Despite the growing popularity and economic importance of mobile apps, many businesses fail to prioritize mobile application security and privacy in the development process.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
Migrating to quantum resistant algorithms will take years to integrate into existing systems and processes. Organisations need to achieve crypto-agility – the ability to change, improve, and revoke cryptographic assets to successfully deal with quantum threats.
36% of Corvus claims were related to fund transfer fraud in Q3 2022, hitting an all-time high and outpacing ransomware for the first time in a long time. Ransomware cyber insurance claims remain the most costly per incident, however.
Researchers have discovered a new phishing campaign leveraging Facebook posts to bypass email security and steal users' account credentials and personal information.
Password-based authentication is both the first line of defense, and the weakest link, when it comes to securing your SaaS applications. We know that end-users default to poor password practices—recent reports found 99% of users reusing passwords either across work accounts, or between work and personal accounts.
How do technology partners, cloud providers, vendors, distributors, customers and organizations earn trust? There is no simple answer, but compliance standards play a significant role. There can be no trust without transparency, and modern compliance helps organizations make their security practices considerably less opaque.
One of Britain's most popular newspapers, The Guardian, is reporting that a suspected ransomware attack is causing some internal network trouble. The paper's report characterized it as "serious" despite it seemingly not stopping online or offline production of the paper.
Okta is once again in trouble as the company's GitHub repositories have been hacked. There does not appear to be any impact to Okta clients, but the service source code appears to have been stolen in the breach.
As regulators get more serious about enforcing data protection rules, the severity of penalties issued against enterprises who fail to secure their customer data continues to grow and there's higher demand for better executive accountability as seen in the recent cases of Uber and Drizly.
From security and efficiency to performance, modern network and application infrastructure challenges are analogous to the methods employed by the TSA, and by extension, the good and bad experiences of travelers everywhere.










