Compliance December 14, 2021 Microsoft Patches 6 Zero-Day Bugs and 7 Critical Flaws on December 2021 Patch Tuesday December 2021 Patch Tuesday has seen Microsoft issue fixes for 67 vulnerabilities across its product suite, including 6 zero-day vulnerabilities and 7 critical flaws, with ... Read more
Cyber Threats December 13, 2021 Actively Exploited Log4Shell Vulnerability in Apache Log4j is as Bad as it Gets A recently discovered vulnerability in the Apache Log4j Java-based logging library is widely considered to be one of the most dangerous vulnerabilities ever to be ... Read more
Trends & Reports December 13, 2021 Survey: 90% of IT Leaders Guilty of Reusing Passwords Bitwarden has released the results of its second annual Password Decisions Survey, which explored the technology being used by IT decision makers, the security risks ... Read more
Security Breaches December 10, 2021 30% of Security Breaches Are Caused by Poor Password Practices Passwords can provide a very good level of security but many people are guilty of poor password practices. While there are now alternatives to passwords ... Read more
Tools & Practices December 9, 2021 SonicWall Urging Users of SMA 100 Appliances to Update the Firmware Immediately SonicWall has released patches to fix eight vulnerabilities in its Secure Mobile Access (SMA) 100 series appliances, including two critical flaws. Vulnerable SMA 100 series ... Read more
Tools & Practices December 7, 2021 LastPass Review Our LastPass review illustrates why, up until recently, LastPass was considered to be one of the best password managers for personal and business use. Unfortunately, ... Read more
Tools & Practices December 7, 2021 Keeper Review Our Keeper review investigates the company´s claim that the Keeper password manager is “the top-rated cybersecurity solution” and then compares its capabilities against other vault-based ... Read more
Security Breaches December 7, 2021 New Malware Variant Being Used in Targeted Attacks by SolarWinds Hackers The Advanced Persistent Threat (APT) actor believed to be responsible for the SolarWinds supply chain attack is continuing to conduct attacks on U.S. companies to ... Read more
Tools & Practices December 6, 2021 1Password Review Our 1Password review digs into the capabilities of “the world´s most-loved password manager” to establish if it lives up to its self-awarded title or whether ... Read more
Cyber Threats December 6, 2021 COVID-19 Omicron Phishing Scam Targets UK Residents Offering Free NHS Omicron PCR Test An COVID-19 Omicron phishing campaign has been detected that spoofs the UK’s National Health Service and attempts to get individuals to disclose sensitive personally identifiable ... Read more
Tools & Practices December 6, 2021 Dashlane Review Due to the frequency at which Dashlane updates its password manager, any Dashlane review is likely to be quickly out of date. Consequently, our review ... Read more
Tools & Practices December 3, 2021 SpamTitan Plus Has Better Coverage of Malicious URLs and Detects Them Faster Than Market Leading Solutions A new anti-phishing product has been launched by TitanHQ which the company says provides far better coverage of malicious URLs than any of the current ... Read more
Tools & Practices December 3, 2021 Bitwarden Review Our Bitwarden review looks at the pros and cons of this vault-based password manager from several perspectives in order to assess its suitability for individuals, ... Read more
Cyber Threats December 3, 2021 Warning Issued About Active Exploitation of Critical Zoho ManageEngine ServiceDesk Plus Vulnerability At least one APT actor is exploiting a critical vulnerability in the IT helpdesk and asset management solution, Zoho ManageEngine ServiceDesk Plus, according to a ... Read more
Security Breaches December 2, 2021 Multiple APT Actors Using Novel RFT Template Injection Technique in Phishing Attacks A novel Rich Text Format (RTF) Template Injection technique is being used in phishing campaigns conducted by multiple nation-state hacking groups. Researchers at Proofpoint say ... Read more
Security Breaches December 1, 2021 FBI Seizes $2.3 Million in Ransomware Payments from Russian Affiliate of REvil and GandCrab RaaS Operations The Federal Bureau of Investigation (FBI) has seized 39.89 Bitcoins with a current value of around $2.3 million from a Russian national alleged to be ... Read more
Tools & Practices December 1, 2021 Lockwise Password Management Support Comes to an End Firefox has announced that from December 13, 2021, support for the Lockwise password management app will come to an end. That means updates will no ... Read more
Insights December 1, 2021 Open Source Security Issues You Should Be Aware Of Open source software forms a part of virtually all organizations’ software, and while there is nothing inherently insecure about using free code in applications, there ... Read more
Insights December 1, 2021 Open Source Security and Risk Analysis Report Each year, the Synopsys Cybersecurity Research Center (CyRC) produces an Open Source Security and Risk Analysis Report that provides a snapshot of the current state ... Read more
Insights December 1, 2021 Open Source Security Risks Open source software is widely considered to be more secure than proprietary software, but there are open source security risks that must be considered before ... Read more
Insights December 1, 2021 Open Source vs Closed Source Security There is considerable debate about open source vs closed source security, which is often fueled by biases to one of the different styles of software ... Read more
Insights December 1, 2021 What is the Open Source Security Foundation? Many open source software projects started life as collaborations between developers keen to develop an alternative to major software developers such as Microsoft and SAP, ... Read more
Compliance November 29, 2021 Bitwarden versus NordPass Our comparison of Bitwarden versus NordPass shows there is very little to choose between the two password managers. However, individuals and businesses need to be ... Read more
Tools & Practices November 29, 2021 Bitwarden versus Keeper Some comparisons of Bitwarden versus Keeper arrive at the conclusion that Bitwarden is the best free password manager, while Keeper offers a better premium service. ... Read more
Security Breaches November 26, 2021 GoDaddy Data Breach Affects 1.2 Million Customers and 6 Web Hosts On November 22, GoDaddy said it was the victim of a data breach that exposed the email addresses and customer numbers of up to 1.2 ... Read more
Cyber Threats November 25, 2021 New JavaScript Malware Delivers Multiple Rats and Info Stealers A new JavaScript malware dubbed RATDispenser is being used to deliver at least 8 different Remote Access Trojans (RATs), information stealers, and keyloggers. According to ... Read more
Trends & Reports November 23, 2021 Bitwarden versus 1Password You don´t often see comparisons of Bitwarden versus 1Password due to Bitwarden being regarded as a popular free password manager and 1Password having terminated its ... Read more
Cyber Threats November 23, 2021 PoC Exploit Released for High Severity Microsoft Exchange Server RCE Flaw A proof-of-concept exploit for a high-severity post-auth vulnerability in Microsoft Exchange Server 2016 and Exchange Server 2019 has been made public. The flaw, tracked as ... Read more
Compliance November 23, 2021 Bitwarden versus Dashlane One of the most common reasons for data breaches is the use – and reuse – of weak passwords. As people become more aware of ... Read more
Security Breaches November 22, 2021 Survey Reveals Worrying Lack of Action by Consumers After Receiving a Breach Notification Letter The National Institute of Standards and Technology (NIST) no longer recommends regular password changes for employees, as while updating passwords every few months does improve ... Read more