IT and security decision-makers need to prepare for an expanding digital world and consider how increasing cloud usage, consumer distrust, new legislation, and a permanently distributed workforce impacts the ways in which they do business.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
Biden administration executive order looks to make immediate improvement to the nation's cyber defenses, with the headline item being new reporting requirements for federal government vendors that experience cybersecurity breaches.
Which? report says old routers supplied by UK internet providers Vodafone, Virgin, Sky, EE, and others put millions of internet users at security risk of cyber attacks.
Check Point discovered another security vulnerability in Qualcomm chips affecting 40% of smartphones, allowing hackers to inject code in Android phones, including Google, Samsung, LG, Xiaomi, and One Plus brands.
AXA France, regional division of European insurance giant AXA Group and France's largest general insurer, has announced that it will no longer reimburse ransomware payments for customers within the country.
Here is a six-step strategy to passing compliance audits seamlessly and set your business on the path to sustainable and successful ongoing auditing preservation.
When the first reports of the Colonial fuel pipeline attack appeared, it was natural to assume the worst but an investigation by the FBI has fingered a ransomware-as-a-service operator rather than a known state-backed group.
New standards are requiring OEMs and Tier-1s to implement cybersecurity solutions that are comprehensive and can operate throughout the lifecycle of the vehicle.
A "Ransomware Task Force" initiative led by the U.S. Department of Justice is including a broad coalition of big tech firms, as well as Europol and the UK National Crime Agency, in an effort to put an end to ransomware payments.
For security teams and, by extension, the business, time directly relates to money. Having a threat hunting team or, at the very least, a dedicated threat hunter in your IT operation is the best way to balance risk vs. cost.










