ZenLayer, a global network service provider, data leak has exposed over 380 million records of infrastructure and customer information via a misconfigured cloud database.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
There’s a disturbing trend in boardrooms that’s leaving corporations completely exposed. CPOs and CIOs are sidelined, ignored and forgotten by the rest of the C-suite as executives believe that the battle between CPOs and hackers is removed from day-to-day business operations.
America's second largest insurance company Prudential Financial has disclosed a security breach by a cybercrime gang that leaked administrative, employee, and contractors’ data.
International law enforcement operation appears to have significantly disrupted the capabilities of the LockBit ransomware group, one of the biggest internet-based criminal hacking organizations in the world, seizing about 200 of the group's crypto wallets and over 1,000 decryption keys.
The security industry was hit by an increasing number of AI-powered cyberattacks in 2023, and that is not going to slow down in 2024. As these attacks evolve as AI infiltrates every aspect of business, here’s what security leaders should resolve to do this year amid AI threats.
The new GoldPickaxe evolution of the GoldDigger trojan malware takes things a step further, retaining the prior functionality but adding the ability to capture facial data for the purpose of creating a deepfake to defeat biometric logins.
Web3 cannot get away from Web2, and it means that businesses are going to have to find a way to marry two very different approaches to security to ensure the safety of their users in the era of decentralization.
A recent surge in phishing messages by profit-seeking criminal hackers has been tied to OpenAI tools, but a new report from Microsoft finds that state-sponsored hacking groups are making of use of these new AI abilities as well.
A massive ransomware attack affected an integrated healthcare management system, disrupting over 100 Romanian hospitals, including pediatric and cancer centers.
Security defenses, almost by definition, are frequently one step behind threat actors as we often must see what we are up against before mounting an effective counterstrategy. Despite this, it’s important to begin with the right foundational layers, and then evolve those layers and defenses as rapidly as possible.










