Subscribe to Email Updates

Author: Graham Cluley

Graham Cluley is an award-winning security blogger, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by companies such as Sophos, McAfee and Dr Solomon's. He has given talks about computer security for some of the world's largest companies, worked with law enforcement agencies on investigations into hacking groups, and regularly appears on TV and radio explaining computer security threats. Graham Cluley was inducted into the InfoSecurity Europe Hall of Fame in 2011, and was given an honorary mention in the "10 Greatest Britons in IT History" for his contribution as a leading authority in internet security.

All about Virtualization and Cloud Security | Recent Articles:

Don’t let your former IT staff sabotage your company

Dec 13 by Graham Cluley

A recent news story has brought to mind a threat which probably sends a shiver down the spine of many system administrators.

Read More

Five new malware programs are discovered every second

Dec 05 by Graham Cluley

The numbers are in, and they don’t look too good.

A new report from the respected independent testing agency AV-Test.org reveals some scary-sounding facts about the state of malware today.

Read More

Domain name hijacking – what it is, and how you can stop your company being the next victim

Oct 14 by Graham Cluley

How do you think your customers would feel if they visited your business’s website one day and were greeted with an offensive image, malicious code, religious propaganda or a form designed to steal their passwords?

Read More

Shellshock two years on – has your company forgotten about it?

Oct 03 by Graham Cluley

It’s just over two years since a critical Shellshock vulnerability was uncovered.

Read More

Practical steps for strengthening your company's password rules

Aug 23 by Graham Cluley

Passwords are a perennial problem.

We rely so much on them to secure our company systems, our secrets, our customers’ private information… and yet we typically leave it in the hands of our users to choose their passwords safely.

Read More

How should businesses respond to the TechCrunch hack?

Jul 27 by Graham Cluley

If it can happen to a website as popular as TechCrunch, it might happen to you too.

Read More

CEO salaries should be linked to their firm’s cyber security, says UK parliament

Jun 22 by Graham Cluley

Should the salaries of CEOs be linked to how well their company has protected itself against security threats?

British MPs certainly seem to think so.

Read More

Aerospace firm loses $47 million in cyber fraud, fires CEO

May 27 by Graham Cluley

Have you trained your employees to be on the lookout for bogus emails?

I don’t mean the typical malicious emails that fill our inboxes every day, claiming to be phony fax machine notifications or bogus invoices.

Read More

Has Your Website Been Deleted? It May Not Be Hackers at Work… but a Blundering Web Host

Apr 19 by Graham Cluley

It’s one of the more famous quotes about computer programming:

To err is human, but to really foul things up requires a computer.

Read More

Microsoft Sneaks Nagging Windows 10 Ads into Critical Security Patch

Mar 11 by Graham Cluley

Microsoft really really wants your business to upgrade to Windows 10 as soon as possible.

In fact, they are so keen that your firm switches to Windows 10 that they’re sneaking adverts for the upgrade into security patches, and using some controversial tactics to encourage users into shaming their system administrators for not allowing the upgrade to happen.

Read More

The Simple Way to Stop your Business from Being Extorted by Ransomware

Feb 19 by Graham Cluley

Online extortion is on the rise.

Not only have recent months seen an increase in distributed denial-of-service attacks with demands that companies pay up to have their website returned to normal working order, and even the theft of confidential data with threats that it will be released to the public if financial demands are not met, but there has been a noticeable increase in ransomware attacks too.

Read More

eBay XSS Flaw: How Websites Might Help Criminals Phish Customers’ Passwords

Jan 13 by Graham Cluley

It’s 2016, and it would be nice to think that after several years of doing business online, companies have got a better handle on how to protect their websites from attacks.

I’m afraid I have depressing news for you.  Many sites are continuing to make big mistakes.

Well-known threats like cross-site scripting (XSS) attacks continue to challenge many websites, including household names.

Take eBay, for instance.

Read More