Tel: +44 (0) 330 380 1094
Microsoft's November 'Patch Tuesday' contained quite a few critical updates. Here's one you really need to take notice of.
MS14-066 is an identified remote code execution vulnerability in SChannel (the portion of Windows responsible for secure communications, including SSL/TLS).
A critical security vulnerability, dubbed 'Shellshock', in one of the most widely used programs, Bash (Bourne Again Shell) could topple the recent Heartbleed vulnerability as the most severe issue to affect the Internet. (more…)
A recent news report about a travel services company who has been fined £150,000 by the Information Commissioner's Office for a breach of an 'internal' system, hosted on the same server as their main e-commerce website (that lead to the compromise of over 1.1 million credit/debit card details) has driven me to write this post, so that further incidents of this type do not happen. (more…)
In light of the recent news reports of the take over of the Command and Control servers for the Gameover Zeus botnet - and the potential resurgence of CryptoLocker. I thought it may be a good idea to publish this case study about just how devastating it can be if you find yourself a victim of it.
eBay announced on Wednesday 21st May 2014 that they had suffered a significant breach of their user details database, which resulted in the personal details and hashed passwords of eBay users being compromised. It has since been revealed that the breach occurred between February and March 2014.