The Tiberium blog

Recent events, threats, and all things cyber

SOS header

SOS

Some of the unjustified and truly ancient at Tiberium HQ are so old that they know Morse Code. Several have actually passed tests in it and used it in either fear/anger or from the comfort of their floating Gin Palace.   Seems that Phishing/Hacking gangs or at least one of them have been using (amongst other techniques) none other than Morse Code to … Read more

on
Jitterbug header

Jitterbug

This week we are starting out with something unapologetically geeky, which shows a fresh attitude to platform development at Microsoft and if you are anything like us, has the capability of sending you down a rabbit hole for an afternoon at least.  This week Jonathan Norman, the vulnerability research lead for Microsoft Edge (we are still gruntled … Read more

on
Zero Trust header

Less Than Zero Trust

In this blog we talk about the concept of ‘Zero Trust’, what it is, why it is important and what it means for you.  Ours is an industry of buzzwords, hype, trend and quite often smoke and mirrors. Technologies come, usually in the form of some niche, initially expensive functionality. They enter the mainstream as the big … Read more

on
Header China Crisis - Christian

China Crisis – Christian 

This week has been fairly monumental in the somewhat shady world of Cyber Geopolitics. Can we get our heads around any of it? Let us see.   The UK, US and EU have accused China of being the initial party behind attacks on internet facing Microsoft Exchange servers which have affected 30,000 organisations globally.   In January this year, an alleged “Chinese-linked group (aka state … Read more

on
Microsoft Inspire Event

Microsoft Inspire 2021 – Highlights 

Last week saw the 2021 Microsoft Inspire conference, once more delivered virtually rather than in the decadent halls of Las Vegas.  Here we present our takeouts from the event in case you missed anything!  Hybrid Workforce   ‘Remote working’ is the new normal and is being redefined by Microsoft as having a Hybrid Workforce. Microsoft is supporting this transition … Read more

on
Ransomware header

Where Do You Go To My Lovely?

Way way back in (at least in cloud provider release schedule) time, four weeks ago, we discussed the amazing coincidence that the Conti (misspelt) crime gang, which had ransomwared the Irish Health Service (HSE), leading to massive disruption, hurting the weak and vulnerable and very possibly causing early deaths, had provided decryption keys for free, seemingly following direct intervention by … Read more

on

TAKE IT EASY

Last week has seen yet another dastardly and seemingly incredibly successful ransomware attack using a trusted supply chain as the vector.

on
Header post spOOL

spOOL

RCE on DC? Defender for Identity saves the day In this month’s ‘Patch Tuesday’ (so many bugs, so little time), Microsoft announced a patch for a critical remote code execution vulnerability (RCE) in the Windows Print Spooler CVE-20212-1675. Requiring local or remote access to the vulnerable host, Admin privileges were said to be potentially easily available, although … Read more

on

Biding My Time

When President Biden was asked this week whether he was prepared for his summit with his Russian counterpart (President Putin), he replied  “I’m always ready,”. As answers go, an interview winner for sure. It has been some time since the world of cyber security has been mentioned so publicly by the Capo dei capie, most … Read more

on