Discovering and Patching Vulnerabilities

Background Software is constantly changing. Application and package authors tweak and update existing code more or less continually to provide features, improvements, fixes and workarounds. Also, most software is constructed, at least in part, from third party or open source components or packages, such that large parts of the code are integrated by, but not [...]

2022-03-17T11:47:50+12:0017 March 2022|

Was Kaseya A Supply-Chain Attack, And Why Does It Matter?

If the Kaseya attack was a "supply-chain attack" in terms of the industry accepted definition then it is a stretch of that definition. The distinction is important, because software supply-chain compromises are harder for customers of software solutions to detect using usual defensive measures, and generally involve exploitation techniques that fall outside the scope of [...]

2021-08-11T09:46:09+12:0010 August 2021|

Cert NZ Quarterly Update Q1 2021

What's New? Cert NZ has released its first quarterly report for 2021. The Cert NZ reports provide an interesting snapshot of recent cyber security incidents reported by both individuals and organisations in New Zealand. The latest report shows that a total of 1,431 incident reports were made to CERT NZ in the first quarter of [...]

2021-06-19T08:32:45+12:008 June 2021|

Pen-testing: The What, Why and How

Online Security Online apps and tools have become an integral part of how we live and work. If you own or run one of these systems, you will be aware of the constant threat of a cyberattack, and the risks this poses to your business. If you use cloud services you should also be aware [...]

2021-03-24T14:10:10+12:0024 March 2021|

Spotting Covid-19 Scams

As you might expect, the bad guys are trying to use the global Covid-19 pandemic for malicious purposes.  The hunger for information, plus the disruption from half the world going into lock-down, perhaps combined with increased receptiveness to community support, all make this a pandemic rich and morally decrepit online hunting ground. The purpose of [...]

2020-03-30T10:43:58+12:0026 March 2020|

Safe Remote Working

Many of us are already working from home (WFH), to do whatever we can to "flatten the curve" and reduce the potential burden on our healthcare system for those who need it, and those who have to operate in it.  Even more people are likely to start working from home this week, as we head [...]

2020-03-24T10:28:01+12:0024 March 2020|

Free Tools for Working from Home

The Coronavirus/Covid-19 pandemic is causing ongoing global disruption, in addition to the obvious illness and loss of life in most corners of the globe. Many countries are at different levels of lock-down, supported by the requirement or strong advice to work from home (WFH) if you possibly can.  This is putting some strain on the [...]

2020-03-20T15:30:31+12:0020 March 2020|

phew and the Coronavirus, Covid-19

An altogether different type of virus Although we don’t like to appear alarmist, we are in the business of pre-empting and managing risk and so we prefer to be early and prepared, and to communicate well in advance of predictable scenarios. We are mindful of the potential disruptions that may be caused by the novel [...]

2020-03-12T16:39:03+12:0012 March 2020|

Antivirus – What’s the Deal?

What Is Antivirus? Antivirus software is a type of computer program designed to seek out and remove bad software and exploits like viruses, worms and spyware that can infect your computer. These threats are more generally referred to as "malware", and antivirus is therefore often called "antimalware". Malware is dangerous because it can easily allow [...]

2020-02-19T14:08:25+12:0019 February 2020|

What’s Happening in the World of Passwords

New Report LastPass have released their latest Global Password Security Report. The Report contains some great insights into employee password behaviour at over 47,000 businesses around the world. Password security has gained increased awareness over the last few years. However, the Report highlights that businesses still have a lot of work to do in the [...]

2019-11-27T12:38:31+12:0027 November 2019|
phew cyber security sorted

We’d love to hear from you