cisa Archives - Code in Motion

Cyber 3-2-1: If cybersecurity was the music industry

Cyber 3-2-1: How attackers make a hit; IT service providers and consultants are top of the wrong charts, and the latest hit from CISA’s.

By Sam Glynn|2023-10-27T06:51:26+01:00October 27th, 2023|Categories: cybersecurity|Tags: cisa, cyber321, Microsoft, ransomware, risk management, service provider, supply chain risk, third party risk management|

Cyber 3-2-1: CISA launches ‘Secure Our World’, 730 job losses after a ransomware attack, and an Apple flaw is a good news story.

By Sam Glynn|2023-10-11T07:11:15+01:00September 29th, 2023|Categories: cybersecurity|Tags: accountability, board of directors, cisa, cost of attacks, cyber321, Multi-Factor Authentication, passwords, phishing, ransomware, senior executives, software updates, staff awareness|

Cyber 321: 22nd April 2022

Cyber 3-2-1: DeFi enabled the perfect crime, CISA discovered cyber sabotage tools aimed at US energy sector, and a reminder that we need to keep all software up to date, not just Windows. This week’s action: Tell your staff about the brands the bad guys love.

By Sam Glynn|2022-04-20T13:50:54+01:00April 22nd, 2022|Categories: cybersecurity|Tags: chrome, cisa, cryptocurrency, cyber321, linkedin, north korea, phishing, russia, software updates, staff training, ukraine|

Cyber 321: 25th February 2022

Cyber 3-2-1: Ireland’s NCSC issues an advisory, as warnings continue about the elevated threat of cyber attacks due to the ongoing crisis in Ukraine. Also this week, how blind faith in an IT system led to one of the largest miscarriages of justice in the UK, and why the phrase ‘Too big to fail’ may soon be joined by the phrase ‘Too big to understand’. This week’s action: Bí Ullamh: Consider the NCSC advisory’s recommendations.

By Sam Glynn|2022-02-24T17:58:50+00:00February 25th, 2022|Categories: cybersecurity|Tags: backups, cisa, cyber vitals checklist, cyber321, linkedin, Multi-Factor Authentication, ncsc, romance fraud, shodan, too big to understand, uk post office, ukraine|

Cyber 321: 12th November 2021

Cyber 3-2-1: How a social engineer beat £2m of security, why most critical vulnerabilities are not critical, and why you need to worry about disgruntled employees. This week’s action: When someone leaves, disable their access.

By Sam Glynn|2022-09-26T16:12:49+01:00November 12th, 2021|Categories: cybersecurity|Tags: cisa, cve, cvss, cyber321, irisscon, kev, ncsc, social engineering, survey|

Cyber 321: 17th September 2021

Cyber 3-2-1: Zero-day iPhone hack revealed, but the sky is not falling. Don’t worry about zero-days – Worry about 400-days. And finally, why you shouldn’t listen to me. This week’s action: Review how you are ensuring security updates get installed in a timely manner.

By Sam Glynn|2021-10-01T13:48:57+01:00September 17th, 2021|Categories: cybersecurity|Tags: cisa, cyber321, frameworks, iphone, patch management|

Cyber 321: 3rd September 2021

Cyber 3-2-1: Reliance on passwords has made it onto the cybersecurity naughty list; Cyber insurance is getting more expensive; Use of the cloud is not a guarantee of security; How to convert 21gb of data into 10 years of jail time. This week’s action: A checklist for working from home.

By Sam Glynn|2021-09-03T08:48:39+01:00September 3rd, 2021|Categories: cybersecurity|Tags: azure, cisa, cyber insurance, cyber321, remote working|