A surge in mobile threats continues to impact mobile-powered businesses, with 43% of all compromised devices fully exploited, marking a 187% year-over-year increase.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
Taiwan hardware supplier’s data breach has been traced back to systems integrator Kinmax Technology, which lists a broad variety of tech industry titans as clients: Cisco, Hewlett-Packard Enterprise, and Microsoft among them.
Officials have warned that the NHS patient data stolen in the University of Manchester cyber attack could become publicly available with potential ramifications. The incident impacted UoM, which holds patient information of 1.1 million patients across 200 hospitals.
The USPTO says that an API vulnerability was present between February 2020 and March 2023, causing a data leak of about 61,000 private residential addresses attached to patent filings.
Securing an organization’s unstructured data can be a significant challenge. Unstructured data is more difficult for an organization to monitor and track and is commonly in formats designed to move freely in and out of the organization.
Security researchers have discovered hundreds of federal network devices with exposed management interfaces violating the recently mandated CISA security requirements detailed in the Binding Operational Directive (BOD) 23-02.
Cyber attack on parent company Suncor Energy has disrupted the Petro-Canada's payment and loyalty reward systems. Petro-Canada has about 1,500 gas stations and is the second-largest chain of gas stations in the country.
US military personnel were warned against turning on unsolicited smartwatches mailed to service members that auto-connect to Wi-Fi and smartphones, potentially collecting sensitive information.
NIST’s Guide to a Secure Enterprise Network Landscape released in November 2022 examines the shift from on-premise networks to multiple cloud servers. Although the guide doesn’t address SaaS applications directly many of the principles it discusses can be applied to the SaaS ecosystem.
Cybercriminals know that a network, application process, or security control will function similarly and feature the same arrangements of hackable assets in every environment they encounter. To flip this script, security teams need to make IT environments hostile to threat actors and turn static environments into dynamic ones.










