Robinhood, the most popular app-based trading platform for non-professional investors, has confirmed that it suffered a data breach due to a social engineering attack last week that potentially compromised millions of accounts.”
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
A new report indicates that ransomware costs are being cut considerably due to better preparedness. And though cyber insurance claims spiked in early 2021 due to the Microsoft Exchange vulnerability, they have been on a steep downward trend since.
Ransomware gangs search for non-public financial information that could affect stock prices during mergers and acquisitions and threaten to publish it to coerce the victim to pay.
Risk of losing a class action lawsuit after experiencing a ransomware attack increases if the enterprise in question was negligent with personal data that was compromised, and it can be proven in court.
Suspects affiliated with a ransomware-as-a-service (RaaS) platform used in LockerGoga, MegaCortex, and Dharma ransomware attacks were detained in Ukraine and Switzerland.
Recent creative crypto scams illustrate some specific things that investors need to be prepared for. A scam involving Squid Game demonstrates how FOMO can catch investors, and a Google Ads scheme used phishing techniques to steal wallets.
For IT asset disposition (ITAD), data safety and destruction isn’t just a technological issue, it’s a human one as well – based on procedure and trust. So how do we build a more trustworthy process?
CISA directs federal agencies to adhere to the vulnerability management catalog and patch 300 exploited vulnerabilities assigned CVE IDs in 2021 within 2 weeks and 6 months for previous ones.
BlackMatter ransomware gang rose to prominence in the criminal underworld this summer after competitors such as DarkSide and REvil fell by the wayside. The upstart group now appears to have suffered the same fate.
CBDCs raise some concerns around data privacy and security that can’t be overlooked: a system where all data is stored in a central location creates one point of failure, leading to concerns around potential data breaches.










