NATO is investigating an alleged data theft by a hacktivist group SiegedSec. 845 MB of compressed data was leaked and found to contain unclassified information and 8,000 employee records from 31 nations.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
Average cost of data breach has once again hit a new record to $4.45 million, up 15.3% just from 2020. Yet only 51% of organizations that have suffered a breach plan to increase security spending.
New rules voted in by the SEC last week require all publicly traded companies to report any cybersecurity breaches that could cause a material impact within four days. Timer doesn't start until the company determines that the breach could be material.
Over 200,000 OpenAI credentials are listed for sale on dark web marketplaces as interest in the generative AI chatbot peaks within the black hat community.
Previously unknown data breach that became public knowledge on July 18 impacted approximately 4,000 accounts of individuals who attended the Roblox Developer Conference between 2017 and 2020. Data had remained within “niche cheating communities within Roblox.”
Business communication tools are indispensable in today’s distributed working environments, both for internal communication between team members and for external communication with customers. But their use has attracted the attention of attackers who successfully exploit their security weaknesses and tailor their attacks to specific communication platforms.
U.S. Cyber Trust Mark, a labeling program intended to make the relative security level of smart devices more apparent to consumers, is based on a NIST standard first put forward in a February 2022 white paper, addressing a longstanding problem with shortcomings in IoT security.
The assessment of the damage from the recent cyber espionage campaign by Chinese hackers has now been revised and greatly expanded, with more senior officials and ambassadors confirmed to have been targeted and potentially "hundreds of thousands" of email accounts breached.
Two prolific ransomware gangs have breached cosmetics giant Estee Lauder at the same time and stolen information in an apparent MOVEit data breach and a confirmed cyber intrusion.
Recent research shows that one third of enterprises lose more than 10% of their associated technology assets when offboarding workers, and 42% experience unauthorized access to SaaS applications and cloud resources.










