What I’ve talked about above, is all prevention. However that doesn’t help you if you are staring at a monitor with a ransom demand on it. Let me give you a couple of examples of recently reported Ransomware incidents and how they were handled.

Bristol Airport recovers from Ransomware Incident

On the weekend of the 15th and 16th September, Bristol Airport suffered a Ransomware incident. This incident took their flight information screens off-line for much of the weekend. Luckily no other safety or flight systems were affected.

How did the authorities at Bristol Airport deal with Ransomware? They re-built the systems and restored backups. They did not pay the Ransom.

Scottish Brewery suffered a Ransomware incident from a job application.

In the last couple of weeks, the Arran Brewery in Scotland had all of it’s systems affected by Ransomware. They had been running a recruitment campaign, advertising for a role via their own website. The evil doers took that ad and posted it to some international recruitment websites. The brewery then started receiving several e-mails a day from interested candidates from all over the world. In among those e-mails the bad guys slipped in one with Ransomware. The CV got opened and their files got scrambled. Not only were their live files affected, but their recent backups were too. These were stored online, attached to their network. Their most recent offline backups were 90 days old.

How did the brewery deal with Ransomware? They also re-built their systems and restored what backups they had. In this case though, they did consider paying the (GBP) £9,600 ransom. They came to the determination that the value of the data they lost (90 days of sales data) was less than the cost of the Ransom demand. They also took into consideration that paying the Ransom does not guarantee they would get back their data.

The brewery then did something really sensible. They have kept a copy of the scrambled data.

Help may be available from the good guys.

There is a not-for-profit, freely available service called No More Ransom (https://www.nomoreransom.org). This is run by various Law Enforcement and Cyber Security firms around the world. They are constantly working on cracking the codes for the different Ransomware variants and enabling people to recover their data for free.

So the Arran Brewery is holding onto the scrambled data in the hope that someday they will be able to unscramble it.

So how should you deal with Ransomware?

Prevention is always better than a cure.

The first thing is to make sure you get your staff some security awareness training. This is something that I deliver. Details of the complete training is available here. We can do customised training to suit your organisation too. Call me on 087-436-2675 or e-mail on info@L2CyberSecurity.com to discuss your requirements.

Then ensure that you have your systems updated/patched regularly, have security appliances like Firewalls in place, Anti-Virus is generally helpful against malicious software and also you shouldn’t insert strange USB devices into your computers.

Finally, you should have a good data backup system in place. This can be a very simple set-up or more complicated depending on your business needs. Again, I offer advice and support on backup strategies and business continuity planning. I also have a commandment about backups.

That’s it! With all of the above in place, in the very unlikely event that you do subsequently suffer a Ransomware incident, you will be able to recover from it.

What if it would cost me less to pay the ransom?

This is a genuine struggle for a business owner, particularly small businesses. Recovering systems from a ransomware incident takes time, which costs money, and the business may be unable to operate while recovery is ongoing, so is not generating revenue. A good business continuity plan, should reduce such risks.

If you are tempted to pay, I just have two things I want you to consider:

1. There is no guarantee that you will get your data back. Figures vary wildly from 50% to 100% failure to recover data. If you pay and don’t get your data back, you will then have to pay the full cost of recovery anyway.
2. You are funding organised crime. You are paying criminals who not only do cyber crime, but human trafficking, drugs, weapons, etc. People think I am being jokey or have my tongue in cheek when I refer to Evil Doers. I’m not. This is an accurate description of these people. They! Are! Evil!

If you pay once, then the bad guys reckon you might pay again, so you will be a bigger target. My advice to deal with Ransomware is to implement preventative measures (call me on 087-436-2675 or e-mail info@L2CyberSecurity.com to have a no obligation chat) and never pay these evil doers.

What else do you need to consider?

Don’t forget that if the data that gets scrambled contains personal data, then you have a data breach on your hands, which may be notifiable under the new Data Protection Act 2018 which incorporates the General Data Protection Regulation (GDPR). I’ve a short video here:

Finally, if you do suffer a Ransomware incident, a crime has been committed, so please report it to local Law Enforcement. They may not be able to do much about it, but it needs to be reported for statistical purposes if nothing else. If it can be shown that Cyber crime is as big a problem, as I know it to be, then the more reports to Law Enforcement will mean they will get more resources to be able to tackle it’s root cause.

