The relentless march to the cloud is good news for CIOs concerned about ransomware. And once most enterprises have most of their infrastructure there, ransomware attacks will become an occasional annoyance, not a catastrophic disaster.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
Desorden group hacked Centara Hotels & Resorts again after negotiations for ransom payment collapsed and the hotel recovers part of the databases stolen in the first data breach.
With the number of machines rising to vastly surpass the number of people using them, machine identity management has recently garnered attention from IT leaders all over the world, especially among organizations undergoing a digital transformation.
Lazarus hacking group found to be developing capabilities in supply chain attacks and using the MATA framework to conduct cyber espionage on the defense industry.
Remote working is here to stay and will require many changes to ensure operational resilience. Here are the key areas that Security Operation Centres should pay attention to as they adapt to an ever changing threat landscape.
Cyber attack disrupted Iran’s gas stations accepting government-issued smart cards for subsidized fuel while hacked electronic signs mocked Supreme leader Khamenei and demanded gasoline.
How can an organization prevent unauthorized people from looking over their remote employee's shoulders? By utilizing an identity confirmation solution that combines biometrics, object recognition, and AI, businesses will ensure only approved employees view sensitive data.
In response to tightening security, it appears that ransomware hackers are adopting new methods. One gang, Lockbit 2.0, is now offering millions of dollars to employees who are willing to help them gain access to a network.
Some threat actors are still willing to take whatever opportunities they can find. A recent ransomware attack on the developing and mostly-rural Papua New Guinea illustrates this.
Vendor relationships with B2B sharing economy companies are more transactional and often the workforce is also less meticulously vetted. The biggest risk most vendors face today (and one that CIOs are increasingly wary of) when leveraging B2B sharing services is cybersecurity.










