Are You Human?
There was a time when "seeing is believing" was still a reasonable assumption.
That assumption is collapsing rapidly.
Over the last year, the quality of AI-generated identities, voices and videos has improved at a pace that many organisations underestimated.
What was once easy to spot as "fake" is now becoming increasingly difficult to distinguish from reality, even for trained professionals.
One recent example that circulated online involved an AI-generated French woman presenting what appeared to be a legitimate French identity card in a video generated by Grok.
The rendering quality, facial movements, document reflections and overall realism were sufficient to fool many viewers at first glance.
At the same time, threat actors are increasingly using live deepfake technologies during video calls, interviews and social engineering attacks.
Security researchers and law enforcement agencies have already documented cases where attackers used AI-generated voi...
>>[READ MORE]
{elysiumsecurity} 
Cyber Protection & Response
Misc News (18 Posts)
Ransomware: Inside the Criminal Enterprise
NOTE: In this series of posts, we revisit recent presentations delivered at MU.SCL and provide additional context around the slide decks shared here. While a written post cannot fully reproduce the depth, examples, and discussion of a live session, it should help readers better understand the topic, the key messages, and the practical points behind the slides.
Ransomware is no longer just malware. It is now a criminal business model, supported by developers, affiliates, brokers, negotiators, laundering services, help desks, data leak sites and a clear operating process. That was the main message behind our recent MU.SCL presentation, "Ransomware 2026: Inside the Criminal Enterprise", which looked at how the ransomware economy works, why victims still pay, and what organisations can do to reduce both the risk and the impact of an attack.
The first point to understand is scale. Chainalysis estimates that ransomware p...
>>[READ MORE]
Ransomware is no longer just malware. It is now a criminal business model, supported by developers, affiliates, brokers, negotiators, laundering services, help desks, data leak sites and a clear operating process. That was the main message behind our recent MU.SCL presentation, "Ransomware 2026: Inside the Criminal Enterprise", which looked at how the ransomware economy works, why victims still pay, and what organisations can do to reduce both the risk and the impact of an attack.
The first point to understand is scale. Chainalysis estimates that ransomware p...
>>[READ MORE]
Your Digital Ghost and why it matters
NOTE: In this series of posts, we revisit recent presentations delivered at MU.SCL and provide additional context around the slide decks shared here. While a written post cannot fully reproduce the depth, examples, and discussion of a live session, it should help readers better understand the topic, the key messages, and the practical points behind the slides.
Most organisations still think of a cyber attack as something that starts when an attacker touches their systems. A phishing email arrives, a VPN login fails, a scanner appears in the firewall logs, or an endpoint alert is triggered. At that point, security teams start investigating and everyone agrees that something has begun.
But in many cases, the attack started earlier.
Not in a way that generated logs or triggered an alert, but in the attacker's preparation. Before the first malicious packet reaches the perimeter, the attacker may already know...
>>[READ MORE]
Most organisations still think of a cyber attack as something that starts when an attacker touches their systems. A phishing email arrives, a VPN login fails, a scanner appears in the firewall logs, or an endpoint alert is triggered. At that point, security teams start investigating and everyone agrees that something has begun.
But in many cases, the attack started earlier.
Not in a way that generated logs or triggered an alert, but in the attacker's preparation. Before the first malicious packet reaches the perimeter, the attacker may already know...
>>[READ MORE]
Risk Averse Vs Risk Aware: a difference that matters!
There is a conversation happening right now in boardrooms, leadership teams, and strategy sessions across almost every industry.
A conversation that has been recurring each time a new technology makes news head lines and is transformative: : "We need to adopt (insert technology name here). We need to move fast. Security, please stop being a blocker."
Of course, at the moment that technology is AI.
A few weeks ago I wrote about why organisations are rushing into AI and the risks that come with it. That post dealt with the pace of adoption and the absence of governance frameworks. This one is about something different: the internal cultural dynamic that the rush creates, and one specific damaging idea that keeps surfacing inside organisations under pressure.
