Encryption is used absolutely everywhere, and for many, there are a lot of burning questions. How does encryption work? What makes a ‘good’ encryption technology? How does it secure your data? These are all questions we receive on a regular basis. Encryption is an enormous subject area, and rightly so. While the concept, in practice,[…]
This week is an ideal time to provide some insight and context for those who re-use the same password across multiple websites and services. We’ve touched on this topic previously, but a more thorough explanation may help you re-evaluate your existing password security. The risk with re-using passwords isn’t limited to the strength of the[…]
We’re seeing a substantial increase in the number of attacks against the COVID-19 supply chain, with a significant focus placed on those producing vaccines. A recent report by the UK National Cyber Security Centre (NCSC) provides advisories on identifying and mitigating the attack vectors used to compromise systems for data exfiltration. Investigation by NCSC and[…]
Implementing security into an already established and successful development pipelines can be both difficult and intensive. However, ensuring that product delivery also encompasses security through relevant testing is vital for continuous improvement. Our article this week will focus on how you can begin to review and implement security testing into your development pipelines, and how[…]
Our article this week is going to touch on the lighter side of the current situation. Now that we are all adjusting to working remotely, it is worth taking a moment to upskill and consider the opportunities that you’re faced with. Whether it’s the elimination of your commuting time, more availability in the evenings, or[…]
Confidentiality, availability and integrity, known as the CIA triad, are considered the most crucial parts of security. Confidentiality – is the assurance the information is not disclosed to unauthorised individuals, processes or devices while making sure authorised personnel can. The confidentiality of data can be adhered to by utilising strong complex passwords, two-factor authentication and[…]
Event logs are detailed records containing information relating to what occurred on the device. A log entry is created for every event and application notification on a device within the network and are often categorised with a severity level ranging from information through to critical. Windows event logs can be utilised by the network administrators[…]