Information security is a very broad field. It spans across misuse of enterprise information, disruption, unauthorised access, and covers both physical aspects of security as well as cyber security. Technologies used include endpoint protection and response (EDR), vulnerability management tools, and security information and event management (SIEM) tools.......
When we park or store our cars overnight, we often give thought to the valuable items, careful not to leave them in view or not in the car at all. But what if there was valuable extractable information stored within the car itself, giving rise to a potential attack surface vector that could fall into the hands of an opportune, patient or malicious actor.......
Just over 18 months ago, Cyber Security Associates Limited (CSA) took the decision to use the Microsoft Security stack tooling as the primary capability to provide 24/7 Monitoring, Detection and Response (MDR) services. Using Microsoft Sentinel as the main vehicle to correlate, analyse and identify potential and actual cyber security threats and incidents has enabled the CSA Security Operations Centre to accelerate its growth and capabilities......
Threat actors linked to the BlackCat ransomware have been seen using malvertising strategies to propagate malicious WinSCP installs. Threat actors are now creating fake domains to imitate legitimate businesses to further spread malicious software through a technique called malvertising......
Our reliance on mobile phones has soared to unprecedented heights. We entrust them with everything; from banking to booking holidays, because of this the amount of personal data they hold can be frightening. In this blog post the profound effects of an attack on our devices is explored. Fortunately, the rise of full device encryption offers a glimmer of hope.....
You may have heard the saying “A chain is only as strong as its weakest link”. Recent cyber security attacks have shown why this quote is relevant to all organisations that handle data. This article will highlight why third-party risk management is essential for your organisation’s cyber security.....
Cyber Security Associates has partnered with SentinelOne to provide clients with a fully managed service built upon the Singularity XDR platform. The SentinelOne Singularity security platform empowers SOC & IT Operations Teams with a more efficient way to protect information assets against today’s sophisticated threats......
Capita is a British multinational company that specializes in business process outsourcing and professional services. It is the largest such company in the UK, with a market share of over 29%. Capita has a wide range of clients, including central government, local government, and the private sector. It also has a property and infrastructure consultancy division.....
The modern day era is constantly changing and we are increasingly integrating technology into our everyday lives to make daily tasks more easier and time efficient. Gone are the days of manually typing website addresses into browsers, thanks to QR Codes a contactless solution....
It comes as no surprise that as artificial intelligence (AI) rapidly evolve and becomes more widely accepted in different business sectors; it has also unveiled a darker side, attracting cybercriminals to harness the power of AI in order to unleash a new wave of sophisticated cyber-attacks....
In recent years, the internet has become a hub for many activities, ranging from online shopping to social media platforms; it has also become a playground for cyber criminals who are always on the lookout for vulnerabilities to exploit....
In April 2023, a surge in the use of an outdated WordPress plugin called Eval PHP was reported by Sucuri, a website security firm. The plugin allows site administrators to embed PHP code on WordPress pages and posts and execute the code when the page is opened in the browser....
On the 31st of March at 2:00pm, The Times reporter, Katie Prescott, published an article speculating on fears the UK outsourcing company Capita had been hit by a cyber-attack. Capita had previously....
During the Covid-19 pandemic, TikTok quickly became one of the most popular social media platforms around the world as a video-sharing app that allows users to create and share short clips. The app has gained a massive user base, especially among the younger generation. However, with its rapid growth, there have been concerns regarding the app's privacy and security.....
An unidentified threat actor was identified by Menlo Labs using Discord to spread an evasive threat campaign that is targeting government institutions through the use of the PureCrypter downloader. The attack is performed through a secondary payload being sent by the PureCrypter campaign using the compromised domain of a non-profit business as a C2 (Command and Control) platform....
One of the most important tasks for an attacker using malware to successfully compromise a target, is how they plan to get the malware onto the device. Achieving this can be done in many ways, but one that has become increasingly popular is the use of google ads to trick victims into downloading malware in place of software that the victim is searching for....
Although the ongoing war between Russia and Ukraine is well known since the invasion in February 2022, the use of cyber warfare is still unknown to many. With the use....
The Founders of Cyber Security Associates (CSA), Dave Woodfine and James Griffiths recently joined members of BPE and other key stakeholders from the Gloucestershire cyber community to visit Tallinn in Estonia....
Although many users consider it safe to download applications from the Official Google Play Store, you could unknowingly be installing software that spies on you, bills you weekly or allows attackers to take remote control of your device....
“All the businesses shared a common trait: They all had value propositions that sounded like platitudes….Every one had a degree of arrogance in the, about changing the world, and none of them had real products aimed at real customers.”....
If Google Chrome is your browser of choice for shopping, your credit card data…
Conti are a ransomware group who have been hitting the headlines in recent months, but you might have heard of them before – they’ve been in the public eye since 2020....
The metaverse has been making headlines recently, with its promises of merging the digital and physical world. It’s something that sci-fi books and films have been promising for decades....
Although we’re already a quarter of the way through the year, the cyber security company Zscaler has recently published its Threatlabz 2022 Phishing Report, detailing some of the most commonly observed phishing campaign themes....
Most systems evolve over time, especially when it comes to subscriptions to services such as Microsoft 365 and Azure Active Directory. These often release new updates and features.....
Hear the phrase ‘Easter egg’, and we bet the first thing that pops into your head is a sweet treat. In the world of cyber security, though, an Easter egg could leave a bitter taste in your mouth....
Strong Customer Authentication (SCA) became compulsory for services taking all types of electronic payment transactions from the European Economic Area (EEA) on the 31st of December, 2020....
