IT specialists
Practical information on keeping systems and data safe from attack.
![](/assets/CardImages/Data-Security2x.png)
Guide
Traffic light protocol
The traffic light protocol (TLP) is a set of designations used to ensure that sensitive information is shared with the c
![CERT TEC 180518 WEB 245](/assets/CardImages/CERT-TEC-180518-WEB-245__FocusFillWyIwLjAwIiwiMC4wMCIsMTU1LDE4MF0.jpg)
Critical Controls
Implement and test backups
After an incident, restoring your data from backups is often the best way to return to business as usual. Performing and
![nadia yousef](/assets/Uploads/nadia-yousef-web__FocusFillWyIwLjAyIiwiLTAuNDAiLDI4OCwxOTBd.jpg)
News
Spotlight on ransomware
CERT NZ Incident Response Manager Nadia Yousef provides an insight into ransomware and how organisations can protect the
Advisory
Microsoft Exchange Autodiscover exposing credentials
![2019 05 16 MTP 0632](/assets/CardImages/2019_05_16_MTP_0632__FocusFillWyIwLjAwIiwiMC4wMCIsMTU1LDE4MF0.jpg)
Critical Controls
Implement application control
Application allowlisting (otherwise known as whitelisting) is a method of strictly controlling what programs can be run
![](/assets/CardImages/Computer-Security2x.png)
Guide
How to report a vulnerability
If you find a vulnerability in a service or product, you should report it to the individual or organisation (the 'vendor
Advisory
Active scanning for VMware vCenter Vulnerability
![](/assets/CardImages/Individual-Illustrations-RGB-MASTER-06.png)
Guide
Reporting a vulnerability to CERT NZ
A vulnerability is a weakness in software, hardware, or an online service. Vulnerabilities can be exploited to damage a
![CERT TEC 180518 WEB 83](/assets/CardImages/CERT-TEC-180518-WEB-83__FocusFillWyIwLjAwIiwiMC4wMCIsMTU1LDE4MF0.jpg)
Critical Controls
Principle of least privilege
The principle of least privilege means only having the access you need to do your job. Restricting the level access to o
![q1 2021 quarterly report card](/assets/CardImages/q1-2021-quarterly-report-card__FocusFillWyIwLjAwIiwiMC4wMCIsMjg4LDE5MF0.jpg)
News
Cyber security incidents continue to rise
CERT NZ’s latest report shows Kiwis reported more than 1,400 cyber security incidents from 1 January to 31 March.
Advisory
Apple iMessage vulnerability being exploited
![](/assets/CardImages/Individual-Illustrations-RGB-MASTER-26.png)
Guide
Default credentials
Change the passwords on any systems that come with default credentials before you use the systems in your environment.
![CERT TEC 180518 WEB 83 v2](/assets/CardImages/CERT-TEC-180518-WEB-83-v2__FocusFillWyIwLjAwIiwiMC4wMCIsMTU1LDE4MF0.jpg)
Critical Controls
Centralised logging
Storing and securing your logs in a central place makes log analysis and alerting easier.
![samoa cert](/assets/CardImages/samoa-cert__FocusFillWyIwLjAwIiwiMC4wMCIsMjg4LDE5MF0.jpg)
News
Cyber security strengthens in the Pacific with the launch of SamCERT
A partnership between New Zealand and Samoa has strengthened cyber security resilience in the Pacific with the establish