• Post Quantum Encryption

    Post Quantum Encryption

    Quantum-Proof Encryption Quantum-proof encryption (also known as post-quantum encryption or quantum-resistant encryption) refers to cryptographic algorithms that are designed to be secure against attacks by quantum computers. Quantum computers, which are based on the principles of quantum mechanics, have the potential to solve certain mathematical problems far more efficiently than…

  • Incident Response Basics: What to Do When a Breach Happens

    Incident Response Basics: What to Do When a Breach Happens

    In a rapid evolving cybersecurity environment, security incidents are unavoidable. It makes no difference how big or small your company is, knowing how to handle a security breach is essential and even necessary. The main objective is to reduce damage and stop similar attacks from occurring in the future. In…

  • Fortifying Your Web Applications

    Fortifying Your Web Applications

    A DevSecOps Approach to Web App Security Web Applications are the engines driving modern businesses, but they also represent a significant attack surface for cybercriminals. Security vulnerabilities in web apps can lead to data breaches, financial losses, and reputational damage. This blog post explores how DevSecOps can be leveraged to…

  • How to Lose Your Data in 10 Easy Steps 

    How to Lose Your Data in 10 Easy Steps 

    Welcome, brave digital adventurer! If you’ve ever wondered how to misplace your precious data with the elegance and grace of a cat knocking over a vase, you’ve come to the right place. Here, we outline ten foolproof steps to ensure your data is as secure as a postcard in a…

  • Securing Industrial Control Systems (ICS) in the Age of DevSecOps

    Securing Industrial Control Systems (ICS) in the Age of DevSecOps

    Large industrial firms are the backbone of our modern world: they keep the lights on, they maintain industrial production, and supply water. But behind the scenes, there is a myriad of Industrial Control Systems (ICS) that coordinate these vital processes. Unfortunately, these very systems can be exposed to cyber threats,…

  • Enhancing Endpoint Security with Windows LAPS and Intune 

    Enhancing Endpoint Security with Windows LAPS and Intune 

    In the continuously shifting tactics in cybersecurity, some of the most significant breaches originate from endpoints, making it essential for small to medium enterprises (SMEs) to strengthen their endpoint protection. There is no doubt that using Windows Local Administrator Password Solution (LAPS) together with Microsoft Intune is one of the…

  • Fuzzing Open Source Applications

    Fuzzing Open Source Applications

    Introduction Fuzzing is an automated software testing technique used primarily to uncover bugs and security vulnerabilities in software. It involves generating many genuine, random, semi-random and faulty inputs to a software program to crash or behave unexpectedly. Here are few key aspects of fuzzing: Types of Fuzzing: AFL++ AFL++ (American…

  • A brief history of cybersecurity

    A brief history of cybersecurity

    The history of cybersecurity is a fascinating journey that reflects the ongoing battle between digital attackers and defenders. It traces back to the earliest attempts to safeguard digital systems from malicious intrusions. Over the decades, cybersecurity has evolved in tandem with advancements in technology and the emergence of new threats.…

  • Celebrating Twenty-Five Years of Open Source

    Celebrating Twenty-Five Years of Open Source

    Open-source software has revolutionized the tech industry in many ways, and one of its most significant impacts has been in the field of cybersecurity. Over the past 25 years, open source has provided organizations with powerful, flexible, and cost-effective solutions for protecting their networks, data, and applications. As we look…

  • PKI Infrastructure

    PKI Infrastructure

    Public Key Infrastructure (PKI) is a system of technologies and protocols that enables secure communication and digital identity verification by using digital certificates and cryptographic keys. What is PKI Infrastructure? PKI, which stands for Public Key Infrastructure, is a comprehensive framework of policies, processes, technologies, and cryptographic techniques used to…

  • How can I recognize and prevent phishing?

    How can I recognize and prevent phishing?

    Phishing is a serious threat to the online security of individuals and organisations. It is important to know how to recognise and prevent phishing. In this post, I share some tips to protect yourself from phishing attacks.

