Blog

Nessus, Metasploit, Nmap, and others have released methods for detecting whether your systems are affected by the heartbleed OpenSSL vulnerability. The problem is, most of them have bugs themselves which lead to false negatives results, that is, a result which says a system is not vulnerable when in reality it is.

The ugly truth about SSL/TLS is that even with lots of clever cryptography being used, the current system we have for validating trust is based on often unknown third parties, with a single point of failure.

Alex Radford takes a pragmatic look at the requirements of risk assessment for information security. Here are 5 tips for making it work for you.

CNS Group has created a new Partner Programme to help UK based VARs, VADs, Systems Integrations, ISPs and Hosting/ Datacentre providers access Cyber Security skills on behalf of their customers.

What is a Botnet ?

Recently a blog post appeared on http://doctorbeet.blogspot.co.uk . This blog which includes some compelling evidence, explains that an LG Smart TV was sending back data to LG.

We have been picking some interesting traffic up on the Hut3 Cyber Intelligence Network today, in fact it's still occurring now. It's a sustained attack from two IP Addresses that has so far lasted around 24 hours and is causing all the sensors to go off the "scale" so to speak with attacks on each of the affected nodes registering an average of 1 attack every 2 seconds.

Payment Card Industry (PCI) projects, perhaps even more than other compliance driven projects, have a propensity to get 'stuck'. Despite a lot of effort, investment and good intentions, the project never quite gets across the line to compliance. Why is this? And what can be done?

Security Chapter - 26th Sept - Slides now available.

CNS Group are today attending and presenting at the Securing the Law Firm event at the Marriot in Grosvenor Square. The event promises to be very interesting with a number of highly topical subject being raised.