For any cyber security specialist who’s due a pay review, recently published threat reports make worthwhile reading. The latest annual roundup from FireEye confirms the Cyber Security Skills Gap as one of the biggest risks facing businesses. Specialists in
EFAIL describes vulnerabilities in the end-to-end encryption technologies OpenPGP and S/MIME that leak the plaintext of encrypted emails. (UPDATE - This attack targets buggy email clients.)The EFAIL attacks exploit vulnerabilities in the OpenPGP and S/MIME
Listen (above) to my interview on the Secure Talk podcast where I discuss career advice for aspiring and existing cyber security professionals. Talk about security education, share my thoughts on the industry, credentials, certifications, advanced
The U.S. Department of Homeland Security (DHS), Federal Bureau of Investigation (FBI), and the UK’s National Cyber Security Centre (NCSC) have today issued a joint Technical Alert about malicious cyber activity carried out by the Russian government. To
Another promising DNS resolver with a security and privacy focus is the new free offer from Cloudflare called 1.1.1.1.Olafur Gudmundsson, director of engineering at Cloudflare, said: “Our goals with the public resolver are simple: Cloudflare wants to operate
Heads up about 13 vulnerabilities within AMD’s RYZEN and EPYC processors that could make some data breaches even worse. Note requires attackers to first gain administrative rights on a targeted network or computer.CTS Labs, a Tel Aviv-based security
As many of you are students I wanted to recommend this great new book: 'The Student Hustler'This book takes the reader through a journey of advice, guidance and anecdotes from the author (aka the Student Hustler) covering creative ways to make extra money
I'm working with Barclays PLC on a UK FinTech competition. This gives you a chance to get virtual coaching from me and to possibly win a share of £5,000.Barclays PLC has established itself at the forefront of development in financial technology (FinTech).
SABSA stands for the Sherwood Applied Business Security Architecture, and is a leading methodology for developing business operational risk and opportunity-based architectures. It provides a framework for developing risk driven enterprise information security
I recommend this tool if you want to check if your Windows machines are susceptible to the Spectre and Meltdown vulnerabilities. Bonus - It also checks the performance hit too of any applied fixes!“InSpectre” is an easy to use & understand utility
For the first time, we’re about to see in place a Europe-wide regime governing critical infrastructure cybersecurity. Here’s what you need to know about the Network and Information Security (NIS) Directive …The NIS Directive - what’s it all about?Affecting the
In reference to Windows security updates released January 3, 2018, and antivirus software.Microsoft customers will not receive the January 2018 security updates (or any subsequent security updates) and will not be protected from security vulnerabilities
To tell or not to tell? That’s the dilemma faced by anyone who’s been hit by hackers or online fraudsters. We look at the reasons why so many businesses opt to stay quiet. And with GDPR around the corner, we also discover why keeping schtum about the loss of
Billed as “immunisation for your computer”, Quad9, a new DNS service, promises to enable much safer Web browsing, enhance your privacy while preserving performance. On top of all this, it’s free to use. So is there a catch? We take a look…Quad9: what are we