#LetsBeCarefulOutThere and #StaySafe

#SecuritySimplified #GDPR

The post How to deal with Ransomware. appeared first on L2 Cyber Security Solutions Ltd..

What caused these vulnerable shopping carts?

Basically the bad guys are sneaking in via plugins to the websites. It was very similar to how crypto-currency mining code infiltrated UK government websites earlier this year. In the case of the vulnerable shopping carts of Newegg, they plugged their nasty code into the “Feedify” plugin. This plugin is used to gather feedback from customers.

So when a customer browsed to the Newegg site, the webserver loads up the website. It then goes and brings in the code from the plugins. The Feedify plugin that was compromised gets loaded and the malicious code starts monitoring. It’s waiting for credit card information to be typed in. Once it gets that, it sends it off to the evil doers, a hacking group called Magecart. This code was used to compromise the “Inbenta” customer service plugin with Ticketmaster and the “Modernizr” plugin for BA.

So how can I protect my website from this?

Well, you’ll need your web-person to do a couple of things.

1. Define a Content Security Policy (CSP) for your website
2. Set-up Sub Resource Integrity (SRI) verification of your website plug-ins

CSP will basically state the trusted locations that your website can load plugins from, so make sure these are set for your own site and that of your payment provider.

SRI is where you generate a “hash” (a unique code based on the content of an item) for your plugins when you create the site. When the plugin gets loaded by the browser of a customer, the plugin gets re-hashed and if the value does not match the original hash, then it has been altered.

You can get more details on CSP and SRI from Scott Helme’s blog.

In the meantime, #LetsBeCarefulOutThere.

#SecuritySimplified

The post Vulnerable Shopping Carts lead to Credit Card breaches appeared first on L2 Cyber Security Solutions Ltd..

Basically the evil doers implanted malicious software on the Point of Sale (POS) terminals in the upmarket stores in the USA. For nearly a year (between May 2017 to March 2018) this malware was capturing customers credit/debit card details and passing this back to the bad guys. The crooks claimed to have gathered up to 5 million cards as a result of this hack and they have been selling off batches of them on the internet.

We are quite familiar with Chip & PIN usage in Ireland as we have had it for quite some time. This does offer a great deal of protection as your card information is stored in an encrypted form on the chip. However in the US, they are only at the early stages of rolling out Chip & PIN, so most people are still swiping their cards at the terminals. The magnetic stripes that are swiped do not have the data encrypted, and so the information can be accessed and passed on quite easily.

It’s not been revealed how the malicious software got onto their POS terminals, but it seems that the POS was compromised at all of their bricks and mortar stores in the US. Their online store was not affected.

Credit Card issuers are usually fairly good at detecting fraud by knowing their customers usual buying habits. So if somebody who usually spends €20-€50 on shopping items, suddenly attempts to buy high-end phones, tablets or televisions this should trigger an alert. However for the customers of Saks or Lord & Taylor, such behaviour is much less likely to trigger an alert. So the crooks might be able to make away with a lot of goodies as a result.

The parent group, HBC, needs to put in place better segmentation and monitoring on their network, so if one store gets compromised, the malicious software cannot find it’s way easily to another store. They should also apply Commandments 1 (automatic updates), 2 (anti-virus), 3 (firewall) and 9 (control use of USB sticks) to their POS network.

The post Posh POS was Compromised appeared first on L2 Cyber Security Solutions Ltd..

This security planner was created by the good folk of the Citizen Lab, an interdisciplinary group based at the Munk School of Global Affairs at the University of Toronto. It’s really, really, really easy to use and will guide you through everything from start to finish.

1. It starts by asking what you use to handle private data (Windows computer, iThing, e-mail, etc.)
2. Then it asks what are your concerns (getting hacked,  infected, etc.)
3. Finally it asks if there is any particular reason for your concern (you’re being harrassed or dealing with a current issue, etc.)
4. Then it will give you an action list, with individual help on each thing that it recommends you to do.

What I really appreciated was the first step it seems to give for everything … it’s to do with two-factor-authentication:

Regular readers of my blog/newsletter will know I’m always going on and on and on about this. I don’t repeat myself often, unless it’s for a really, really, really good reason and two-factor-authentication is one such reason. It really does help protect your online accounts and so, where available, please, please, please use it.

So, for those of you reading this now, go ahead and use this security planner to help protect youself.

And then, when you go visiting your family over the Christmas period, particularly the more mature members of your nearest and dearest, why not sit down with them, fire up this website on their computer/tablet/phone and go through this fairly painless, simple process to get themselves as protected as you are. They’ll thank you for it and so will Santa. ?

