Silent Sabotage: How the Polyfill.io attack tanked website traffic

A recent supply chain attack crippled a significant portion of the internet, impacting an estimated 100,000 websites writes Cyber Security Technologist Chris McGee. It exploited the popular JavaScript library Polyfill.io, leaving thousands of unsuspecting websites vulnerable. Brief History Polyfill is a small piece of code that bridges the gap between modern web features and older …

Indelible Data webinar outlining major changes to Cyber Essentials

Indelible Data offers a range of packages for Cyber Essentials certification.   Cyber Essentials changed on January 24th when the National Cyber Security Centre introduced an updated set of requirements. Indelible Data’s Managing Director Tony Wilson contributed to the changes and leads regular webinars on the key changes. This update is the biggest overhaul of …

Changes to two-factor authentication

By Euan Henderson Cyber Security Apprentice Google has recently changed its default two-factor settings from SMS to device-based prompts. This change was implemented in July in the hope of preventing the exploits currently available, such as SIM cloning and social engineering, to gain access to the code. The change could minimise these attacks as it …

Is your Software a soft target?

By Euan Henderson Cyber Technologist Apprentice In February the NCSC published guidance on what both developers and consumers of software should focus on when implementing or buying a new product. It has produced a checklist for products to show they are resistant to elevated threats. This Blog focuses on the high level assurance principles, set …

UK Google data on the move

By Euan Henderson Cyber Security apprentice Earlier this year, Google released a statement outlining the company’s plan to move the data of UK users from its datacentres in the EU to the US. Services, including Gmail, YouTube and the Android Play store are likely to be affected and it is believed that this move is …

Lockdown started my first week in the job!

By Abbey Wright Business Administration apprentice Abbey Wright started work as a Business Administration apprentice the week lockdown was imposed. She met her work colleagues briefly in March and hasn’t seen them since. Here she talks about the challenges she’s facing. What’s it like working from home? It can be quite a struggle working from …

Are Office Macros posing an unnecessary threat?

By Euan Henderson Cyber security Apprentice The NCSC has released new advice for Macros. Last year it was reported that nearly half of detected malware deliveries were due to Office Macros. The guidance offered, advises that organisations begin to implement controls that are designed to mitigate risk posed by Macros. On MacOS, it is recommended …