Our Blog

Interested in the latest developments in the security world, or just want to get a better understanding of our service lines then this is the place for you.
Secora Consulting’s blog is a mixture of news and developments in the security world and technical breakdowns of our services.
Bookmark this page to stay informed.

5 tips for a safe Black Friday

On the eve of the Black Friday Sales which will predominantly be conducted online this year due to the restrictions in place, we have decided to put together some easy to follow tips to help you shop securely online: Only shop on legitimate websites Cyber criminals can clone well known websites to trick consumers into believing they are shopping on a legitimate website. A fake website can appear…

November 26, 2020

More Zero-Day Vulnerabilities discovered in Chrome

In a recent blog post we discussed that Google had discovered a zero-day vulnerability in their Chrome browser which led to an update being issued for all users. Since then, Google has discovered and patched two more zero-day flaws discovered in the Chrome browser for desktop. These are the fourth and fifth actively exploited vulnerabilities addressed by the search giant in recent weeks. Unlike…

November 19, 2020

Common Web Application Vulnerabilities - Continued

A number of weeks ago, we discussed two severe but very common issues that we frequently encounter when performing web application penetration tests. Today, we’re going to be continuing this series by examining two further vulnerabilities that could negatively affect your web applications and discuss how you can easily remediate these issues. Cross-Site Request Forgery Commonly referred to in its…

November 13, 2020

New way to slip past firewalls disclosed

This week, privacy and security researcher Samy Kamkar has disclosed a new hacking technique which allows an attacker to trick Network Address Translation (NAT) devices such as routers / firewalls to provide remote access to services on victim machines not normally accessible via the internet. What is Network Address Translation (NAT)? Network Address Translation (NAT) is the process where a…

November 06, 2020

Why Credit Union's should secure their Web Application's

Throughout October, given it was European Cyber Security Month (ECSM) Secora Consulting provided guidance and advice on what organisations can do to improve their cyber security posture. Following on from that advice, in this feature, we take a closer look at common web application vulnerabilities we often encounter while testing Credit Union applications and what they mean. If your Credit Union…

November 03, 2020

New Zero-Day Vulnerability exposes Google Chrome browser

On the 21/10/2020, Google released a stable channel update of Google Chrome desktop to patch several high-risk security issues which have been uncovered. Included in the patch release was a zero-day vulnerability which could be exploited by an attacker to hijack targeted computers. Designation Threat Level Description CVE-2020-15999 High Heap buffer overflow in FreeType CVE-2020-16000 High…

October 22, 2020

5 reasons you should conduct a Cyber Security Risk Assessment

Whether you run a small business or a large multinational organisation, cyber security cannot be ignored. Conducting regular cyber security risk assessments will reduce your organization's likelihood of experiencing a data breach, it will also ensure the steps you are taking to reduce your exposure to a breach are effective. If you haven’t conducted a risk assessment lately, we have five reasons…

October 15, 2020

Common Web Application Vulnerabilities

With the advent of COVID-19, many businesses have had to hurriedly take their businesses online. According to the IE Domain Registry, registrations of .ie domains have jumped by 56% in Q2. With so many businesses embracing this new way of working, it is important to recognise the risks associated with operating your business online. Throughout October, given it is European Cyber Security Month…

October 08, 2020

Cyber Hygiene Basics

Last month, we published a blog post on the four main reasons to secure your website. This month, given it is European Cyber Security Month (ECSM) we’d like to focus on four simple tips that can help you improve your cyber hygiene. Cyber hygiene is a term that refers to improving your practices and technologies to stay safer online. With businesses growing their online presence, cyber hygiene is…

October 01, 2020

Secure your success.

Use a trusted security partner with experienced consultants, who want to ensure your long term success