On February 5, 2021, a hacker gained access to the water treatment system of Oldsmar, Florida, and attempted to increase...
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
CloudSphere says configuring cloud access control was a major problem for most organizations and many companies were unaware that their cloud platforms had been illegally accessed.
Putting more data and apps in the public cloud presents more risk since the data is physically with the cloud providers. How can retailers and related enterprises ensure cloud security?
Verkada, a major provider of surveillance cameras throughout the United States, suffered a data breach that exposed the contents of over 150,000 of its live camera feeds.
Infosec firm Qualys admitted it was an Accellion FTA data breach victim but denied experiencing a ransomware attack after the Clop ransomware gang published customer order documents.
Group-IB provides a deep analysis of 2020's ransomware trends, finding that ransomware attacks have now become the most lucrative area of cyber crime.
Microsoft says state-sponsored Chinese hackers exploited four Microsoft Exchange mail server zero-day vulnerabilities. CISA warned of potential widespread exploitation.
Hacktivist group has taken it upon itself to expose the sites users, dumping some 70 gigabytes of hacked data that includes highly sensitive personal information, messages and passwords.
Enterprises focus much of their attention on the surface web. However, monitoring the dark web and hidden corners of the internet is just as if not more important for risk professionals.
Corporate boards are increasingly concentrating on cybersecurity issues. Here’s how to ensure they focus on third-party risk, too.










