Insight

Earlier this year, the Gurus caught up with Ilona Simpson, CIO EMEA at Netskope, to talk all things wellbeing in cybersecurity for The Cyber Mindfulness Corner. What transpired during our short Infosecurity Europe interview was that Ilona had a wealth of valuable industry knowledge and insight to share. So, we caught up with Ilona again to discuss her journey to the top, diversity in cybersecurity, and banishing the boy's club. On Herself and Her Rise...

Brad Freeman, Director of Technology at SenseOn introduce himself as a security professional with both practical and leadership experience and outlined in his talk the importance of doing the SOC basics right, from a perspective of people and processes.   Brad began by discussing how in many cases, analysts want to deal with serious security investigations: Compromises, incidents, things generally going wrong. This is something that they can get on a regular basis at a large...

It’s rare for a young individual in high school to identify what they want to do for the rest of their life and then carry through with it without ever considering moving out of that field. Rewind to 2013—I’m in my 5th year of school, having passed my Scottish Highers and looking to University, alongside applying for some apprenticeships. I had my path laid out in my head, with an Arkwright scholarship with Heriot-Watt University....

The cybersecurity landscape is always changing, and women are increasingly being given a platform to break down barriers and advance in an area that has traditionally been dominated by men. Organisations like CyberWomen@Warwick, and by extension, CyberWomen Groups C.I.C., are assisting in this change and providing that platform to champion for women in cyber whilst paving the way for a brighter and better future. In this blog post, we'll explore what CyberWomen@Warwick does, delve into...

In an increasingly digital world, cybersecurity has become a critical aspect of our daily lives, with our personal information, financial data, and even national security at stake. However, as the field of cybersecurity continues to evolve, a glaring lack of diversity persists. The underrepresentation of certain groups, including women, minority communities, and individuals with diverse backgrounds, not only deprives the industry of valuable perspectives, innovative ideas and thought leadership, but also poses a significant risk...

Selecting the appropriate proxy provider can frequently appear as a challenging endeavor. The swift expansion of the data collection sector has birthed an extensive market brimming with contenders all vying to deliver high quality proxy services. However, determining the one that aligns with your needs and effectively comparing the various options can be puzzling. In this article, we're going to explore crucial aspects to keep in mind while choosing a proxy provider: Steer Clear of...

Cybercriminal tactics continue to grow in number and advance in ability; in response, many organisations have seen the need to reach a security posture where their teams can proactively combat threats.   Threat hunting plays a pivotal role in modern organisations' cybersecurity strategies. It involves actively searching for signs of advanced threats and vulnerabilities beyond passive defence mechanisms. The MITRE ATT&CK Framework is an industry-standard threat hunters can use to proactively ensure they have protection...

The landscape of ransomware has undergone rapid evolution, shifting from a relatively straightforward form of malicious software primarily affecting individual computer users, to a menacing enterprise-level threat that has inflicted substantial harm on various industries and government institutions. Ransomware attacks are strategically designed to either encrypt or delete critical data and system files, compelling organisations to meet the attackers’ financial demands. These assaults specifically focus on compromising data repositories, backup systems, and vital records that are essential...

Despite being widely used in Industrial Control Systems (ICS), Modbus has been recognised as an insecure protocol. Securing and attacking Modbus has therefore been a topic for years, and it was first in 2018 that the Modbus Security protocol (MSP) was published, nearly 40 years after the initial introduction of Modbus. This article will introduce some common Modbus reconnaissance attacks, as well as briefly discussing the impact of MSP on those attacks.   Modbus in...

The IT Security Guru caught up with Tarnveer Singh a CISO and finalist in the Security Serious Unsung Heroes Awards 2023 for his thoughts on how to get more professionals involved in the cybersecurity industry:   There are many ways we can inspire new cybersecurity professionals to join our industry. One way is to increase awareness about the importance of cybersecurity and its increasing demand. This can be done through educational programs at schools, colleges,...