10 posts
Jan 2026
Reflections on Completing the CompTIA AI Essentials Course
How my existing use of Generative AI stacked up against industry best practices, and what the course taught me.
Career
May 2023
I Passed My CySA+ on the First Attempt
Scoring 770 on the CompTIA CySA+ and the study resources that made it possible.
Career
May 2023
Phishing as a Service (PhaaS): Cybercrime Goes Subscription
How PhaaS platforms are commoditising phishing attacks and lowering the barrier to entry for cybercriminals.
Phishing
Apr 2023
CVE-2023-29552: A New DDoS Amplification Attack via Service Location Protocol
How an SLP vulnerability enables DDoS amplification attacks with up to 2,200× the original traffic volume.
Cybersecurity News
Mar 2023
MFA All the Things? The Limitations of Multi-Factor Authentication
When MFA isn't enough: the attack vectors that bypass multi-factor authentication and how to respond.
Authentication
Feb 2023
Twitter's MFA Rollback: Essential Security Behind a Paywall?
An analysis of Twitter's decision to restrict SMS-based MFA to paid subscribers and what it means for account security.
Authentication
Feb 2023
Phishing via Email: Always Double Check Before You Click
Practical guidance on identifying phishing emails, common red flags, and best practices for inbox safety.
Phishing
Feb 2023
IoT Security: Is the Convenience Worth the Risk?
Examining the security tradeoffs of connected devices and what organisations can do to reduce exposure.
Cybersecurity News
Jan 2022
Human Error and Social Engineering: The Weakest Link in Cybersecurity
Why people remain the most exploitable attack surface, and what that means for defenders.
Social Engineering
May 2021
Air India Data Breach: 4.5 Million Customers Affected
A breakdown of the SITA PSS breach that exposed passenger data across multiple airlines.
Cybersecurity News