Defense in Depth
Food for thought on the public holiday in Germany: What is defense in depth and why should you consider it?
-
-
Attack on GSM-R
Cables for GSM-R were intentionally cut this morning in northern Germany. This is a very serious incident and has to be carefully investigated with regard to the motivation of the attackers. Link to article of German newspaper “Die Zeit” (08.10.2022)
-
What is a vulnerability?
Security basics: What is a vulnerability?
-
What is an exploit?
👩🎓 Learn another security term this Wednesday: What is an exploit?
-
New MS Exchange Zero-day vulnerability
New MS Exchange zero-day: https://www.bsi.bund.de/SharedDocs/Cybersicherheitswarnungen/DE/2022/2022-258168-1032.html
-
Document classification
Do you classify your documents? Here’s what you should consider!
-
Assetmanagement
How well do you know your IT? Learn which questions to ask!
-
Attack via public links
This is actually a very interesting attack vector described in this post:As an attacker place a Google Ad for a keyword, which will be mapped to accidentally pasted unprotected Dropbox links (I’m sure, this will also work with other cloud providers) and see what you will get… LinkedIn Post
-
2FA phishing
A new hashtag#attack technique on the rise: 2FA phishing.Learn how it works: How do attackers try to get around multi-factor authentication? https://www.microsoft.com/en-us/security/blog/2022/07/12/from-cookie-theft-to-bec-attackers-use-aitm-phishing-sites-as-entry-point-to-further-financial-fraud
-