… Read More

So you heard the government wants to strengthen Cyber Security on the power grid. That is a Great executive action, but until there are laws with teeth passed it won't cause the management… Read More

This shouldn't come as a surprise, but to many it did. Many a company and Government Agencies have been hacked by the IT staff not patching pulse secure solutions they are running. Why sho… Read More

Disaster recovery Disaster Recovery is a failure of 1 or more IT systems, or an entire datacenter, or ALL IT Systems. Disaster Recovery involves a set of policies, tools and procedures to… Read More

Just like a Military DMZ and IT DMZ Serves the same purpose. To keep enemies at bay and provide a protective buffer between the hostile world of the internet and the internal corporate env… Read More

On Monday, the Department of Justice announced that it had cleaned malware (“webshells”) off of hundreds of infected mail systems running Microsoft Exchange. Microsoft has been t… Read More

The Cloud, what is it? Really it is just a datacenter somewhere that some else runs and you don't much care where it is or who is running it. it is no different from a server room at your… Read More

In conventional warfare, it’s accepted that if a state finds itself under attack, it’s entitled to respond – either with defensive force, or with a counterattack. But it&rs&hell…Read More

An Photo, audio or video clip that has been edited and manipulated to seem real or believable. The most dangerous consequence of the popularity of deepfakes is that they can easily convince… Read More

Short for “penetration testing,” this practice is a means of evaluating security using hacker tools and techniques with the aim of discovering vulnerabilities and evaluating secu… Read More

Spear phishing is the act of sending and emails to specific and well-researched targets while purporting to be a trusted sender. The aim is to either infect devices with malware or convince… Read More

What is Privacy? There are many different definitions of “privacy.” We are going to focus on personal privacy, protecting the information about you that others collect. In toda… Read More

Lets be Frank, Securing a country as devise and free as the United States is an up hill battle. We are free to open a business and run in anyway we see fit, aside a few employee, Environme… Read More

Adobe Adult Friend Finder Canva Dubsmash TARGET/TJMAX Anthum Blue Cross Blue Shield eBay Equifax Heartland Payment Systems LinkedIn Marriott International My Fitness… Read More

Who is the Worst? The end user? Maybe they can be bad, but typically don't have much access and the risk is minimal. Is it Management? Again Maybe but not in the ways you think. Manag… Read More

We will just keep this to a Short easy list. Update your software AT LEAST Weekly (it is automatic, just enable it) buy antivirus software it is cheap. set it to update daily, and scan at… Read More

Normalization refers to social processes through which ideas and actions come to be seen as 'normal' and become taken-for-granted or 'natural' in everyday life. In sociological theory, norma… Read More

Groupthink is a psychological phenomenon that occurs within a group of people in which the desire for harmony or conformity in the group results in an irrational or dysfunctional decision-ma… Read More

On Sunday afternoon, Channel 9 posted a cryptic tweet indicating it was under attack. The accompanying video acknowledged that the failure to run the Weekend Today show that morning was attr… Read More

Mystery shopping programs have become enormously popular in recent years, and even decades. They allow people to make some extra money doing what they love. Many mystery shopper programs rew… Read More

According to many people, data is the new oil. Industries such as insurance, finance, retail, etc. depend on massive amounts of data from multiple data centers. However, what happens if you… Read More

What Is a Rootkit?A rootkit is a clandestine computer program designed to provide continued privileged access to a computer while actively hiding its presence. The term rootkit is a connecti… Read More

Children, like adults, are spending more time online. At home and school pre-schoolers now use an array of apps and platforms to learn, play and be entertained. While there are reported bene… Read More

An FBI report has shown that 2020 was the worst on record for victims of internet crime in the US. The resulting financial losses came to a total of $4.2 billion. The most common interne… Read More

A ping of death is a type of attack on a computer system that involves sending a malformed or otherwise malicious ping to a computer. A correctly-formed ping packet is typically 56 bytes in… Read More

In information security and programming, a buffer overflow, or buffer overrun, is an anomaly where a program, while writing data to a buffer, overruns the buffer's boundary and overwrites ad… Read More

The Smurf attack is a distributed denial-of-service attack in which large numbers of Internet Control Message Protocol (ICMP) packets with the intended victim's spoofed source IP are broadca… Read More

In computer networking, ARP spoofing, ARP cache poisoning, or ARP poison routing, is a technique by which an attacker sends (spoofed) Address Resolution Protocol (ARP) messages onto a local… Read More

