Telling users to ‘avoid clicking bad links’ isn’t working

Abstract: Telling users to ‘avoid clicking bad links’ still isn’t working by David C. - Technical Director for Platforms Research and Principal Architect - NCSC (UK) Why organisations should avoid ‘blame and fear’, and instead use technical measures to manage the threat from phishing. Infosec tenets simply don’t work Advising users not to click on bad link: users frequently need to click on links from unfamiliar domains to do their job, and being able to spot a phish is not their job...

December 28, 2022 · 2 min · 9x0rg

Malaysia telco databreach - check yourself

Lowyat reported on Oct. 30, 2017 that a total of 46.2 Million Malaysian phone numbers were exposed, and the dataset included IC numbers, addresses, IMSI, IMEI and SIM numbers as well. Check yourself out Head over to, the dedicated website created by Keith Rozario and check if your details are part of the breach.

November 14, 2017 · 1 min · 9x0rg