XSS TO SHELL

ZERO-DAY ADVENTURES – UNKNOWN UNTIL WE FOUND THEM For the astute among you, you’ll notice that the chaining of these types of exploits has been seen/used often enough, but the implications thereof are often overlooked. In this write-up we delve a little deeper into a real life example of how we uncovered three zero-days in […]

Continue Reading

Introducing Raymond Du Plessis: Senior Managing Consultant

    BACKGROUND Raymond du Plessis is based in Mobius’ Johannesburg office, and although he is well travelled, Johannesburg is still his favorite place to be. He began his studies at the University of South Africa (UNISA) and he has gone on to complete vocational studies through professional bodies like ISACA and ISC. Raymond believes […]

Continue Reading

STRENGTH IN DIVERSITY WITH MOBIUS CONSULTING

    DIVERSITY IN LEADERSHIP AROUND THE WORLD A recent study by Boston Consulting Group showed that companies that value diversity amongst staff and senior management increased their revenue by 19%. The study found that “increasing the diversity of leadership teams leads to more and better innovation and improved financial performance.” It looked at 1700 […]

Continue Reading

HOW DO THE OUTCOMES OF THIRD PARTY RISK MANAGEMENT INCREASE REGULATORY COMPLIANCE IN SOUTH AFRICA?

    WHAT ARE THE COMPLIANCE DRIVERS FOR THIRD PARTY RISK MANAGEMENT IN SOUTH AFRICA   The world has officially arrived in the age of information, with an ever-increasing amount of company, client and customer data at our fingertips. The increasing amounts of available information raises the need for organisations to take more responsibility for […]

Continue Reading

INTRODUCING MALCOLM PARKER, SENIOR MANAGING CONSULTANT

  Malcolm Parker’s Global Experience Malcolm Parker began his career on a traditional chartered accountant route with articles at KPMG which is where he met Patrick Ryan and Lynn Martin. Quite early in his career he realised he was more passionate about IT than finance and switched to a career in IT auditing, advisory and […]

Continue Reading

INTRODUCING ROBERT LEN, LEAD SECURITY TESTER

Robert Len’s Background  Cape Town born, Robert Len has a Bachelor of Commerce, majoring in Information Systems. He also completed his MCSE and OSCP. Rob’s passion for information security has led him to pursue his masters in Computer Science, writing his thesis on in-browser crypto jacking.  Robert Len has specialised in information technology throughout his […]

Continue Reading

4 ESSENTIAL SECURITY PRINCIPLES TO CONSIDER WHEN MOVING TO THE CLOUD

With Raymond Du Plessis, Ekaterina Conradie and Sven Muller from Mobius Consulting.     Many large financial services companies with broad customer bases are moving to the cloud for improved accessibility, scalability, cost-effectiveness and new cloud based customer apps. However, this modernisation shift comes with its own set of challenges.  Mobius Consulting has worked closely […]

Continue Reading

COMMENCEMENT OF CERTAIN SECTIONS OF THE PROTECTION OF PERSONAL INFORMATION ACT, 2013 – 1 JULY 2020.

Critical Portions of the POPI Act are Scheduled to Commence   The Protection of Personal Information Act (POPIA) promotes the protection of personal information processed by public and private entities and seeks to ensure that the human right to privacy is upheld. We have noted in recent media releases that the Information Regulator has made […]

Continue Reading

5 STEPS TO CREATING A CYBER SECURITY INCIDENT RESPONSE FRAMEWORK

With Patrick Ryan, Amanda Hechter and Raymond du Plessis from Mobius Consulting        The NIST Cyber Security Incident Response Framework   Cyber security breaches should be taken as a “when” and not an “if” occurrence, especially given the rise in cyber attacks due to remote working. The wrong time to put your cyber security incident response plan in place is […]

Continue Reading

KNOW AND MANAGE YOUR APPLICATION RISKS DURING COVID-19

With Amanda Hechter and Raymond du Plessis from Mobius Consulting as well and Lee Bristow from Phinity Risk     Improve your Identity and Access Governance (IAG) & Assess your Application Security Risk     With COVID-19 catching much of the world off-guard, there has been a scramble for organisations to make key applications, such […]

Continue Reading
css.php