The Cybersecurity Maturity Model provides a way for organisations to assess their cyber security processes and capabilities with a focus on defending against Advanced Persistent Threat actors. The Cybersecurity Maturity Model Certification (CMMC) was developed by Carnegie Mellon and Johns Hopkins at the request of the US Department of Defence and was launched in March […]
What is the Cybersecurity Maturity Model? Read More »
35 billion, that’s billion with a B – IoT devices are using flawed hardware and copied reference code that leaves their security vulnerable according to a presentation at this month’s Def Con security conference. Cryptography relies on using random numbers, yet computers are very poor at generating random numbers and so they rely on an
Billions of IoT devices have vulnerable crypto Read More »
The world has changed, and the CIS Controls have evolved to reflect those changes. The increased use of cloud computing, remote working, virtualisation, and outsourcing have all redefined and blurred the edges of the corporate network. The latest version 8 of the CIS Controls provides a practical framework for organisations of all sizes to identify
What’s new in CIS Controls v8? Read More »
Understanding the principles of Zero Trust Security will help Security and Network Managers evolve their network design to better defend against new and emerging cyber security threats and increased remote working. To understand and appreciate the benefits of the Zero Trust approach, we need to consider the limitations of more traditional network designs that Zero
What is Zero Trust Security? Read More »
Quantum Computing may sound like science fiction, but this week Google announced their plan to build a ‘useful’ quantum computer by 2029. So how do Quantum Computers work, and why should they be on the radar of Security Managers today? Selecting keys and Moore’s Law Before we dive into Quantum Computers, we need to
Does Quantum Computing Matter Today? Read More »
A report from PaloAlto Networks coins a new security metric: Mean Time to Inventory in order to highlight the incredible speed with which attackers are now targeting new vulnerabilities as soon as they are publicly disclosed. The report is based on three month’s monitoring of 50 million IP addresses owned by global enterprises in order
What is Mean Time To Inventory? Read More »
Today is World Password Day – the annual reminder to review your password hygiene and consider how to improve the strength and security of your passwords. Here are our top tips to improve your password security – at home and at work. Bill Gates predicted the demise of the password back in 2004 saying: There
Top tips for World Password Day 2021 Read More »
Recent high-profile security incidents, such as the compromises at SolarWinds and CodeCov and the vulnerabilities in Microsoft Exchange Server, have drawn attention to the risks posed by the software we invite into the heart of our networks and often trust implicitly. The processes and procedures for identifying and mitigating the risks posed by these third-party
What is Cyber Supply Chain Risk Management? Read More »
An unauthorised change to a script used by Codecov customers to upload software test results has stolen the credentials and API tokens for thousands of organisation’s development environments. Codecov is a tool used to track what percentage of an application’s source code has been exercised during software testing. To do this, it is integrated into the
Compromise of Codecov dev tools affects thousands of customers Read More »
As security professionals our job is to safeguard the Confidentiality, Integrity and Availability of the information and assets placed in our care. A Security Incident is anything that happens which places one or more of those aspects at risk. This usually will be as the result of a malicious act such as an attempted network
What is a Security Incident Response Plan? Read More »
SecureTeam Ltd,
Kemp House, 152 City Road,
London,
EC1V 2NX
10257784
GB 249480968
SecureTeam Ltd, Kemp House, 152 City Road,
London, EC1V 2NX
Mon – Fri: 09:00 – 17:00
Company Number: 10257784
VAT Registration No: GB 249480968
© SecureTeam 2023. All rights reserved.