IT specialists

Practical information on keeping systems and data safe from attack.

nadia yousef

News

Spotlight on ransomware

CERT NZ Incident Response Manager Nadia Yousef provides an insight into ransomware and how organisations can protect the

16 July 2021

Guide

Legacy systems

Legacy systems are systems that are no longer supported by the vendor, or systems that an organisation no longer maintai

2019 05 30 MTP 1764

Critical Controls

Multi-factor authentication and verification

You can authenticate with something you know, something you have, or something you are. Multi-factor authentication (MFA

Advisory

Kaseya management software being used to deploy ransomware

12 July 2021

CERT TEC 180518 WEB 268

Critical Controls

Patching

Keeping your software up-to-date is one of the most simple and effective steps to take, to ensure your environment stays

Guide

Mobile device management

A mobile device is any portable device that can access and hold organisational data. It's important to secure these devi

CERT TEC 180518 WEB 245

Critical Controls

Implement and test backups

After an incident, restoring your data from backups is often the best way to return to business as usual. Performing and

Advisory

Critical vulnerabilities in Microsoft Windows Print Spooler service

2 July 2021

Guide

Traffic light protocol

The traffic light protocol (TLP) is a set of designations used to ensure that sensitive information is shared with the c

q1 2021 quarterly report card

News

Cyber security incidents continue to rise

CERT NZ’s latest report shows Kiwis reported more than 1,400 cyber security incidents from 1 January to 31 March.

3 June 2021

Guide

How to report a vulnerability

If you find a vulnerability in a service or product, you should report it to the individual or organisation (the 'vendor

Advisory

Vulnerability in Adobe Acrobat and Reader being actively exploited

12 May 2021

2019 05 16 MTP 0632

Critical Controls

Application allowlisting

Application allowlisting (otherwise known as whitelisting) is a method of strictly controlling what programs can be run

samoa cert

News

Cyber security strengthens in the Pacific with the launch of SamCERT

A partnership between New Zealand and Samoa has strengthened cyber security resilience in the Pacific with the establish

27 May 2021

Advisory

QNAP NAS vulnerabilities exploited to deploy ransomware

29 April 2021

CERT TEC 180518 WEB 83

Critical Controls

Principle of least privilege

The principle of least privilege means only having the access you need to do your job. Restricting the level access to o