The offline way to online safety

It seems the majority of Internet users in the UK aren’t ‘safety-aware’. According to a survey carried out by GetSafeOnline and the the BBC less than half the respondents believe that they are ‘primarily responsible’ for their online safety.

This is worrying. More and more of us bank online, pay bills online, and network online. Increased Internet usage brings an increased need to safeguard our online identity.

On the other hand, it’s not users who bear sole responsibility. Sadly, the use of one-time passwords and two-factor authentication aren’t standard across the banking community. And online stores that routinely send email confirmation of a customer’s chosen password in plain text is far from helpful (this has happened to me on several occasions and in each case, when I’ve challenged it, I’ve been told that it’s ‘standard practice’).

This survey makes me think we’re not getting the security message out to those who need it. There’s lots of great information out there, including at GetSafeOnline. But you have to know where (and how) to find it, not an easy task for an inexperienced user.

Maybe it’s time to shift the online security message into the offline world. For instance, a series of TV ads, like those used in anti drink driving and anti drugs campaigns. Print ads might also play a part – as security experts, we sometimes forget that people do still read newspapers. I’m sure a series of adverts like this would have more impact than just detailed sites which the target audience can’t, unfortunately, find.

The offline way to online safety

Your email address will not be published.



The SessionManager IIS backdoor

In early 2022, we investigated an IIS backdoor called SessionManager. It has been used against NGOs, government, military and industrial organizations in Africa, South America, Asia, Europe, Russia and the Middle East.

APT ToddyCat

ToddyCat is a relatively new APT actor responsible for multiple sets of attacks against high-profile entities in Europe and Asia. Its main distinctive signs are two formerly unknown tools that we call ‘Samurai backdoor’ and ‘Ninja Trojan’.

WinDealer dealing on the side

We have discovered that malware dubbed WinDealer, spread by Chinese-speaking APT actor LuoYu, has an ability to perform intrusions through a man-on-the-side attack.

APT trends report Q1 2022

This is our latest summary of advanced persistent threat (APT) activity, focusing on events that we observed during Q1 2022.

Subscribe to our weekly e-mails

The hottest research right in your inbox