The idea that being risk averse is the enemy of innovation (possibly) and that being security-aware (or conscious) is the same as being risk averse.
It is not. And t...
>>[READ MORE]
A conversation that has been recurring each time a new technology makes news head lines and is transformative: : "We need to adopt (insert technology name here). We need to move fast. Security, please stop being a blocker."
Of course, at the moment that technology is AI.
A few weeks ago I wrote about why organisations are rushing into AI and the risks that come with it. That post dealt with the pace of adoption and the absence of governance frameworks. This one is about something different: the internal cultural dynamic that the rush creates, and one specific damaging idea that keeps surfacing inside organisations under pressure.
The idea that being risk averse is the enemy of innovation (possibly) and that being security-aware (or conscious) is the same as being risk averse.
It is not. And t...
>>[READ MORE]
ELYSIUMSECURITY LTD MAURITIUS IS ONE YEAR OLD!
What started in 2015 in the UK as a side project, to provide cyber security expertise to UK Edge Funds, has now developed in a busy and successful wider operation through a limited company in the UK and the setup of another limited company in Mauritius.
ELYSIUMSECURITY LTD MAURITIUS is now one year old and the focus of 2018 has been to develop our activities in Mauritius.
It has been an amazing year and we would like to take this opportunity to thanks our clients who have been trusting us in this first year. We look forward to continue providing our expertise in Mauritius, the UK and beyond.
>>[READ MORE]
When Business and Family priorities come together
A few month ago, when my child climbed into the boot of our family car at the airport and pretended to be a suitcase so I could take that “suitcase” on my business trip, it is when I decided I had to radically change how I was doing my job.
As I am turning an important chapter in my working life I thought I would share part of the journey that drove me to first leave a stable and somewhat senior position for a large international company in the UK for a “glamorous” CISO position in a relatively small organisation on the other side of the world, in Mauritius. Then almost a year later, deciding to leave the safety of a full-time job and create my own company.
For 15 years, I worked for BP in the UK in various Cyber Security roles, life was very good, the benefits excellent, the job challenging and I forged numerous good friendships. There were little reasons to leave. Except maybe the prospect of a more outdoor family life in a sunny and beautiful tropical ...
>>[READ MORE]
RANT FORUM - Red Team Recipes Presentation
I will be giving a talk tomorrow evening, the 28th of November at around 6pm, in London at the Risk and Network Threat (RANT) Forum .
The topic is:
Why RedTeam is more than just a buzz word? What works? What doesn't? And where is this "new" type of service might be going? All those questions answered by someone who is actually delivering Red Team activities.
Registration is free, you get free drinks and food... plus you get to hear me talk, so what is not to like?! :)
You can register HERE
The RANT Forum is quite different from your typical free security briefing, for a start it is not a sales forum. However, the company behind it is a recruitment agency, so they are still interested in taping the UK Security professional community!
...
>>[READ MORE]
Website update
We have completed our latest website refresh and you may have to reload the various pages to see the new version.
This update brings more information about the different services we offer and how we position ourselves. It also provides better infographics which should make navigating through the site easier to the eye.
We are planning another minor update to our blog section in the coming weeks which will improve your RSS experience.
>>[READ MORE]
One more update to the Security Onion Guide
We have updated once more our Security Onion Installation Guide with a few tweaks regarding setting up BRO emails and SSH.
There is also a new PDF version, using an updated template, available from the download section .
>>[READ MORE]
Updated Security Onion Guide
Last week, Security Onion repository moved from Google Code to Github. We have now updated our Security Onion Installation Guide with the new links.
Basically, replacing the base part of each link from the old reference
"https://code.google.com/p/rest_of_the_link]"
to
"https://github.com/Security-Onion-Solutions/rest_of_the_link]"
If you are looking for "issues", not only do you need to replace the base reference as mentioned above, but you also need to remove the "detail?id=" at the end of the URL.
For example:
https://code.google.com/p/security-onion/issues/detail?id=488 (does not work )
Becomes
https://github.com/Security-Onion-Solutions/security-onion/issues/48...
>>[READ MORE]