Happy Christmas! ?

The post Simple Security Planner tool for EVERYONE! appeared first on L2 Cyber Security Solutions Ltd..

What is DNS?

A Domain Name Service is the backbone of addressing, as every website is stored on a server located somewhere on the internet. Your favourite security website (www.L2CyberSecurity.com) is sitting on a server in Dublin. That server has an Internet address of 217.78.11.90. You don’t need to know that long-winded number. You just need to know the nice, friendly name L2CyberSecurity.com. When you type that address, or click a link to that address in your browser, your PC/Laptop will pass the friendly name to some DNS server (whichever one it is configured to use), that will then return the long-winded number to the browser, so off it goes to that server and dishes up the webpage to you.

How does the existing DNS fail to protect me?

If you currently use the DNS server that your provider gives you, or perhaps OpenDNS or Google’s DNS, then if you get infected with malicious software, this will probably try to “phone home”, i.e.- connect with a server controlled by the evil doers. It will look to connect to the server by referencing a friendly name (e.g.- www.scaryevilhackersoftware.co) and the usual DNS servers will resolve that to the bad guys server and facilitate the connection.

IT’S NOT THEIR FAULT! This is how the internet is supposed to work.

How does Quad9 protect me?

The good people over at IBM, the Packet Clearing House (PCH) and Global Cyber Alliance came together and set-up this global service. They have made it genuinely free to use, without any sneaky monitoring of what you do. When you have it set-up, Quad 9 will check a site you are trying to connect to against the IBM X-Force threat intelligence database of over 40 billion analysed web pages and images. it also uses feeds from 18 additional threat intelligence partners to block a large portion of the threats that present risk to end users and businesses alike. If the site you are trying to connect with is a known evil site, Quad9 will NOT resolve the friendly address to the long winded number. It will effectively return a “domain/site does not exist”.

That sounds great. How do I set it up?

For a business environment, please contact your IT Department or IT Service Provider. There could be internal DNS server dependencies which, if you implemented Quad9, might break an application. IT will need to make a determination on whether it can be implemented or not.

For home users, on the Quad 9 home page there are videos and instructions for configuring Mac and Windows desktops/laptops.

However, for the best possible coverage, I would recommend you have this setting applied to the router or modem that your service provider installed with your connection. It should be noted that some internet providers do not allow changes to be made to their router (Imagine and Sky are two examples). You may need to log a support request to have the change applied to your router.

If you are, or know somebody who is technically competent (and game-playing teenagers may not fit this criteria ?), the change is as easy as logging into the router and changing, whats called, the DHCP settings. Before anything is changed, you should make a note of what the current DNS settings are. Then all you have to do is change the primary DNS server to 9.9.9.9 (4 nines … Quad9 … get it now? ?). The secondary address can be set to whatever was previously the primary address. Be sure to save the setting and reboot the router.

When the router comes back up, any device that connects to it (laptop, desktop, tablet, phone, smart toaster, etc.) will receive the protection of Quad9 automatically.

If you have any connectivity issues after the change, then simply log back into the router and put back the DNS settings under DHCP that had been there before, save the setting and reboot the router again.

One thing I had concerns about was performance. I previously used Google’s DNS (8.8.8.8) which was always pretty responsive. So when I tested it’s performance against Quad9’s I found that Quad9 was generally faster than Google. They are improving the service all the time as demand increases, so it should always be very quick.

So for me it’s a ??.

The post Quad9 – Safer addressing on the internet appeared first on L2 Cyber Security Solutions Ltd..

Others are calling it NotPetya or Petna, because it is essentially a new form of Ransomware. Whatever it’s called, doesn’t matter except to journalists who need sexy headlines. This is a significant threat, particularly to businesses that have networks that span the globe. I’ll refer to it as Petya for the purpose of this post.

There is still a lot of uncertainty around this, with conflicting reports indicating it comes in via e-mail or that it worms its own way into people’s networks. The latter is probably the more correct in this case. However the vast majority of other Ransomware strains that are out there usually spread by e-mail. So, as always follow Commandment 5 and discard any email from strangers and be cautious of email from known sources.

There seems to be growing confidence that this emanated from an accounting application that is widely used in the Ukraine called MeDoc or M.E.Doc. It seems the creator of the application was compromised and the evil doers put the Ransomware into their application and then pushed it to all their customers via an automatic update.