No Technical skills are required to Social Engineering a person. Social Engineering has been used by Con-artists for for Millennia. Social engineering is the art of manipulating people so… Read More

Phishing is the fraudulent attempt to obtain sensitive information or data, such as usernames, passwords and credit card details or other sensitive details, by impersonating oneself as a tru… Read More

An attack where an attacker relays all messages back and forth between a client and server. During the attack, messagesmay be changed or simply recorded for later use. An example of this a… Read More

DNS Poisoning A way of forcing users to a malicious site by injecting bad data into a domain name server's cache in order to change (for users of that server) the destination a domain reso… Read More

The COVID pandemic has forced most companies into distributed and virtual settings. Companies had to swiftly adapt their organisations to social distancing and elevated economic uncertainty… Read More

The digital ecosystem has expanded in response to changing needs during the pandemic. There is a current rise in cyberattacks, often on vulnerable digital supply chains. Organizations must o… Read More

Recent Texas power outages and the loss of both electricity and water across Texas demonstrate how vulnerable ERCOT and Texas are to not only natural disasters such as snowstorms and hurrica… Read More

It goes without saying, but smartphones are everywhere these days. In fact, in 2021, there are now an estimated 3.8 billion smartphone users – which equals 48.5% of the world’s p… Read More

Identity theft happens when a criminal steals information about you and uses that information to commit fraud, such as requesting unemployment benefits, tax refunds, or a new loan or credit… Read More

These attacks seem to be aimed at infiltrating networks and burrowing deep into their infrastructure before deploying further attacks. The ACSC is tasked with improving Australia’s cy… Read More

Cyber criminals are very persistent and the daily numbers of cyber attacks show no sign of decreasing. The latest reported attack on an Australian university has disrupted the start of the s… Read More

Business etiquette has one golden rule: treat others with respect and care. The same is true for encouraging cyber safety at work, on everything from password security to keeping valuable in… Read More

Cyber-threats are increasing with the transformation of digital life in the wake of the pandemic. A risk-based approach is needed to safeguard the software and systems that underlie digita… Read More

Mike Rogers is a former member of Congress who served as chairman of the House Intelligence Committee. He is the David Abshire Chair at the Center for the Study of the Presidency and Congres… Read More

Facebook’s recent decision to block its Australian users from sharing or viewing news content provoked a worldwide backlash and accusations of hubris and bullying. Although the company… Read More

In 2020, it was hard to imagine that there’s a big trade for counterfeit documentation and forged IDs. After all, we’re living in a connected era where it feels like much of our… Read More

Today, few board members fully understand the risks to their organization’s cybersecurity, according to the recent PwC Annual Corporate Directors Survey. While 66% of board directors b… Read More

Cryptocurrency use is on the rise, with 33% of Nigerians either using or owning cryptocurrency, according to a recent survey. Cryptocurrency has become popular as a cheaper solution to sen… Read More

In the past five years, ransomware attacks have evolved from rare misfortunes into common and disruptive threats. Hijacking the IT systems of organisations and forcing them to pay a ransom i… Read More

Definition A zero-day vulnerability refers to an exploitable weakness in software that is usually unknown to a vendor. Since this vulnerability has never been shared publicly, no days have g… Read More

Cyberattacks are continuing to grow in sophistication and scale. • The coronavirus pandemic has increased the attack surface for cybercriminals, leading to a possible cyber-pandemic. … Read More

Licensed from http://www.securitycartoon.com/index.php?comic=20070910&tag=pharming Read More

Established the same year Facebook was founded (2004), Safer Internet Day has become a fixture in schools, teaching children how to safely navigate an increasingly complex online world. With… Read More

The Problem of Attribution’ The problems with cyber attribution form a labyrinth that continue to trouble all those involved in cyber defence and wider security. The challenges determi… Read More

The COVID-19 pandemic has not only severely impacted public health in Indonesia but also people’s human rights. The pandemic has justified governments around the world restricting cer… Read More

Leonardo da Vinci’s notebook on Art and Life holds many fascinating observations on painting, human nature, and warfare. But based on these insights, how might da Vinci advise the Defe… Read More

North Korean hackers have staged an audacious attack targeting cybersecurity researchers, many of whom work to counter hackers from places like North Korea, Russia, China and Iran. The attac… Read More

The Sunburst attack uncovered in December 2020 illustrates the magnitude of the cybersecurity challenge. Hackers were able to breach some of the United States’ top government agencies… Read More

