Info Security Buzz

Collaborative robots were gaining momentum in the marketplace before the COVID-19 pandemic arrived. They create situations where humans and machines work safely, side by side. However, the global health threat forced companies to cope with reduced operations and the...

Don’t Let Spooky Season Get Any More Chilling – Here’s How You Can Keep the Ghouls & Goblins from Stealing your Data Cybersecurity Awareness Month aims to provide individuals with the resources they need to be safer and more...

As of October 2020, we would seem to be dug in even deeper into the pit of the global Pandemic with no end game in our forward vision. Thus, those Remote Working, Out of Office forced conditions would not...

In the last few years, the MITRE ATT&CK framework has been key to many organisations combatting cyber threats. Essentially the framework is a globally accessible knowledge base of adversary tactics and techniques based on real-world observations of cyberattacks. The objective of the framework is to create a comprehensive...

Internet service providers are seeing a spike in Voice-over Internet Protocol (VoIP) usage driven by the increased adoption of working from home during the COVID-19 pandemic. This has been reported by many companies in the space including Comcast, which has...

The attacks taking place on small and medium enterprises (SME) are becoming more sophisticated, meaning that they cannot be easily prevented by traditional endpoint protection mechanisms. In such cases, timely incident detection is essential to minimise any potential negative...

The shift to home working means new distractions, systems and forms of communication. All of which can lead to mistakes, but the average attack takes 18 months to 3 years to be detected.  So, how do you know if...

The growth in widespread, sophisticated attacks I have been following, with interest, the attacks on the Australian Government which have led to quite a bit of publicity and debate around who the culprits are behind the cyberattacks. Australian Prime Minister, Scott Morrison, confirmed the attacks were widespread across “all levels of government” including in essential services and...

Gartner defines SOAR (Security Orchestration, Automation, and Response) as the fusion of three technology markets — security orchestration and automation, security incident response platforms, and threat intelligence platforms — allowing organisations to define and manage incident analysis and response...

You’re just about to build a security operations center (SOC). Or maybe you need to make sure the security operations team you already have in place has all the bases covered when it comes to protecting digital assets. Knowing where to...

Now in its 17th year, Cybersecurity Awareness Month continues to play a critical role in raising awareness of the online threats faced by both organisations and individuals alike. This year’s theme – ‘Think Before U Click’ (#ThinkB4UClick) focuses on...

Introduction to the New Age of Warfare It was in Amsterdam 1993 when presenting a paper at the Virus Bulletin 93 Conference, subject – bypassing anti-virus scanners. It was there in the luxurious Grand Hotel Krasnapolsky where I was...

COVID-19 has already forced major changes to the way we live our lives. Many of these may outlast the pandemic, especially those related to the modern workforce. New working patterns may in the long-run have significant benefits to organisations...

Microsoft released an update for CVE-2020-1472 (now known as Zerologon) on August 11, 2020. The Elevation of Privilege vulnerability exists in the Netlogon Remote Protocol and can allow an unauthenticated attacker to obtain domain administrator access. The vulnerability has a CVSSv3...

From suppliers and outsourcers, to service providers and distributors, a third-party breach can occur at any point along your supply chain. As attackers continue to look for ways to infiltrate companies through their partners and the third-party ecosystem continues...