WyzGuys Cybersecurity

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

FBI-CISA Joint Advisory on Compromise of Microsoft Exchange Server

Original release date: March 10, 2021

CISA and the Federal Bureau of Investigation (FBI) have released a Joint Cybersecurity Advisory (CSA) to address recently disclosed vulnerabilities in Microsoft Exchange Server. CISA and FBI assess that adversaries could exploit these vulnerabilities to compromise networks, steal ...

Continue Reading →

13
MAR

0

Share

critical infrastructure, cyberwar, ransomware, Weekend Update

China, cyber-espionage, ICS, SCADA, Zero Trust

Friday Phish Fry

Phishing Email Alerts

Catch of the Day: Domain Name Registration Phish

Chef’s Special: Intuit Phish

Examples of clever phish that made it past my spam filters and into my Inbox, or from clients, or reliable sources on the Internet.

I would be delighted to accept suspicious phishing examples from you. Please forward your email to phish@wyzguys.com.

My intention is to provide a warning, ...

Continue Reading →

12
MAR

0

Share

account hijacking, email, Friday Phish Fry, Phishing, social engineering

tax scam

Comments on the CySA CS0-002 Exam and PBQs

As an instructor for the CompTIA CySA+ CS0-002 exam, I like to receive feedback from students who have taken the test, and I collect those comments here, for other students to use a preparatory material. I have done this previously for the CISSP exam. This one is dedicated to the Cybersecurity Analyst certification.

First, there is a great CompTIA certification ...

Continue Reading →

9
MAR

4

Share

certification, education, training

Sunday Funnies – Politics

Continue Reading →

7
MAR

0

Share

Sunday Funnies

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Microsoft: SolarWinds Attack Took More Than 1,000 Engineers to Create

You may have missed this extremely interesting bit of data that ZDNet just published. “Microsoft reckons that the huge attack on security vendors and more took the combined power of at least 1,000 engineers to create.

“The months-long hacking campaign that affected US government agencies and cybersecurity vendors ...

Continue Reading →

6
MAR

0

Share

cybersecurity, law and policy, surveillance, Weekend Update

North Korea, SolarWinds

Friday Phish Fry

Phishing Email Alerts

Catch of the Day: PPC Fraud Phish

Chef’s Special: Domain Name Registration Scam Phish

Examples of clever phish that made it past my spam filters and into my Inbox, or from clients, or reliable sources on the Internet.

So many good phish this week. The nets have been empty with slim pickings for a while. Not this week, nets are full of phish. ...

Continue Reading →

5
MAR

0

Share

account hijacking, Friday Phish Fry, Phishing, social engineering

click-fraud

Guest Post – Four Tips to Help Keep You Safe and Secure Online

The world has evolved so much in the past few years. These changes are even more apparent in light of the Covid-19 pandemic, with people and businesses forced to adapt and move everything online, from office meetings to grocery shopping.

Need to buy a pair of jeans? Ran out of groceries for the week? Craving your favorite food? All of these ...

Continue Reading →

2
MAR

0

Share

cybersecurity, multi-factor authentication, passwords

Sunday Funnies – Pandemic

First – some good news from the Smithsonian. World’s Second-Oldest Person Recovers From Covid-19 in Time for 117th Birthday

Working from home?

Continue Reading →

28
FEB

0

Share

cybersecurity, Sunday Funnies

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Much of this content is from Bruce Schneier

Cell Phone Location Privacy

We all know that our cell phones constantly give our location away to our mobile network operators; that’s how they work. A group of researchers has figured out a way to fix that. “Pretty Good Phone Privacy” (PGPP) protects both user identity ...

Continue Reading →

27
FEB

0

Share

Android, Apple, privacy, social engineering, Weekend Update

location