Update as at 19:00 (IST) 28/06/2017: 

As we mentioned earlier, it now seems that Microsoft have confirmed that the M.E.Doc application, widely used in Ukraine, was the initial source of the outbreak.

There are now reports emerging that a Ukrainian Government website is delivering or attempting to deliver Petya Ransomware to any visitors to the site. This is known as a Watering hole attack. If this starts spreading to other sites, this would become much more serious. Follow us on either/both Facebook and Twitter to be kept up to date.

Should I be worried?

If you took action to protect yourself from WannaCry by patching all of your systems with the March updates from Microsoft, you are in pretty good shape. (Apologies for the tech-jargon in the next sentence – you might want to ask your IT provider about this) If the SMBv1 protocol (a means of accessing file shares across a network) through your firewalls has been closed or simply disabled any SMBv1 services running on your PC or servers, then it currently seems that Petya will not be able to get inside your network.

HOWEVER if you have ONE machine that has NOT been patched with the MARCH updates, then you may be at grave risk. This Petya strain of Ransomware, once it compromises a machine by exploiting the vulnerability patched in March, appears to use other methods to access the remaining machines within your network, even ones that are currently full patched.

So please, follow Commandment 1 and keep your machines fully patched as soon as is practical after the patches are released.

How do I know if I’m being affected?

If Petya gets into your machine, you may not immediately realise it, because the first thing it seems to do is schedule a reboot for 1 hour after it infects you. It is unclear as to whether it starts looking to reach other machines in your network at this time or after the reboot. I would suspect it probably would be trying to infect other machines in your network at this stage.

If your machine suddenly reboots without notice and starts up like this POWER OFF the machine immediately (pull the plug or press and hold the power button until it shuts down):

This screen is actually Petya scrambling your files. So the earlier you can stop the process by powering off, the more files that you will be able to recover.

I would also recommend that you immediately shut down all other machines that are on your network and seek technical support. By shutting down other machines that may be infected, but have not rebooted, you should not lose any of their data.

At this point you will need the assistance of your IT service provider to help recover the data.

I’m looking at this screen, what should I do?

First things first – DON’T PAY! I’m not just saying that because it’s not a good idea to fund criminals, but because YOU WON’T get your files back. This is a purely destructive form of Ransomware.

If you need advice or assistance, please do not hesitate to contact us by e-mail at support@L2CyberSecurity.com.

Keep an eye on our Facebook and Twitter for updates, as and when significant changes happen.

The post The latest Ransomware outbreak – Petya appeared first on L2 Cyber Security Solutions Ltd..

This story is going to disappear from the news headlines fairly quickly, as there is nothing massively new or worrying coming out for the moment, so we’ll probably be back to normal by next week.

What is Ransomware?

Ransomware has been around for a good few years. Earlier versions were fairly rudimentary, as they only prevented the victim from using their PC and were easily mitigated. The term itself comes from the techie habit to combining words and in this case it is a combination of Ransom Software.

It normally spreads by e-mail attachment/link or a poisoned web page/online ad. If you open the attachment or click on a poisoned ad, a little piece of computer code executes, which downloads the actual  ransom software from the internet. This software then generates an extremely complicated “key”, which is used to scramble the data contained in your files (documents, spreadsheets, photos, videos, databases, etc.). It will carry out the scrambling on any drive that the PC running it can see (so hard drives, network drives, external drives, USB sticks, cloud drives, etc.).

A screen is popped up advising the victim about what has happened and provides instructions for how they can pay the ransom in order to get the “key” to unlock and recover their scrambled files. In some cases the “key” is stored on the evil doers servers, so if the victim does pay, they will be given the key and will be able to get their files back. There may even be a helpdesk telephone number which you can call to get assistance on how you can pay. This is usually because not everyone knows how to go through the cumbersome process of acquiring BitCoin … “Ah here! WTF is BitCoin?” I hear you cry! ? Basically BitCoin is a virtual currency, which is untraceable and that’s why the bad guys like it.

If the victim does get their files back, there is a good chance that the crooks will leave behind a “present”, which will wait a few weeks, then execute on it’s own and scramble the files again. The victim paid once, so there is a good chance they will do it again. However there is also a high probability that paying the ransom won’t mean you get your data back, as you might never get the key from the bad guys.

So that’s a very brief outline of what Ransomware is. In the last 2 years, it has become extremely prevalent. Over 50% of evil email contains some form of Ransomware.

