Critical Controls
CERT NZ's Critical Controls 2022
Each year, we review our critical controls against the incidents we have seen over the past 12 months. When correctly im
IT specialists
Practical information on keeping systems and data safe from attack.
News
International agencies issue Log4j warning
The Log4j vulnerability is still a serious threat to the world’s cyber security landscape.
Advisory
Active exploitation of RCE in Java’s Spring Framework
Guide
How ransomware happens and how to stop it
Ransomware attacks are becoming increasingly common and sophisticated. This is how CERT NZ’s critical controls can help.
Event
Be Cyber Smart
Cyber security threats are on the rise, so let’s Up our online defences.
Advisory
Log4j RCE 0-day actively exploited
Guide
Legacy systems
Legacy systems are systems that are no longer supported by the vendor, or systems that an organisation no longer maintai
Critical Controls
Multi-factor authentication and verification
You can authenticate with something you know, something you have, or something you are. Multi-factor authentication (MFA
News
Remote working putting organisations at risk of ransomware
CERT NZ is urging Kiwi organisations to tighten up the way they enable remote working for staff to avoid a ransomware at
Advisory
Critical Vulnerability in Palo Alto VPN
Critical Controls
Patching
Keeping your software up-to-date is one of the most simple and effective steps to take, to ensure your environment stays
Guide
Mobile device management
A mobile device is any portable device that can access and hold organisational data. It's important to secure these devi
News
Spotlight on ransomware
CERT NZ Incident Response Manager Nadia Yousef provides an insight into ransomware and how organisations can protect the