When it comes to the Lapsus$ hacking group’s recent breach of Okta, the access management software company, our ears have been to the ground and our eyes locked onto the headlines....
Internet of Things (IoT) devices have become ubiquitous in recent years - there are almost as many of them connected to the internet as there are people on the planet. In fact, research suggests that by 2025....
Late last year, the FBI issued a warning about the Cuba ransomware group. You may not have heard of them, but that doesn’t mean they shouldn’t be on your radar. In their warning, the FBI claimed that as....
Many businesses are looking to bolster their cyber defences at the moment, as a result of the uncertainty surrounding the conflict between Russia and Ukraine. With the heightened cyber threat, the National Cyber Security Centre....
In the UK, Critical National Infrastructure (CNI) is defined by the National Cyber Security Centre as ‘Those critical elements of Infrastructure (facilities, systems, sites, property, information, people, networks....
When the UK government announced all staff could return to offices on the 27th of January 2022, it became clear that remote and hybrid models of working had proved effective for many organisations - improved work-life balance....
In the world of phishing, there’s a new(ish) player in the game. A survey conducted by Ivanti revealed that in 2021, 57% of people surveyed claimed they were increasingly using QR codes each day. 87% of those asked also claimed....
A common misconception is that only Windows, macOS, and Linux computers need cyber security in 2022. Android and iOS malware exists, and its presence in the Western world is increasing each day. Today we'll be looking into the ‘BRATA’....
It’s well-known that Facebook is one of the biggest players in the Information and Big Data industry. If you have a Facebook account, then the company will certainly have been collecting data on you. What might surprise you....
The IoT, or Internet of Things, encompasses everything connected to the internet, but is increasingly used to describe objects that communicate with one another, from smartphones and smart watches....
The Cyber Essentials scheme provides business and organisations with a certification that assures customers and clients that they’re committed to cybersecurity, and guarding their data against the most common online threats....
Cyber Essentials is set to receive its biggest update yet soon, on 24th January 2022. The government-backed scheme, which is organised by the National Cyber Security Centre (NCSC), is a way for businesses to showcase....
On 24th January 2022, the newest requirements for the Cyber Essentials scheme will come into force, in the scheme’s biggest overhaul since its launch in 2014. Backed by the government and organised by the NCSC (National Cyber Security Centre), the scheme....
If you do business online, you’ll likely have already heard of Cyber Essentials. And, if you regularly read our blog then you will have already seen our first in a series taking a close look at the upcoming Cyber Essentials changes....
Since it launched back in 2014, Cyber Essentials has become the cyber security standard for companies and organisations to strive to. The government-backed scheme from the National Cyber Security Centre (NCSC) is the best way to....
SquirrelWaffle is known as a dropper malware, where it would be used to download additional and potentially more destructive malware onto the system. Extra efforts have been made by the threat actors to keep it hidden and difficult to analyse....
As the end of the year fast approaches, we wanted to share a little refresher on ways to ensure your technology and data remains as safe as possible over the festive period and well into 2022. To stay in the spirit of the season, we’ve opted....
Black Friday and Christmas are considered a blessing and a curse within the retail industry. It’s a time where retailers can expect to see a huge boom in sales as everyone makes a mad dash to take advantage of discounted prices and make sure....
During late September, the headlines were hit with the news of a vulnerability within Apple’s AirTag. Targeting good Samaritans and the curious by using Cross-Site Scripting (XSS), the vulnerability allows malicious actors to steal iCloud credentials and....
Cybercriminals don’t discriminate. It doesn’t matter how famous you are, if your information is vulnerable, then they will exploit it. And that’s exactly what the infamous Russian hacking group, Conti, has managed to do in their latest high-profile....
Following the global pandemic, the mass migration to remote working was a necessary move. As things have begun to return to the ‘new normal,’ however, we noticed that many sectors are planning to stick with remote and hybrid models of working....
The art world is known for being ahead of the curve, adopting new and interesting technologies to push the boundaries of what we define art to be. Currently, the hottest pieces to land in the art scene are non-fungible tokens....
Recently, an infamous threat actor group going by the name of TG1021 or Praying Mantis, has been caught targeting Microsoft IIS servers by exploiting vulnerabilities. In this blog, we’re taking a look at Sygnia’s Incident Response Team’s report....
The report from the ICO on the ‘surprising’ decline in personal data breaches has certainly opened up a topic of debate, which clearly leads us to think: is our cyber training and education really working?....
On 10th August 2021, Poly Network announced in a tweet that it had been attacked. Not only had their network been breached, but the hacker had transferred enormous sums to their addresses right under Poly Network’s nose...
According to a 2020 survey by Sophos, 51% of organisations were hit by Ransomware in the last year. The criminals succeeded in encrypting the data in 73% of these attacks. At CSA, we know that these criminals are security experts....
The mass migration to remote working as a result of the coronavirus pandemic has seen many organisations adopt new platforms and applications to remain connected and productive. One popular application is Microsoft M365 thanks to....
Since the initial Covid-19 outbreak, the nation’s workforce had to learn to quickly learn to adapt to the ever-changing rules and continuous lockdowns. The mass migration to remote working is something that had never been....
Whilst the world is currently preoccupied with public health, cyber attackers have taken advantage of the vulnerable position many home workers are in and set about releasing their own ‘cyber virus.’....
2023 Cyber Security Associates Ltd - All Rights Reserved | All Logos and Trademarks are © or ™ of there respective owners