What was special about WannaCry?

What made WannaCry special was the fact that it spread all by itself. It did not require anybody to click on a link or open an attachment. This is what technical types call a “worm”. What it does is it finds a machine on the internet that has a specific vulnerability which it exploits and loads itself into that machine, scrambles the data and then looks for more machines to infect on the local network, as well as on the internet.

My most avid readers ? will remember back in a March post, I discussed the Microsoft Patch Tuesday was a double month, because there had been none in February. Then in an April post, we found out why there was secrecy around the previous month’s patching. The US’ National Security Agency (NSA) had their hacking toolkit released to the internet and Microsoft had spent February urgently patching vulnerabilities that the NSA toolkit exploited.

Which brings us neatly to WannaCry. The evil doers used one of the NSA tools to have their ransomware scan for machines that are vulnerable to a specific exploit and then infect any such machines it finds. Microsoft has issued the patch for this vulnerability in March however it was only issued for the versions of Windows that they still support (Windows Vista, 7, 8.1 and 10 as well as a bunch of server operating systems). Anybody running a Windows XP or 8.0 machine would be vulnerable. The British NHS still has a lot of Windows XP machines and these were the ones that got all of the attention when thousands of them became infected causing surgeries, diagnostic procedures and clinics to be cancelled as a result. In fairness to Microsoft they did subsequently release the patch for the unsupported versions of Windows, which will prevent this attack vector being used in future.

It started circulating on Friday 12th May, and by Saturday it was very widespread, so much so that it grabbed a lot of media attention. This is where it get my first problem – advice from newspaper “Tech” journalists. I’ll possibly get stick for this, but most of them are nothing more than shiny gadget reviewers. They don’t actually truly understand the underlying technology and just parrot “don’t click links”, “patch your software”, etc. While that is good advice, I then see them giving inaccurate reportage like “this was spread by somebody clicking on a link”. No it wasn’t! That’s not how a worm works!!! ? … On a related matter, which I think is hilarious … the shiny gadget reviewer on Ireland AM on TV3 gave better advice than any “Tech” journalist I’ve read this week. ?

My second problem was advice from “Experts” from larger cyber security firms. In the last few days I’ve heard two such experts (from different unnamed companies) say the same thing as the “Tech” journalists, except they made it worse by saying “this worm was spread by somebody opening an attachment.” THAT IS NOT HOW A WORM WORKS FFS!!! ?

My third problem is with technology vendors that try to capitalise on the fear, uncertainty and doubt (FUD) that was present in businesses across the globe on Monday morning. Coming out with nonsense like, “Our Whizz-Bang product will fully protect you from WannaCry.” as Mrs. Brown is known to say “That’s nice.” See below for some simple steps on how you can protect yourself, that is available for free and for nothing.

There are a lot of small to medium-sized, independent security consultancy firms out there that have been giving excellent, accurate and timely advice. These are the ones you should be listening too. They are staffed by people who actually truly know what is happening. I’d like to think I’m also in that category as I don’t state something unless I know it to be a fact. If I don’t know something, I will say so and will go and educate myself.

The spread of WannaCry was stanched by a Cyber Security blogger in the UK (@MalwareTechBlog) who discovered that if a certain internet domain name was registered and active, the worm would not carry out it’s scrambling and scanning function. This was a great help to the world, which has led the young man to be hounded by tabloid newspapers. There you go – no good deed goes unpunished. ?

There is one aspect about this, that I’ve only seen mentioned once. What if the culprits behind this didn’t use Ransomware as the payload? They used the NSA tools to scan the internet for the vulnerability that allowed them execute something on hundreds of thousands of PCs. They chose Ransomware, which kinda gets in your face when it has done it’s dirty deed. What if they chose keyloggers (software that logs all key presses – used for stealing passwords) or other surreptitious, stealthy, spying software? We might never have realised there was something afoot. ?

There’s talk that it was the North Korean’s what did it! Is that interesting? … Maybe. I would have thought they might have preferred the stealth route, but their leader might have had other ideas.

How do I protect myself?

This is the insanely easy bit, believe it or not. All you have to do is follow 4 of my 10 commandments:

• Commandment 1 Keep all software up-to-date with automatic patching/updating
• Commandment 2 Use and keep up-to-date Anti-Virus software
• Commandment 4 Take regular backups of all your data and test that you can restore.
• Commandment 5 Ignore email from strangers and be careful of email from friends, family, co-workers.