No matter how secure you are, sooner or later you may have an accident and become hacked. Below are clues you might have been hacked and if so, what to do. Your Online AccountsFamily or frie… Read More

Data Privacy Day (known in Europe as Data Protection Day) is an international event that occurs every year on the 28th of January. The purpose of the day is to raise awareness about how busi… Read More

In the wake of the major espionage operation in which people alleged to be Russian government agents infiltrated the digital networks of the U.S. Defense, Treasury and Homeland Security depa… Read More

Read more at Woods LLP Licensed from http://www.securitycartoon.com/index.php?comic=20080409&tag=passwords&last= Read More

Did you know you could be charged with spying if you connect with someone who turns out to be a foreign spy on LinkedIn? Apparently, not enough of us do. Australia’s domestic spy agen… Read More

Donald Trump’s controversial removal from social media platforms has reignited debate around the censorship of information published online. But the issue of disinformation and manipul… Read More

Though it is often said that each edition of the Consumer Electronics Show will be the biggest and most innovative show ever, the 54th incarnation of the world’s biggest technology sho… Read More

Overview You most likely have heard how important it is to protect your privacy and the information you share online. To demonstrate this, we are going to try something new; we are going to… Read More

In late December, the American Civil Liberties Union (ACLU) filed a lawsuit against the Federal Bureau of Investigation (FBI), challenging the FBI’s “Glomar” response to it… Read More

Overview Trying to securely make the most of today’s technology can be overwhelming for almost all of us, but it can be especially challenging for family members not as used to or as f… Read More

What is Fake News?Generally speaking, fake news is a false narrative that is published and promoted as if it were true. Historically, fake news was usually propaganda put out by those in pow… Read More

Overview To create a secure home network, you need to start by securing your Wi-Fi access point (sometimes called a Wi-Fi router). This is the device that controls who and what can connect t… Read More

The accelerated shift towards digital space with the pandemic has changed the corporate world. It is up to company leaders to make sure their businesses can adapt effectively to these change… Read More

More fear than harm The WannaCry ransomware that plagued the National Health Service (NHS) in May 2017 served as a wake-up call for many, as it demonstrated the vulnerability of the UK&rsqu&hell…Read More

The launch of the MoD’s Defence Science and Technology Laboratory first Defence Wargaming Centre in December 2019 is an opportunity for future wargaming design. While current games do… Read More

Read more at Woods LLP Read More

New research is questioning the popular notion that cybercriminals can make millions of dollars from the comfort of home — and without much effort. Our paper, published in the journal… Read More

Read more at Woods LLP Licensed from http://www.securitycartoon.com/index.php?comic=20070604 Read More

COVID-19 is often linked to its impact on mobility and globalization. Stringent measures have been taken to contain the situation, which have constrained the movement of people and goods, na… Read More

With the festive season having come to a close, consumers the world over will be playing with a variety of new tech toys. In recent years, the most popular gadgets sold on Amazon have inclu… Read More

So much remains unknown about what is now being called the Sunburst hack, the cyberattack against U.S. government agencies and corporations. U.S. officials widely believe that Russian state… Read More

“The enemies of liberal democracy hack our feelings of fear and hate and vanity, and then use these feelings to polarize and destroy" - Yuval Noah Harari.[1] Most of the discussion of… Read More

The financial services industry, like every other, has a responsibility to look after the environment. Giving a second life to plastic with recycled OTP devices is a great way to reduce thei… Read More

While, for most of us, the festive season is often characterised by presents, family and inevitably large plates of food, the same cannot be said for Santa Claus. For Saint Nicholas, Christm… Read More

In our increasingly digital world, a greater proportion of businesses across different sectors are trying to integrate new technologies into their processes. In a recent study, 43% of compan… Read More

Out of the 7.5 billion people on Earth, I’m guessing that approximately zero percent will be sad to see this benighted year come to an end. Looking back is too depressing, so I want to… Read More

The Ninth Circuit Court of Appeals has rebuffed my attempt to unseal information about the Department of Justice's unsuccessful secret effort to force Facebook to change the encryption of it… Read More

I want to share some musings I had about what criminal punishment means right now in America. I don’t really write about the basics of criminal law and procedure much – it’… Read More

The Computer Fraud and Abuse Act is America's federal anti-hacking statute, but it's been used for purposes well beyond that. The law's broad language has let it be used as a cudgel against… Read More

This week, California filed its first brief in the lawsuit by the United States and Internet service providers like AT&T and Comcast that seeks to overturn California’s net neutral… Read More