As the IoT revolution brings changes to society, it is introducing new classes of risk requiring IoT security to adapt to the changing threat landscape.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
Development automation needs to shift from an almost exclusively technical automation-for-speed perspective to a more business centric perspective of automation-for-balance.
"Meow" cyber attack seeks out unsecured databases and simply wipes them out without seeking either fame or material gain, as a form of activism or perhaps just for fun.
Cloud-based deployments have significantly changed the security paradigm and the foremost consideration for cloud migration involves a security framework that spans the entire cloud infrastructure.
NSA and CISA issues joint report warning of cyber threats from state-sponsored actors targeting critical infrastructure, directing owners and operators to take immediate actions.
Telecom Argentina, the largest telecommunications company in the country, was hit by ransomware attack involving the REvil ransomware group who is demanding $7.5 million.
New discovery of over 142 million guest credentials on the dark web expands the scope of the 2019 MGM data breach and appears to confirm that a number of MGM Resorts properties were affected.
Ransomware attack on Garmin services left users unable to sync data on runs and rides, and affected pilots who were unable to download Garmin's aviation database or to access Garmin Pilot app for flight scheduling.
With COVID-19 bringing new risks to cloud computing, businesses should understand the responsibility of their cloud providers when it comes to privacy and security protections.
Twitter hack of high-profile accounts a result of employees tricked into giving up access to support tools that led to compromised accounts posting Bitcoin doubling scam.










