New York launches statewide cybersecurity center

New York State has introduced a centralized joint security operations center (JSOC) to mitigate cybersecurity threats.

from Cyber Security News https://ift.tt/3BzZ91b

Russian malware Cyclops Blink exposed

According to U.S. and U.K. cybersecurity agencies, a threat actor known as Sandworm or Voodoo Bear is using a new malware called Cyclops Blink.

from Cyber Security News https://ift.tt/eIycsm1

Ransomware attacks nearly doubled in 2021

The 2021 Annual Threat Monitor from NCC Group catalogues and analyzes major cybersecurity incidents that occurred in the past year, including ransomware, data breaches and nation-state cyberattacks.

from Cyber Security News https://ift.tt/TAGvWPc

Security: The lock and the key to the future of blockchain

For blockchain technology to fulfill its full potential, the security standard needs to mature and cybersecurity best practices must be followed. Or, it gets costly.

from Cyber Security News https://ift.tt/3O2B1DS

Log4j vulnerability continues to threaten enterprise security

Security teams are still dealing with fallout from the Log4j vulnerability, according to a recent poll from cybersecurity nonprofit (ISC)².

from Cyber Security News https://ift.tt/PkwA9gT

Following in Estonia’s footsteps: Blueprints for a successful digital ID

Estonia and its modest population of 1.3 million people are leaps and bounds ahead of the rest of the world when it comes to secure e-identity. 

from Cyber Security News https://ift.tt/Lvy14Pj

Jennifer Tisdale named CEO of GRIMM

Jennifer Tisdale, a cyber-economics expert and cybersecurity pioneer, has been named CEO of GRIMM, a cybersecurity organization.

from Cyber Security News https://ift.tt/qLWvljc

How to manage the endemic nature of open-source software

Why is open-source software risky, and how can security organizations protect against open-source exploits? 

from Cyber Security News https://ift.tt/Iarb07g

Ukrainian government and banks affected by cyberattacks

The websites of Ukraine’s government, foreign ministry and state security service were brought down again by a distributed denial of service attack. 

from Cyber Security News https://ift.tt/TrY6j5F

Women in Cyber Security Conference takes place March 17-19

At the ninth annual Women in Cyber Security Conference, participants will discuss privacy and security concerns associated with smart technologies and cyberspace.

from Cyber Security News https://ift.tt/bKBWlTZ

Meyer suffers cyberattack by Conti ransomware

Meyer Corp. revealed it suffered a data breach. Conti ransomware has taken credit for the attack.

from Cyber Security News https://ift.tt/XND6OQV

Everything as a Service: Cybersecurity risks of outsourcing

Everything as a Service (XaaS) has taken the cybersecurity field by storm, with enterprise organizations outsourcing security and development functions to third parties, including Software as a Service, Artificial Intelligence (AI) as a Service and even Ransomware as a Service. The Deloitte Everything as a Service (XaaS) Study further examines the service model.

from Cyber Security News https://ift.tt/JsO1P8Y

Listen to George Gerchow, CSO at Sumo Logic, discuss how to build a seamless cybersecurity strategy

After decades of building security operation centers (SOCs) and developing enterprise cybersecurity programs, Sumo Logic Chief Security Officer (CSO) George Gerchow reflects on how best to instill a security-minded culture in an organization in the latest The Security Podcasts episode.

from Cyber Security News https://ift.tt/uzFyRLp

Why scalper bots will be your worst security nightmare in 2022

The use of scalper bots — a ploy that can reap and cost millions — isn't poised to slow down. In fact, it will rise exponentially in 2022 due to the following bot community trends.

from Cyber Security News https://ift.tt/dVMTo2m

Betsy Soehren-Jones joins Fortress Information Security as COO

Betsy Soehren-Jones will further drive the adoption of essential tools infrastructure companies need to address the next generation of cybersecurity problems at Fortress Information Security.

from Cyber Security News https://ift.tt/pTt7k9F

Brands are trying on data clean rooms, but they’re not one size fits all

While clean rooms are designed to allow data sharing with maximum security, different clean rooms are created with different levels of security. To build the dream clean room, enterprises must consider a host of security factors.

from Cyber Security News https://ift.tt/QehOtSC

How containerization bolsters video surveillance security

Video surveillance and video management systems (VMS) are cornerstones of enterprise security, but with the advent of IP cameras, they can also open up organizations to cybersecurity risks. Containerization may mitigate these risks.

from Cyber Security News https://ift.tt/YRIh1nL

Why industry experts recommend tabletop cybersecurity exercises

Simply having a cybersecurity incident response plan is no longer enough to protect organizations. Further build organizational resilience and readiness with tabletop cybersecurity exercises.

