CIPHER Blog

Welcome to our Blog!

Does your IR plan lead you in every direction but the right one?

Does your IR plan lead you in every direction but the right one? Stop what you are doing. Pull out your written Incident Response plan (if you have one at all). Now, think about this. When is the last time it was physically touched? Is it actually, literally, dusty?...

read more

Keep Your Kids Safe on the Internet

Technology is something taken for granted by kids. The so called Millenial Generation was born inserted in a world where portable multimedia communication is common sense. Ask any teenager if they can imagine a world without social networks, apps, tablets or...

read more

(Don’t) Enter Your Password

Social networks, email, online shopping, cloud storage, both in the corporate and private world, there are many services used daily that request logins and passwords for access, and in most cases, users opt for the convenience of using the same data. In recent years,...

read more

SWIFT Hack

You may have seen in the media over the last couple of weeks’ references to hacks and the SWIFT financial network. So for those of you not overly familiar with banking and finance, what is SWIFT and why should it concern you? SWIFT, or to give it its full title, the...

read more

PCI DSS 3.2 – What are the changes?

Overview It has certainly been a busy time for the PCI Security Standards Council over the last year with the release of version 3.1 and now the draft release of version 3.2 of PCI DSS. This is no bad thing as it shows that the PCI Council is adapting its approach to...

read more

D.R.O.W.N. – Another day, another new vulnerability…

For those that may not have seen the news, there is a new HTTPS weakness known as DROWN. DROWN stands for Decrypting RSA with Obsolete and Weakened eNcryption and is a new attack that affects HTTPS and other services that rely on SSL and TLS, and allows an attacker to...

read more

PCI DSS v1.1 – it’s great isn’t it?

If your business is involved with taking credit card payments then you will be familiar with PCI DSS ( if not, where have you been? ). Now, much has been written about the Standard and whether it has worked, whether it is a good thing and whether it is worth the...

read more

Defense-In-Depth

Hmmm. Defense-in-Depth …where do we start? How about with the good old castle defence analogy? David, Brian K., THE OBSERVER’S BOOK OF CASTLES, 1979: ‘Wall tower, barbican and gatehouse enabled the defenders of a castle to keep the enemy at a distance – so long as he...

read more