JUMPSEC UK
What a year 2020 has been. As we look ahead to 2021, we have been discussing our thoughts on what might lie ahead for the cyber security world. Ransomware & Insider Threats Ransomware will continue to be a significant threat throughout 2021. We will see increased targeting of larger organisations. As well as more creativity […]
Congratulations to Lenk from our Red Team. Lenk has passed the Offensive Security AWAE exam last week and earned the OSWE certification. Demonstrating Lenk is an Offensive Security Web Expert (OSWE). Lenk has put in many hours of hard work of study to complete the course and pass the OSWE exam. Demonstrating mastery in exploiting front-facing web […]
What is an Insider Threat? Have you ever considered what the people you trust are doing with their access to your systems, networks and data? You might have considered your top salesperson walking out of the door with their little black book, but the insider threat goes far beyond this. Insider threat can stem from […]
Zero Trust is simply a concept, a model which states that you really should not be trusting anyone or any device just because they reside on your network or within your perimeter. All networks should be considered untrusted and hostile, regardless of whether we are talking about a local network in a secure building or […]
JUMPSEC Security Operations Centre Managed Endpoint Detection and Response service is for businesses who require safe remote working. It is part of our broader JUMPSEC Security Operations Centre (SOC). It is not a standalone piece of software. But a service backed with our expert teams using JUMPSEC proprietary tools. To support organisations, maintain visibility over […]
With the recent state of the pandemic and constrained lock down, businesses will be looking to move, or will have just moved most, if not all their entire workforce to working from home. Here are some key areas we think businesses need to consider when setting up users to work from home, and what to […]
The National Cyber Security Centre (NCSC) has warned of a rapid increase of sophisticated attacks and suspicious processes running taking advantage of the confusion around COVID-19. Now more than ever you need to protect against phishing and Malware attacks. The concept of business as usual is being challenged, we need to quickly ascertain the new […]
Reflecting over the weekend on the Marriott data breach, we thought that it might be helpful to publish 7 things organisations can do to help keep attackers out of their network. While the list is by no means exhaustive, taking these steps will definitely improve your security posture. Use 2 factor authentication: Even if you’ve […]
EternalRocks, dubbed the DoomsDay Worm has been identified by Miroslav Stampar (creator of sqlmap). Unlike the much publicised WannaCry, EternalRocks does not contain a kill switch, and incorporates 7 of the exploits developed by the NSA, whereas WannaCry only utilised 2. EternalRocks attempts to masquerade as WannaCry, however it does not encrypt your files – […]
