Over 100,000 UN employee records were accessed by security researchers in a Git data breach originating from repositories associated with UNEP and ILO domains.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
The pandemic shone a bright and unflattering spotlight on where companies need to update their IT infrastructure. Here are a few trends that are bound to define this year’s plans and investments.
SolarWinds hackers suspected to have breached email security provider Mimecast compromising its Microsoft 365 Exchange connection certificate, and affecting 10% of its customers.
Recent Russian hack that hit the Pentagon and multiple U.S. agencies should jolt enterprises from any lingering “breach fatigue” and jump-start efforts around cybersecurity.
Security researchers found more than 500,000 stolen employee credentials from leading gaming companies circulating on the dark web, exposing the companies to potential data breaches and ransomware.
Payment processor Juspay downplayed the data breach affecting 100 million customers, failed to notify them for five months until a researcher found the data selling on the dark web.
While modern collaboration communications tools have helped business continue during a time when face-to-face meetings are impossible, they can also increase the risk of data breaches and regulatory compliance violations.
Experts say the pro-Trump Capitol riot posed cybersecurity risks as protesters read email(s), plucked documents, and stole devices, including one connected to the federal network.
With the right incident response expertise, tools, and strategy, organizations can turn seemingly disastrous events into moments for real learning, further preparation, and actionable business insight.
The March 2020 SolarWinds hack, which was not discovered for months, has formally been blamed on Russian hackers by a coalition of US intelligence agencies.










