braedach.com - Always Learning

braedach.com - Always Learning

Microsoft Defender for Business

Microsoft Defender for Business

A relatively cheap (depending on your pricing plan) extended solution Go beyond traditional antivirus with enterprise-grade protection and vulnerability management for your Windows, macOS, iOS, and Android™ devices. Microsoft Defender for Business | Microsoft SecurityLearn about Microsoft Defender for Business, an endpoint security solution built to help protect small businesses against

Jpeg: New Attack vector

Jpeg: New Attack vector

This really is becoming a pain in the butt. Not only can't you trust the ads been served up by Googles Ad servers but now you have to think twice about looking at images on or from the internet. Probably why a lot of website images are ditching

Pearson hit by cyberattack

Pearson hit by cyberattack

These people obviously don't read. There was even recently a number of articles in relation to the amount of credentials stored within services like GitHub, GitLab and others. There was also a staggering amount of information released on the use of AI in software development that contained sensitive

Security Tools Alone Don't Protect You — Control Effectiveness Does

Security Tools Alone Don't Protect You — Control Effectiveness Does

I so like the title to this article. Having spent a considerable amount of money on updating my cybersecurity skills and continuing to practice my red, blue and purple skills, I whole heartedly agree with this article. Security Tools Alone Don’t Protect You — Control Effectiveness Does61% of orgs suffered

Browser Extensions Pose Critical Security Risk

Browser Extensions Pose Critical Security Risk

Banned. Need to look at this again with group policy. Browser extensions have become deeply embedded in employees' daily workflows, aiding tasks from grammar checking to discount hunting. Yet, their extensive permissions create significant security risks, largely unnoticed by IT and security teams. A new 2025 Enterprise Browser Extension

Australian Rocket launch delayed again

Australian Rocket launch delayed again

A bid to launch Australia's first home-grown rocket into orbit has been delayed for the second time this week, with the company behind the venture set to undertake a "full investigation" ‘A big bummer’: Launch of Australia’s first home-grown rocket delayed againGold Coast-based Gilmour Space

Hybrid threats targeting Australia

Hybrid threats targeting Australia

The following article is written by the Strategist which is ... is the commentary and analysis site of the Australian Strategic Policy Institute (ASPI), which is an independent, non-partisan think tank based in Canberra. ASPI is widely recognized for its contributions to public discussions on strategic policy issues in Australia and

LockBit ransomware gang hacked

LockBit ransomware gang hacked

Even hackers get hacked LockBit ransomware gang hacked, victim negotiations exposedThe LockBit ransomware gang has suffered a data breach after its dark web affiliate panels were defaced and replaced with a message linking to a MySQL database dump.BleepingComputerLawrence Abrams Furthermore, the phpMyAdmin SQL dump shows that the server was

Strong passwords aren't enough

Strong passwords aren't enough

Probably the best article I have read about this in a while Attackers aren’t always brute-forcing logins or guessing your dog’s birthday. They’re often bypassing the login altogether or tricking you into handing over access. So here are nine real threats that your perfect password won’t

Privacy Battle starts in Switzerland

Privacy Battle starts in Switzerland

Interesting Switzerland is on the verge of dramatically increasing surveillance requirements for VPNs, social networks and messaging apps. Are crypto projects at risk? The country’s reputation as a privacy haven has resulted in Switzerland becoming a hub for privacy projects establishing their foundations or development entities there, including Nym,

Pangolin - An all-in-one proxy

Pangolin - An all-in-one proxy

I am drooling but do I need it. It's a lot more than just a proxy. Pangolin is a self-hosted tunneled reverse proxy server with identity and access control, designed to securely expose private resources on distributed networks. Acting as a central hub, it connects isolated networks — even

Homepage - Indexing container

Homepage - Indexing container

My server is beginning to get overly complicated I already have setup the host to auto update with notifications. The docker containers also do the same thing via watchtower, also with notifications. The Proxmox server basically does the same thing I just have to read the emails and reboot the

Kali Linux update failures

Kali Linux update failures

Really They lost the key Kali Linux warns of update failures after losing repo signing key Offensive Security warned Kali Linux users to manually install a new Kali repository signing key to avoid experiencing update failures.BleepingComputerSergiu Gatlan The announcement comes after OffSec lost the old repo signing key (ED444FF07D8D0BF6)

