More jobs for women cybersecurity professional due to COVID

There is a news report that says there are more women now employed to become cybersecurity professional thanks to COVID-19. According to the report given be IFsec global, 49% of women cybersecurity professionals says the pandemic has a positive impact to their careers whereas only 9% says it would have negatively impact.

Moreover, 89% of women who work in the industry think they have the job security and in fact many companies are still recruiting new members in their team.

30,000 Macs Are Infected by New Malware Researchers Said

Cyber security becomes a more serious issue today. With new work from home policies everywhere around the globe, cyber attackers are seeking every way to find their new preys.

Recently has reported by ZDnet, a new malware called Silver Sparrow targeted mainly Mac system was found by security researcher Red Canary and VMWare Carbon Black team. This new malware although doesn’t yet know its capabilities has already infected 29,139 MacOS with the span of 153 countries including the U.K, the U.S, Canada, France and Germany.

The experts said this new malware purposes is still yet to be discovered and the mainly concern is it can support the Apple new invention M1 chips.

Cybersecurity Concerns Rise as Employees Working From Home

Today it is not uncommon to see people work from home, as every one in the world observers social distancing, people use their own home computer to login company’s servers or have access to confidential documents without properly configured security codes are raising alarms in cyber security.

According to a news story published by BBC recently said “57% of IT decisions makers believed that remote workers would expose their firm to the risk of a data breach”. However many large companies have already in placed their own cyber security policies for example, issuing their employees a worked laptop computer with a better configured VPNs (network connections) so that they can get the job done easily and securely.

But for smaller companies they may have not done that due to resources limitations. The expert suggests the smaller companies should at least impose VPNs to their users to connect back to their offices servers so that confidential information such as product quotes, client sensitive information can be protected unlike a normal internet connection where a hacker can tap the wire into.

A solution to this problem is to continuing provide education to company staffs so that they can aware to the threat they face.

Live house data backup 再談

Live house 通常都會供樂隊或獨立音樂人去表演的,每次表演,也可能會被錄影,錄影後的片段放在呢?這個就是 live house 需要保護的資料了。談到資料保護,比較舊的方法就會會用上磁帶,每日,每週做 backup。不過隨著科技發展,現在也不一定用磁帶,反而會將一些資料轉移至雲端,利用例如,SFTP 這樣的命令做 backup rotation。

不過這樣備份計劃是否最好呢?做備份最怕就是所謂 single point failure,做遠程備份,不單只得一點,而是多點”failure“。最可能出現的錯誤,就是互聯網突然斷線,此外還有遠程機器『死機』,或硬碟問題不能做備份。不過就算做本機備份,也有『死機』,硬碟的問題,所以筆者認為除本機備份外,也要做遠程備份,這樣就萬無一失了!

Data backup and technical problems of Live house

Live house is basically a venue rental service. For managers, its information is the list of customers and attendees (viewers). These data can basically be recorded with an RDBMS or Excel. But with more and more data, backup is necessary, so how to back up?

If it is an Excel file, it is easiest to do it with a USB flash drive, but if it belongs to the website data, it can be backed up into a server file and then backed up by tape. Of course, if there is more data, you may need to use progressive backup to back up the updated data part. This method has the advantage of saving some backup resources.

Security issues

Network security is an indispensable subject for the development of the Internet. With the development of cloud computing, data and data security is necessary, so companies should use a more secure database connection method, that is, the database allows only certain IPs to enter, and you must be careful Handle vulnerabilities in phpMyadmin and database user settings. I have tried to break into the server illegally because the database has too many test accounts and does not properly manage user permissions, so I advise you to really be careful.





一講使用互聯網便會有網路保安問題。外在的網路保安可透過連接服務器的路由器作 IP 地址及網路端口過濾嚴格控制入站的流量。







GDPR is an acronym for General data protection regulation, which any organization operates in any European countries or target customers in the area, must comply with this new data security rules or you may be fined up to €20 million or 4% of your turnover (whichever is greater).

The Use of CCTV & GDPR

CCTV is used very commonly among all businesses, but under the GDPR, business owners need to have a ‘strong’ and ‘fair’ reasons explaining why they need to use CCTV in the areas. One particular example will be to protect employees health and safety. When CCTVs are installed, the business owners, must have signs and contact information which warns the people around CCTVs are in placed or they contact you if they have any enquiries.

Most CCTVs footages can be kept in 30 days, but if business owners want to keep in longer period, they must have a risk assessment and explain why.

The CCTVs footages must be encrypted and the business owners must have a contract in place with their
data processors and explain what they can do and can’t do.