The significant news this week is a zero-day vulnerability in Microsoft Word, that Microsoft has not yet patched – although they have published advice about the issue:
Microsoft guidance for Office zero-day vulnerability – Follina – Smart Thinking Solutions
The malware is called Follina and it uses macros as part of it’s attack and this will still run even if you have macros disabled.
Then there was the holiday weekend for the Queen’s Platinum Jubilee. As a tribute to that I ran four articles over the Bank Holiday weekend looking at four significant technology advances from 1952 – with three extra posts dropped in as they were fun.
Platinum Jubilee Technology at Smart Thinking Solutions
Another subject that has come up several times this week is the weakness in using Bluetooth for more than just listening to music. When you use it to track things and lock things bad actors (and researchers) will always be looking for ways to exploit Bluetooth.
The Ukraine Russia Conflict advice has been updated this week:
Then there is still ransomware!
Ransomware attacks – just in case you have forgotten that any organisation can be compromised – three tips to help you face up to the threat
This Saturday as part of the “weekend read” project I am featuring a video instead. It is by one of my favourite speakers on technology Bruce Schneier, and well worth watching, whilst having a coffee.
Because It’s Friday – 95 million cups of coffee a day – Smart Thinking Solutions
Clive Catton MSc (Cyber Security) – by-line and other articles
This is a weekly round-up of the articles from Smart Thinking Solutions, our specialist cybersecurity, governance and compliance web site.
The articles are mostly quick reads to give you an overview of the cybersecurity threat landscape facing businesses today, with links to the sources. Many of the posts have action points or top tips to help you navigate these threats to your organisations.
Sometimes they are just there to make you smile!
Because It’s Friday – Looking at Apple’s first PDA
The US Cybersecurity and Infrastructure Security Agency adds 3 known exploits to it’s data base
Another example of using Bluetooth for something it was not intended for
Stealth Linux malware – using new methods of evasion
Lack of knowledge will hamper anyone’s cyber security efforts
The US Cybersecurity and Infrastructure Security Agency adds 36 known exploits to it’s data base
How to unlock a Tesla that does not belong to you!
Let’s giveaway military secrets to win an argument with strangers whilst playing an online game! For real.
Active exploit for Follina – the still unpatched flaw in Microsoft Word
New in the wild malware – SVCReady
Apple and FIDO
Three US Agencies issue an advisory about Chinese threat actors
Confluence Server and Confluence Data Center – actively being attacked – there’s a patch UPDATE 8 June 2022
Microsoft seizes threat actor domains
It’s that Conti gang again
VPN companies start to vote with their feet when it comes to storing user data in India
I wanted to post this last weekend – but it only became available this morning! A Platinum Jubilee Fact.
What is it about politicians and privacy?
Another good step for better child safety on the internet and for catching the criminals who are involved
Ransomware attacks – just in case you have forgotten that any organisation can be compromised – three tips to help you face up to the threat
Ransomware via IoT
Good news – Android FluBot malware stopped by Europol
Phishing email alert – Excel spreadsheets loaded with RATs
Would you like to go large on the tracking with that coffee? UPDATED
Anatomy of a phishing email
Noughts and Crosses. A Platinum Jubilee Fact.
CISA adds one known vulnerability to it’s database and other advisories
IBM 726 dual tape drive. A Platinum Jubilee Fact.
Mozilla releases patches for a variety of products
How many transistors are there in the processor in your computer? A Platinum Jubilee Fact.
Because It’s Friday – Scope this out…
