Author Archives: Andrew Smith

About Andrew Smith

Andrew is a senior systems-engineer with over 20 years experience in corporate and small business environments. This includes consulting for large ICT service providers. He has supported systems at every level in the organization, including infrastructure, operating systems, applications, and perimeter protection. He also collaborates with software development teams on web, database, and infrastructure security. Andrew has co-founded multiple ICT businesses, where he advises on cybersecurity strategies and policies. Andrew has a 3-year National Diploma in Electronics (light current).

“Meltdown and Spectre” accessing information at will

Early in December 2017, 3 researchers from the Graz University of Technology in Austria wrote and verified a computer program to test a theory about the safeguards of how computer’s central processors protect access to privileged data stored in memory. Their goal was to bypass the processor’s hardware barrier and...

Humans under fire: Being attacked via Social Media

In previous blogs I discussed how educating users in a business environment would help improve cyber security for the company and empowering the users allows them to carry the awareness back home and further extend the corporate firewall. Hoaxes and chain letters are also a form of virus – they...

“IcedID”: New banking trojan horse detected

2017 has been a year characterised by several high profile cyber attacks through all sectors reaching many countries, some previously thought too low profile to be worth attacking. We have seen several ransomware attacks that have hit almost every country in the world. In September, IBM’s X-Force team identified a...

“Silence”: Banks under attack from new Trojan

In September 2017, Kaspersky Labs discovered a new trojan that targets financial institutions, mostly in Russia, but the trojan has also been found in organizations in Malaysia and Armenia. Attackers used a known, but still effective technique to raid the banks: Gain persistent access to the bank’s internal networks for...

Huge data breach hits South Africa

Data breaches around the world are a regular and increasing occurrence, but to many of us, it is simply just SEP (Somebody Else’s Problem). Until now. Troy Hunt, an Australian web security expert, was sent a massive dump of confidential information about what is arguably the entire population of South...

Wifi Security Broken

Wireless traffic on all wifi routers are protected by a security protocol. It started with WEP (Wireless Equivalent Privacy). It was a very simple protocol, and is easily recognised by its 10 or 26 hexadecimal digits. In 2003, it was announced that WEP had been superseded by an interim and...

Protecting against account compromise

In late September 2017, it was announced that one of the four largest auditing and consulting firms, Deloitte, was the victim of a successful cyber attack in which their internal email system was compromised and hackers accessed data from the platform. Deloitte, a UK based company founded in 1845, provides...

Popular computer cleaner hacked

CCleaner is a popular program that is used by millions of consumers to try and make their computers run faster.  It attempts to accomplish this by cleaning out remnants of uninstalled programs and by clearing certain temporary data of installed programs. It cleans out browser caches, cookies, histories, form data...

US Credit Monitoring Service Breached

U.S. based consumer credit reporting agency, Equifax Inc, (one of the three largest credit agencies) has fallen victim to a data breach in which personally identifiable information of at least 143 million U.S. citizens (almost half the U.S. population) has purportedly been stolen. The company allows you to check your...

The Workforce: a threat to security

According to a report recently released by security firm Netwrix, humans are still the single biggest threat to business security. The report highlights: “100% of government entities see their own employees as the biggest threat to security” The survey was conducted across 723 organizations in over 30 industries. Every year,...