Monthly Archives: July 2018

Ten practices to promote forensic readiness

Forensic readiness (FR) is a useful concept that is encountered a great deal in public sector information security, but not so much in the private sector. I’ve enjoyed working with FR policies, and you can too, with the right preparation and direction of travel.

PowerShell Threats Grow Further and Operate in Plain Sight — Symantec Malicious PowerShell attacks increased by 661 percent from the last half of 2017 to the first half of 2018, and doubled from the first quarter to the second of 2018. There are some good guides from the major security vendors on the risks of PowerShell exploitation. No solution is complete, but some sensible steps… Read More »

Data sanitisation – protecting confidential data from recovery

Assets when they are reused or disposed of, must be subject to an appropriate sanitisation process to ensure confidential information cannot be recovered. Many organisations do not sanitise data storage before re-use internally. However, more worryingly, many organisations are not sanitising data storage media before devices are sold on, leaving them exposed to data theft,… Read More »