top of page
Mass Exploitation of Internet Facing Services - This Time Zimbra
A recent massively exploited vulnerability in Zimbra will give attackers another powerful tool to further amplify phishing and BEC attacks.
Oct 14, 2024
Active Directory Advice from Down Under: Is It Too Difficult and Costly to Protect It?
Protecting Active Directory is costly, complex, and crucial. Learn why AD's broad attack surface makes it a top target for ransomware.
Oct 8, 2024
Password Rotation, Complexity Requirements, or Security Questions – All Bad Practices?
NIST advises against password rotation, complexity rules, and security questions. Focus on password length for better security.
Oct 1, 2024
Identity Compromise Drives Majority of Cyber Incidents - CISA’s 2023 Findings
Attackers aren't breaking in—they're logging in. CISA's 2023 report shows 41% of breaches stem from compromised valid accounts.
Sep 27, 2024
Impersonating Government Agencies To Deliver Infostealers - The HZZO Example
A Croatia-based agency name is spoofed to deliver malware. What if these attacks get more sophisticated, and what can be done in the future?
Aug 27, 2024
Cybersecurity Incidents Are Intensifying – A Regional Example
Ransomware attacks are intensifying in the Adriatic region, revealing the vulnerabilities of complex self-hosted IT infrastructure.
Jun 28, 2024
Ransomware at CDK Global: What’s Behind the Headlines?
CDK Global's service outage exposes critical vulnerabilities in their DMS software. Learn about the key factors behind the ransomware attack
Jun 25, 2024
Snowflake Attack and the Urgency of MFA
Cloud providers should make MFA mandatory, as the recent Snowflake incident makes clear.
Jun 16, 2024
VPN Devices Under Attack: Shift to Multi-Factor Authentication
Public VPN devices are prime cyberattack targets. Zero-day exploits and brute force attacks highlight the urgent need for MFA.
Jun 6, 2024
bottom of page