Do those few things and you shouldn’t have to pay any ransom to anybody, because if 1, 2 and 5 fail you (for whatever reason), then 4 will recover you. ?

Let’s be careful out there!

The post Do you WannaCry? I didn’t think so. appeared first on L2 Cyber Security Solutions Ltd..

Most of the big on-line services have this facility buried in their settings somewhere, but when you find them, they are really easy to go through and it can be an eye-opening exercise. I discovered on my personal GMail account, that a phone I had on loan while my own was off getting repaired was still an authorised device on my account. I wasn’t too concerned, because I myself had carried out a factory reset on that phone before I handed the loaner back in.

However, most people would not think to do such a thing and, while you would expect the repair shop to do it as part of their procedures, this does not necessarily make it happen … and I’m not talking about the small phone repair shops that are dotted about the place either. A friend got a loaner phone from one of the big mobile companies while her’s was sent for repair. She took a few photos one day and was browsing them that evening and she came across a few dozen photos of some people she did not recognise. She mentioned this to the shop when she collected her repaired phone. They apologised profusely, immediately did a factory reset on the loaner and showed her the completely empty device when it restarted. That was OK for her. But what about the previous user of the device. What if she knew even one of the people in those photos? What if the photos were embarrassing or worse … incriminating? 

Anyway, I’ve done a Billy Connolly and wandered wildly off-topic, so back to privacy check-ups.

You can do these all at once, if you want, or just take 2 minutes each day over the next few days and do a privacy check-up and security/account check-up on each account. I would also recommend you do this on a desktop/laptop, as the mobile apps may not have the full set of privacy settings to be checked. Finally don’t just be looking for authorised devices, keep an eye out for Apps which are authorised on your accounts, which you may no longer use. You should really remove their access.

GMail … has both privacy https://myaccount.google.com/privacy and security https://myaccount.google.com/security check-ups

LinkedIn … has privacy https://www.linkedin.com/psettings/privacy and account https://www.linkedin.com/psettings/account settings pages.

FaceBook … privacy https://www.facebook.com/settings?tab=privacy and security https://www.facebook.com/settings?tab=security

Twitter … Privacy https://twitter.com/settings/safety and account https://twitter.com/settings/account settings

Other online services that you use might have something similar. Just go into their settings and search for privacy and account or security tabs and simply go through each of them.

You might even pop a reminder into your calendar to come back in 6 months time and review these settings again because lets face it, something will have changed.

And hey … Let’s be careful out there.

The post Take a 2-Minute Privacy check-up. appeared first on L2 Cyber Security Solutions Ltd..

As I outlined here, if you are using on-line accounts for e-mail, social media, etc. then one of the strongest means of protecting yourself from the evil doers is to use, what is called, two factor authentication. If you are not doing this now, you really should be as it improves your protection massively.

Well, if they have your LinkedIn details, they may also have your mobile phone number (or they have it from other means). So as soon as they try to access your e-mail and a text message is sent to you from your e-mail provider, they follow it up immediately with a text from themselves to say somebody is trying to access your account and to reply to them with the 6 digit code that you just received. If you do this, they immediately access your account and lock you out of it. You can see how this works on this short video from Symantec.

1. Beware of unsolicited text messages
2. If unsure, check with your account provider
3. Password recovery text services never require a response via text or other e-mail

The post Protect your on-line accounts, but not with text messages. appeared first on L2 Cyber Security Solutions Ltd..

1. Thou shalt keep all of thy software and apps up-to-date with automatic updates.
2. Thou shalt have Anti-virus software installed, updated and active.
3. Thou shalt have a firewall in place on thine Desktop/Laptop as well as thine internet connection.
4. Thou shalt always backup thy data and regularly check its integrity.
5. Thou shalt cast aside e-mails from strangers and not open attachments/click links they may send you. (Corollary: Thou shalt never open an unexpected file/link from thine family, friends or colleagues)
6. Thou shalt encrypt all data stored on thine mobile devices.
7. Thou shalt use two factor authentication on any account that provides the facility.
8. Thou shalt never reveal thine password for any account to anyone.
9. Thou shalt never insert nor allow to be inserted, a USB memory stick that thy hath never had complete control of since it was removed from its packaging.
10. Thou shalt only use the official app store for apps.

For more information, please visit our website.

The post The Ten Commandments of Cyber Security appeared first on L2 Cyber Security Solutions Ltd..