Remember that Remote Desktop Services vulnerability from May this year (2019)? … well, now BlueKeep has an active exploit!
Another day, another data privacy breach due to incorrect permissions on AWS S3 storage buckets Continue reading “Protect your buckets !”
Well there’s something I wasn’t expecting to see… into my inbox I received notification of a new Oracle vulnerability, and it looks like a big one. Continue reading “New Oracle Vulnerability – CVSS 9.9”
In a blog post today, Twitter announced that they had identified a bug that stored account passwords, in clear-text (unmasked), in an internal log. Continue reading “Time to change your Twitter Password”
So, 2018 has really kicked off with a bang! If you use a computer, tablet, phone, etc (hint, if you think you’re not then how are you reading this page 😉 )… then you really need to be aware of one of the latest vulnerabilities … and, I would argue, one of the most significant the IT industry has faced to date!
World, meet Meltdown and Spectre Continue reading “2018 brings … Meltdown and Spectre!”
In what has been a tightly guarded message to manufacturers of WiFi Access Points, it has now been revealed that the long-trusted WPA2 security protocol has been compromised. Continue reading “KRACK – WPA2 WiFi Security Compromise”
So I’ve just finished reading about a new Bluetooth attack called “Bluebourne“. This new attack allows for remote compromise of a Bluetooth-enabled device, even if the devices are not paired to being with! Continue reading “Blueborne – Bluetooth devices beware!”
Hot on the heels of my last blog post, a judge in the US has ruled that victims have the right to sue Yahoo for claims of breach of contract and unfair competition! Continue reading “Yahoo victims right to sue following Data Breaches”
In what is likely one of the largest ever reported data breaches, over 700 million email addresses, and some passwords, have been leaked via a spambot – there is a good chance you be affected! Continue reading “700m Email Addresses Leaked”
There is lots of talk at the moment about internet security – hacking, compromised accounts, lost financial information, identity theft. The question is “how can you give confidence to your users so that they can trust the web site they’re visiting?” (ie. “yours”). Continue reading “LetsEncrypt – SSL Encryption For Everyone – Part 1”