Five worthy reads is a regular column on five noteworthy items we’ve discovered while researching trending and timeless topics. Most healthcare facilities already use the Internet of Things (I0T) to make their environment a more efficient and safer place, and this week, we show you how IoT is revolutionizing the healthcare industry. As the world’s […]
WARNING: The List of Ransomware-Turned-Data Breach Operators is Getting Long
Seeing a better opportunity to generate more “revenue” from their victims, the idea of ransomware also exfiltrating data to be used to extort the payment is gaining steam. Ransomware started as little more than a nuisance, impacting just a few endpoints. Then the idea of spreading throughout a network to infect as many machines as […]
Pyongyang’s Phishing with Job Offers
An attack campaign with possible ties to North Korea’s Lazarus Group targeted aerospace and military companies in Europe and the Middle East with spear phishing attacks late last year, according to researchers at ESET. The campaign, which the researchers call “Operation In(ter)ception,” used social engineering attacks on LinkedIn to trick employees into opening malware-laden documents. […]
Five worthy reads: Privacy in pandemic management
Five worthy reads is a regular column on five noteworthy items we have discovered while researching trending and timeless topics. This week, we explore the data privacy challenges and concerns that have arisen during the COVID-19 pandemic. In the wake of COVID-19, the world has witnessed the power of technology. Almost all governments have leveraged […]
What do we talk about when we have password problems?
Chat 1 Employee 1: Hi, admin. Employee 1: I forgot my password. Can you reset it for me? I’ve raised a ticket too. IT admin: *sigh* Chat 2 Employee 2: Hello, admin. Can you unlock my account? I’ve raised a ticket too. IT admin: How many times did you enter the password knowing it was […]
Patch Tuesday June 2020—The largest ever, with fixes for 129 vulnerabilities
Almost four months into the COVID-19 pandemic, all of us have started embracing the “new normal.” In terms of IT security, this means a huge spike in cybercrime and newfound challenges in securing devices that are now being used for remote work. With IT service giants like Cognizant succumbing to cyberattacks, regular patching is […]
Why Zero Trust in IAM is the new way forward
The increasing adoption of cloud applications and an expanding remote workforce are redefining network security. In a traditional setting, the emphasis was on perimeter-based security—assuming that everything behind the corporate firewall is safe. However, it’s clear that organizations have to rethink the philosophy of implicit trust in a corporate network. Created by Forrester Research, the […]
Prediction: Ransomware Attacks to Spike as Employees Return to the Office
Because of the nature of ransomware attacks and the mass numbers of workers at home, anti-malware vendor Emisoft believes we’re going to see a rise once work returns to normal. Ransomware is a numbers game: launch enough attacks and a percentage of them will return revenue back to you. This rings true regardless of whether […]
Why People Don’t Learn (It’s Not Always Their Fault)
IT and security managers often fail to understand how well their employees actually absorb cybersecurity training, according to a survey from Mimecast and Forrester Consulting. The survey gathered responses from 120 senior IT and cybersecurity managers at companies in Australia, Hong Kong, New Zealand, and Singapore, as well as from 240 employees that worked within […]
Security Awareness is the Biggest Security Challenge for Remote Workforces
As the dust from enabling employees to work remotely has settles, new data from security vendor PulseSecure highlights where remote security has been – and still is – a challenge. COVID-19 has turned organizations upside-down, shifting priorities, budgets, and staffing – all in an effort to remain operational. But when making drastic changes to the […]