The Tiberium blog

Recent events, threats, and all things cyber

Back Once Again header

Back Once Again

Those of you who have read more than one of these missives (thank you, thank you) may have noticed our fascination with the activities of the REvil ransomware group.  For those not up to speed, here is a REvil primer.  REvil (Ransomware Evil, see what they did there) is a Russian speaking cybercriminal gang that, as the name suggests, focus on encrypting, … Read more

on
Elastic fantastic

Elastic Fantastic

This week, Indonesia has had more than a few serious issues with its Cyber security.  After a month or so of communications and rectification, the Indonesian Government came clean, admitting that up to 13 Million records of travellers had been exposed to the public internet due to a poorly, or not at all, secured Elastic database, internet-facing, whoops.  The data exposed … Read more

on
Razor header image

Razor

It is always a bit of a shock when an easily exploitable way to gain SYSTEM or root-level privileges comes to light, especially for overworked, underpaid system administrators who have to get to work pronto before man+dog have a go.  And so our gast was flabbered this week by a Twitter post by ‘jonhat’ which showed that just by installing a … Read more

on
Poly blog post header

Poly

If you have been reading the security news, you will no doubt have seen the enormous crypto-asset heist from Chinese Blockchain outfit Poly. Initially relieving them of about $600 million worth of crypto goodies 2 weeks ago.  There have been many interesting reports of coins being returned, then not returned, reward and job offers. It … Read more

on
SOS header

SOS

Some of the unjustified and truly ancient at Tiberium HQ are so old that they know Morse Code. Several have actually passed tests in it and used it in either fear/anger or from the comfort of their floating Gin Palace.   Seems that Phishing/Hacking gangs or at least one of them have been using (amongst other techniques) none other than Morse Code to … Read more

on
Jitterbug header

Jitterbug

This week we are starting out with something unapologetically geeky, which shows a fresh attitude to platform development at Microsoft and if you are anything like us, has the capability of sending you down a rabbit hole for an afternoon at least.  This week Jonathan Norman, the vulnerability research lead for Microsoft Edge (we are still gruntled … Read more

on
Zero Trust header

Less Than Zero Trust

In this blog we talk about the concept of ‘Zero Trust’, what it is, why it is important and what it means for you.  Ours is an industry of buzzwords, hype, trend and quite often smoke and mirrors. Technologies come, usually in the form of some niche, initially expensive functionality. They enter the mainstream as the big … Read more

on
Header China Crisis - Christian

China Crisis – Christian 

This week has been fairly monumental in the somewhat shady world of Cyber Geopolitics. Can we get our heads around any of it? Let us see.   The UK, US and EU have accused China of being the initial party behind attacks on internet facing Microsoft Exchange servers which have affected 30,000 organisations globally.   In January this year, an alleged “Chinese-linked group (aka state … Read more

on
Microsoft Inspire Event

Microsoft Inspire 2021 – Highlights 

Last week saw the 2021 Microsoft Inspire conference, once more delivered virtually rather than in the decadent halls of Las Vegas.  Here we present our takeouts from the event in case you missed anything!  Hybrid Workforce   ‘Remote working’ is the new normal and is being redefined by Microsoft as having a Hybrid Workforce. Microsoft is supporting this transition … Read more

on