Australian bank credentials traded online

Australian bank credentials traded online

Heads up. Although the numbers are small the fact is Australia is open for business, and it appears we are becoming a more targeted nation. We have slowly been moving up the list for months. Banking passwords stolen from Australians are being traded online by cybercriminals - ABC NewsThe banking

Windows - the inetpub folder

Windows - the inetpub folder

Don't delete it. It's part of the solution to CVE-2025-21204 With the release of the April 2025 cumulative update (KB5055523) for Windows 10 and higher, there is a new folder at the root of the system drive: C:\inetpub. Traditionally associated with IIS. This folder’s

Microsoft OneDrive - broken links

Microsoft OneDrive - broken links

Microsoft appears to be stuffing around with this problem for over a year and as of March of this year has made the problem significantly worse. I too am now affected and have resorted to using the mobile application to move files backwards and forwards between the folders I share

Three Reasons Why the Browser is Best for Stopping Phishing Attacks

Three Reasons Why the Browser is Best for Stopping Phishing Attacks

The following post appears to be a solution push, but it has some interesting ideas that I think are worth sharing. Three Reasons Why the Browser is Best for Stopping Phishing AttacksPhishing now causes most breaches + MFA kits bypass detection + browser-based tools offer real-time defense.The Hacker NewsThe Hacker News

Automotive Industry - Hackers targeting

Automotive Industry - Hackers targeting

That shiny new EV or Hybrid you're so proud of may make your life extremely complicated shortly. Security incidents affecting the automotive and mobility industries shot up nearly 50% in the first quarter of 2025 Some 63% of the 148 security incidents in the first quarter were straightforward

Google Spoofed DKIM Relay Attack

Google Spoofed DKIM Relay Attack

Clever buggers In a rather clever attack, hackers leveraged a weakness that allowed them to send a fake email that seemed delivered from Google’s systems, passing all verifications but pointing to a fraudulent page that collected logins Phishers abuse Google OAuth to spoof Google in DKIM replay attackIn a

Customers questioned top super fund about security weakness before cyberattacks

Customers questioned top super fund about security weakness before cyberattacks

What the hell is wrong with these people. Australia's biggest superannuation fund was questioned by its own clients about a security weakness in its accounts before cybercriminals stole hundreds of thousands of dollars in retirement savings. Two AustralianSuper customers have told the ABC they had asked for multi-factor

Windows Remote Desktop Protocol: Remote to Rogue

Windows Remote Desktop Protocol: Remote to Rogue

Whilst I was waiting to see if the improvement, I had made to my Windows 11 health script were working correctly and it was doing as I intended, I came across this nice little article. Windows Remote Desktop Protocol: Remote to Rogue | Google Cloud BlogA novel phishing campaign by Russia-nexus

The IP Address ownership Dilemma

The IP Address ownership Dilemma

This problem must be universal. If you own a good firewall (no that is not one from your ISP), and it has an egress firewall as well as the usual incoming firewall you may have wondered why certain communications are being blocked when the IP address is actually native to

Australian superannuation funds hit by cyber attacks, with members' money stolen

Australian superannuation funds hit by cyber attacks, with members' money stolen

Naomi's fund, AustralianSuper, has since released a statement saying all accounts are "secure" — even if fund members can't access their accounts or they're seeing a zero balance. Pretty hard to miss this in the news. ‘I can’t start at zero now’

CISA warns of Fast Flux DNS evasion

CISA warns of Fast Flux DNS evasion

Good luck with this one. The only way I can see you can defend against it is to have a firewall with an active security domain feed, backed up with a secure DNS system also vetting for said domains along with Suricata signatures looking for suspect communications in your network.

Wi-Fi 7 - a quick look

Wi-Fi 7 - a quick look

To upgrade or not to upgrade WiFi 7 vs WiFi 6 and 6E - Differences ExplainedShould you upgrade to WiFi 7 or is it better to wait? In this article we compare WiFi 7 vs WiFi 7 and WiFi 6E and explain the differencesLazyAdminRudy Mens The Wi-Fi 7 standard became