News, discussion and expertise on IT Security and the biggest security risks in today’s organizations. Focused on Microsoft Windows and Active Directory Infrastructures we look to address the prevention of security breaches, ensuring regulatory compliance and responding to IT Emergencies.

IT Security

Comments Off on Why a decline for data breach costs is still not good enough

Why a decline for data breach costs is still not good enough

Why a decline for data breach costs is still not good enough

According to a recent study by international security research company, the Ponemon Institute, the average total cost of a data breach has declined by 10% globally. While it is encouraging to learn that global costs of data breaches have decreased, the fact remains that hugely disruptive data breaches are still happening alarmingly frequently all over … Continued

Comments Off on The convenience of single sign-on services (SSO) without compromising security

The convenience of single sign-on services (SSO) without compromising security

The convenience of single sign-on services (SSO) without compromising security

From an end user’s perspective, single sign on is a great idea. You log into one platform, which gives you access to multiple applications, programs and sites, with no need to log into each one individually. It’s convenient, quick and hassle free. But as of recent news, it’s also been proved to be a big … Continued

Comments Off on Orange Is The New Hack: Lessons from yet another ransomware attack

Orange Is The New Hack: Lessons from yet another ransomware attack

Orange Is The New Hack: Lessons from yet another ransomware attack

Post-production company, Larson Studios, which is responsible for hit Netflix shows such as Orange Is The New Black, is the latest victim of ransomware. Those responsible stole 10 episodes from the upcoming season five of the jail drama hit series and threatened to release them online unless a ransom was paid. When these demands were … Continued

Comments Off on Changing your password regularly makes you less safe, apparently

Changing your password regularly makes you less safe, apparently

Changing your password regularly makes you less safe, apparently

Here’s an interesting view. According to Paul Edmonds, head of tech at the National Cyber Crime Unit, changing your password regularly makes you less safe. Not more. That’s a surprising opinion given we’re always being told to change our passwords regularly to keep attackers at bay. It’s the equivalent of changing the locks. If a … Continued

, Comments Off on Credential Theft in Education. Protect your Institution against a Data Breach.

Credential Theft in Education. Protect your Institution against a Data Breach.

Credential Theft in Education. Protect your Institution against a Data Breach.

Cyber security news site, Dark Reading, recently reported on the news that millions of stolen and fake email credentials from across 300 of the largest universities in the US were available to buy on the Dark Web. The stolen and fake student, faculty and alumni access credentials are being offered to buyers for anywhere from … Continued

Comments Off on The misuse and compromise of any Active Directory users identity

The misuse and compromise of any Active Directory users identity

The misuse and compromise of any Active Directory users identity

Earlier this month, Dark Reading reported that Active Directory mis-management by administrators is currently exposing a whopping 90% of businesses to cyber breaches. The research made by Skyport concluded that should an administrator’s password become compromised, the “blast radius will reach nearly every system in the enterprise“. It’s true — an administrator’s password that falls into the … Continued

Comments Off on Safer Internet Day – why Microsoft’s assessment gives UK business something to worry about

Safer Internet Day – why Microsoft’s assessment gives UK business something to worry about

Safer Internet Day – why Microsoft’s assessment gives UK business something to worry about

Microsoft today named the UK as the best country in the world for online security. According to Microsoft’s Digital Civility Index, which measures the “extent of negative civil and personal safety interactions and their consequences”, British adults and children are the least likely out of 14 countries to encounter risk online. That proclamation may be … Continued

Comments Off on Protecting Windows Domain Logon Credentials

Protecting Windows Domain Logon Credentials

Protecting Windows Domain Logon Credentials

Windows domain passwords are not going away any time soon. It’s crucial for enterprises to start taking stock of their password threat exposure. 2016 saw a significant rise in worldwide breaches and data theft and by far the most common attack vendor is the theft of user credentials. Fully 91% of attacks begin with a phishing … Continued

, Comments Off on Spoiling some of Hollywood and TV’s finest hacking scenes

Spoiling some of Hollywood and TV’s finest hacking scenes

Spoiling some of Hollywood and TV’s finest hacking scenes

Have you ever been watching a hacking scene in a film and thought “that would never happen in real life?” or “that hack is way too far-fetched to be credible”? Whether it’s a scene where an attacker gains access to a complex network using the most ridiculously simple password they’ve stolen, or a scene where … Continued

, Comments Off on The Three hack. Take control to stop a breach using an employee login

The Three hack. Take control to stop a breach using an employee login

The Three hack. Take control to stop a breach using an employee login

UK telecoms company Three confirmed news of the security breach on Thursday, revealing that hackers accessed its systems using an employee login, potentially putting the personal data of six million customers at risk. This is the umpteenth time a major company has suffered a data breach as a result of an employee login falling into the wrong … Continued

Secured By miniOrange