Covid highlighted the need for organizations to fully understand the world of their information and to mature their information governance program. While we are still reevaluating where we work, it is the perfect time to also reevaluate how we work.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
Many IT professionals are also starting to recognise the ability of Shadow IT to maximise operations; IT departments now set aside 40% of its enterprise budget for Shadow IT and this is only going to increase.
Medibank has opted to ignore demands for ransom payments for the recent data breach of about 9.7 million health data records. Criminals have published a fraction of the stolen data on the dark web, including those of high-profile politicians.
Cybersecurity researchers disclosed a GitHub vulnerability that could allow attackers to hijack and poison thousands of popular open-source packages with millions of users which can lead to supply chain attacks.
In recent years, this has meant regulation and legal enforcement around data collection have not kept pace with the exponential growth in the tech industry. This can oftentimes lead to big consequences for individuals.
Microsoft/Marsh survey examines whether Asia’s confidence in its cyber resilience stems from truly strong defensive postures, or a misunderstanding of the threat landscape.
eCommerce retailers face the most significant risk from automated malicious software, with hackers deploying advanced bad bots in nearly two-thirds of account takeover attacks.
There's a common misconception that the AI label automatically makes a cybersecurity solution better when that's far from the truth. Organizations don't need AI or ML tools to improve cybersecurity.
The 2022 ICS Cybersecurity Report sees the majority of organizations recognizing ICS threats as being very serious; 22% ranked them as "critical" and 41% ranked them as "high" priority, representing a slow but steady increase over the past several years.
Defending organizations utilize AI-powered email security measures to enhance network protection, detect advanced malware and ransomware, optimize critical data center processes, improve threat response times, and reduce human error. Unfortunately, threat actors have also identified the benefits of AI technology.










