UK law enforcement has shared over half a million compromised passwords found in cloud storage with Have I Been Pwned. The headline item is that over one-third of these passwords (about 225 million) have not been logged before.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
We know that cybersecurity will make or break the digital business. Faced with relentless growth in cyberattacks, coupled with the complexity of today’s digital ecosystem, how should your business respond?
After an apparent refusal to pay a ransom demand, Russian hackers have leaked a sampling of 13 million records of UK police data to the dark web in retaliation. The records were stolen from a police contractor.
Natural gas supplier Superior Plus suffered a ransomware attack that knocked its systems offline although customer safety and security and personal data were not affected.
Volvo disclosed a security breach that resulted in a R&D data theft by Snatch cyber threat actors. The company added that customers’ car safety and private information were not affected.
This year's set of Gartner cybersecurity predictions touches on the expected growth of privacy laws and ransomware regulations, changes to corporate security structures, and even a warning of the first uses of operational technology to cause human casualties.
Software supply chain attacks will continue to be successful as long as the chasm between software development teams and info security teams persists. Until these two departments agree on common goals, attacks targeting software vulnerabilities will continue to cause havoc.
Cox communications data breach notification disclosed that unauthorized individual(s) accessed sensitive customer information after impersonating the company's support agent.
Given the growth of wire fraud and grey area when it comes to liability, creating a system that guarantees protection has become incredibly important. The best way to prevent uncertainty about who is at fault is to prevent the risk from happening all together.
Report from security firm Analyst1 illustrates how agile ransomware groups have become, to the point that they are backing off and regrouping with new tactics before slow-moving legislation and enforcement can catch up with them.










