A ransomware attack once again caused a serious blow to a critical segment of the US economy last week. This time it was the food supply … these attacks demonstrate that critical infrastructure is not only a vulnerable but also viable target.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
Russian darknet market Hydra emerged as the hotspot for illegal transactions within three years, earning $1.37 billion in cryptocurrency transactions.
Research links three major cybercriminal gangs to 30% of all global non-credit data breaches. Two Canadian teens are presumed to be directly attributed to roughly 42% of all non-credit card related data breaches that occurred between January 2017 to June of 2020.
FBI warned of increased Conti ransomware attacks against the healthcare system and first responder networks At least 16 organizations were targeted.
ProxyLogon vulnerabilities can cause significant issues for affected companies. Fortunately, Microsoft offered several solutions for fixing these problems, even providing one for people lacking on-site security assistance.
Instead of only focusing solely on how to protect the existing environments, CISOs must also aim to provide the right environment for secure business innovation.
Cyber attack on Japan’s government agencies leaked 76,000 email addresses, and proprietary, business, and air traffic and control data, forcing Fujitsu to disable ProjectWEB.
Some of these new DHS cybersecurity regulations have been in the works for some time, but the rapid rollout of changes comes in response to the Colonial Pipeline ransomware attack that created temporary gas shortages.
Compliance requirements do not always reflect the complexities of new cloud systems or indicate where problems with traditional security approaches do not work as well for cloud security.
The SolarWinds hackers are back again, this time leveraging the stolen email account of a United States federal agency to run a phishing campaign against 150 government entities in 24 countries.