  • Maximizing Security Awareness: Do’s, Don’ts & Key Takeaways

    Maximizing Security Awareness: Do’s, Don’ts & Key Takeaways

    Duolingo-Inspired Learning Model Safety Science Compliance Box Ticking Effectiveness: Key Factors Conclusion In Summary We hope you found these tips on enhancing your small business’s cybersecurity useful. However, our guidance can only get you so far – we’re ready to understand your unique challenges and insights to improve our services.

  • Unmasking the Hidden Risk: Protecting New Employees Against Cyber Threats

    Unmasking the Hidden Risk: Protecting New Employees Against Cyber Threats

    It’s an exciting moment when new talent joins the team, bringing fresh perspectives and diverse skills. However, this transition also comes with challenges, particularly when it comes to cybersecurity. One of the primary risks that new hires face is susceptibility to cyber attacks, especially phishing attacks. Why New Employees are…

  • The Human Firewall: Rethinking Security Awareness and Training

    The Human Firewall: Rethinking Security Awareness and Training

    Cybersecurity awareness has become a significant concern for organizations worldwide as cyber-attacks continue to increase in frequency and sophistication. In a recent LinkedIn post, we shared a link to a video by Wallmart CISO, Ira Winkler, author of ‘Security Awareness for Dummies’ and ‘You Can Stop Stupid’, where he offers a fresh…

  • Overview of the Threat Landscape over the Last 6 Months in Europe

    Overview of the Threat Landscape over the Last 6 Months in Europe

    European nations cannot take the ongoing Russian-Ukrainian conflict lightly because both these countries are adept at fighting cyber wars. So, the cyber threat landscape will remain gloomy for Europe and globally until hostilities cease. Let’s see how the recent developments have impacted the threat landscape over the last six months…

  • Why Should You Be Switching To A Career In Cyber Security

    Why Should You Be Switching To A Career In Cyber Security

    In today’s fast-paced digital world, cybersecurity is a crucial aspect of any organization or individual’s online activities. With the rise of cyber threats such as hacking, phishing, and ransomware attacks, the demand for cybersecurity professionals has increased significantly. This has led many individuals to consider switching careers to cybersecurity. If…

  • Nine Security Tips for Your Office 365 Environment

    Nine Security Tips for Your Office 365 Environment

    Ensure all accounts enable Multi-Factor Authentication (MFA) Not requiring Multi-Factor Authentication (MFA) in your company is like not requiring a password in 2010. Enable MFA for all user & administrative roles. Verify using command-line by using this great PowerShell script. If you’re company has more that 5 global admins then…

  • E-mail scam targeting Gmail, Hotmail and Outlook

    E-mail scam targeting Gmail, Hotmail and Outlook

    In the recent couple of days/weeks, we have been noticing a lot more spam e-mails targeting Gmail, Outlook and Hotmail addresses. We received multiple messages a day. The spam collection mailboxes across different public domains (mainly Gmail, Hotmail, Outlook, …) all got heavily targeted, 5+ emails a day, with 100+…

  • Cybersecurity Awareness: Helping C-Suite Take A Proactive Cybersecurity Approach

    Cybersecurity Awareness: Helping C-Suite Take A Proactive Cybersecurity Approach

    The first and vital element to preventing cyber-attacks is training your employees. Since employees form the backbone of your business, investing in cybersecurity awareness will bring immense benefits. Read on to know more. Cybersecurity is the searing subject of every industry since the elevation of data breaches, malware, ransomware, and…

  • Improve Your Security Monitoring Capabilities with SecurityOnion

    Improve Your Security Monitoring Capabilities with SecurityOnion

    Anyone can start to build their own SIEM solution for free with SecurityOnion. While it is possible to run individual tooling and connect them together manually, SecurityOnion gives you an integrated tooling environment to quickly cover your bases and start hunting for possible threats. Due to the full package of…