Security Made Simple
We’ve all started to get used to our “new normal” of working from home. There have been a lot of posts about how to do this effectively, and some of you may even have used some of the guidance I recently published on here. (A big thank you if you have!) A quick heads up is … Continue reading Good Social Media Hygiene
There’s a lot of talk at the moment about enabling staff to work from home due to coronavirus / covid19. There are probably a lot of organisations that would like to make this happen, but who don’t know how to do this securely. These organisations may also have staff who will be working from home … Continue reading Working From Home during the pandemic: a simple guide for companies and individuals alike
Have you heard of Shadow IT? Do you worry about it? Many organisations have a defined IT policy and processes surrounding it. They may outsource provision to a Third Party, or they may have their own IT department, even if that’s just Billy sitting in the corner, who is totally self taught. The organisation may … Continue reading Shadow IT
Does this sound familiar? You keep seeing headlines about cyber security, about information security, usually when there’s been a loss of passwords or data, sometimes about large fines being levied on companies for poor practice. You’ve heard that there are lots of vacancies in the world of cyber and would like to look at a … Continue reading Careers in Cyber
Did you know that today, May 2nd, is World Password Day? To mark the event, I thought I’d post a quick update, based on a new approach to password management. Both the UK National Cyber Security Centre (NCSC) and US National Institute of Standards and Technology (NIST) have published changes to their recommendations for managing … Continue reading World Password Day
I know it’s a bit hackneyed, but making New Year’s resolutions is part and parcel of this time of year. Wouldn’t it be great if everyone in security could all make the same one, to commit to doing the same thing? We’d need to bring others with us, like our IT colleagues, our enthusiastic amateur … Continue reading A new approach for 2019
Zero Day The time taken between a vulnerability existing and a patch being released to fix it can be several weeks, months or even years. An exploit written to take advantage of this gap is known as a Zero Day. The bad guys are particularly interested in carrying out attacks against systems with vulnerabilities but no patches, … Continue reading Z is for …
X-rated It’s well known that the internet hosts a wide variety of pornography sites, from the legal on the surface web to the illegal on the dark web. But what of other adult only material, which is also x-rated and may be illegal. Sites showing gore, mutilation, torture and worse? Again, they’re split between the … Continue reading X is for …
Earlier this week an article appeared on the BBC website called How can we stop being cyber idiots?. I took umbrage at this for a number of reasons. First, why alienate readers by calling them idiots? Most people who use computers (I won’t call them users because, as a friend of mine pointed out, users has … Continue reading Unhelpful media headlines
Updates This is just another term for patches, and is pretty much used interchangably. So these are fixes for parts of code which are found to have vulnerabilities in them, and are generally released on a regular basis by software vendors. UPS An Uninterruptable Power Supply (UPS) is basically just a large battery which allows a device … Continue reading U is for …
Easy Cyber 