MFA: What it is and what it’s not

When a user ‘logs on’ to a system or application with a username and password, they are going through the process of authentication – literally verifying that the login is ‘authentic’. Unfortunately, an authentication system based on two pieces of text (username and password) is only as strong as the security of the pieces of…

Read more

Sudo Vulnerability found affecting

A vulnerability has been discovered in the Sudo linux utility that can allow any users (even those with relatively low privileges) so execute commants with root privileges – a simple and immediately ‘privilage escalation’. The most worrying thing is that this vulnerability is vintage, starting to appear in a version of sudo rolled out as…

Read more

Social Engineering Explained

Social engineering is the term used to describe manipulating others in to providing or doing things on your behalf.  In popular culture, it is most commonly associated with cyber criminals but in reality many of the techniques used are similar to those used by confidence artists (“con artists”) for decades. Given then the widespread use…

Read more