from Cyber Security News https://ift.tt/HI3Q0Do

Eun Young Choi named first National Cryptocurrency Team Director

The Department of Justice has named Eun Young Choi as its first National Cryptocurrency Enforcement Team's director.

from Cyber Security News https://ift.tt/UTvSFhG

50% of sites vulnerable in 2021

Half of all sites tested by NTT Application Security were vulnerable to at least one serious exploitable vulnerability throughout 2021.

from Cyber Security News https://ift.tt/F3aIVLU

4 security best practices to secure financial report data

Four security processes that will ensure top-notch financial data security at all times.

from Cyber Security News https://ift.tt/oyOxKpV

Top 9 security predictions for 2022

Within this rapidly evolving landscape, here are the nine key security trends that will shape how organizations should think about the year ahead.  

from Cyber Security News https://ift.tt/c6zaMlj

Cleared defense contractors: 10 steps to reduce cyber risk

U.S. cleared defense contractors can follow 10 best practices to reduce risk and protect critical assets.

from Cyber Security News https://ift.tt/5YCHBKf

Security concerns are biggest barrier to cloud adoption

How IT leaders are tackling the increasingly complex remote, cloud-centric IT security landscape.

from Cyber Security News https://ift.tt/v8fmRXF

US enterprises at risk; Russian cyberattacks could disrupt public safety, critical infrastructure

Organizations are at risk of cyberattacks, as tensions with Russia rise. Adopt a high posture when it comes to cybersecurity and protect the organization's most critical assets by following four steps.

from Cyber Security News https://ift.tt/WiyNXxc

US enterprises at risk; Russian cyberattacks could disrupt public safety, critical infrastructure

Organizations are at risk of cyberattacks, as tensions with the Russia rise. Adopt a high posture when it comes to cybersecurity and protect the organization's most critical assets by following four steps.

from Cyber Security News https://ift.tt/JiPyCfb

University of Arkansas adopts cybersecurity protections

The University of Arkansas has announced the adoption of cybersecurity measures to better protect its IT assets, including data and identity management initiatives.

from Cyber Security News https://ift.tt/L1zqKNT

Global hybrid warfare introduces cyber threats to companies amid the Russia-Ukraine crisis

As the likelihood of a Russian invasion grows, public and private sectors across the globe, specifically in the U.S. and Europe, should be on high alert for a wave of cyberattacks.

from Cyber Security News https://ift.tt/CYWxASe

5 tips for building a positive anti-phishing behavior management program

Five tips to help organizations create a positive anti-phishing behavior management program and six common mistakes to avoid.

from Cyber Security News https://ift.tt/TqthL7z

Ukrainian Defense Ministry and banks hacked

Ukraine's defense ministry and two banks have fallen victim to a cyberattack.

from Cyber Security News https://ift.tt/N1ZV9Lc

High-severity security vulnerability in Apache Cassandra

Researchers revealed a now-patched high-severity security vulnerability in Apache Cassandra.

from Cyber Security News https://ift.tt/f05A9aS

NYU announces CISO career advancement program

The New York University (NYU) Tandon School of Engineering has launched the Chief Information Security Officer (CISO) Program, a career advancement educational opportunity designed for senior-level cybersecurity professionals.

from Cyber Security News https://ift.tt/WN9Vago

Coinbase Super Bowl ad and security risks of QR codes

Coinbase's Super Bowl LVI commercial brings light to QR code security.

from Cyber Security News https://ift.tt/xjiXJ8z

U.S. data breach volume increased 10% in 2021

Data breaches hit 2,932 U.S. organizations in 2021, according to the 2021 Year End Report: Data Breach QuickView from Risk Based Security and Flashpoint. From the top targeted sectors to common attack vectors, examine the cybersecurity trends here.

from Cyber Security News https://ift.tt/6ltnaXE

Three network security principles for businesses to adopt in 2022

This year, organizations need to focus on three priorities when addressing network device vulnerabilities.

from Cyber Security News https://ift.tt/CItXd4M

San Francisco 49ers hit by Blackbyte ransomware

The San Francisco 49ers were hit by BlackByte ransomware over the weekend.

from Cyber Security News https://ift.tt/87OzEXZ

Four mobile cybersecurity threats to watch in 2022

Four mobile cybersecurity threats that businesses need to be on the lookout for in 2022.

from Cyber Security News https://ift.tt/VwXM7or

96% of companies struggle to protect data from insider risk

Insider risk presents a threat to U.S. organizations during the Great Resignation, according to the 2022 Annual Data Exposure Report from Code42.

from Cyber Security News https://ift.tt/x64gGhW

NIST updates software supply chain security guidance

Cybersecurity experts weigh in on the National Institute of Standards and Technology (NIST)'s updated guidelines for maintaining software supply chain security.

from Cyber Security News https://ift.tt/K0ReOdZ

4 ways to improve software supply chain security

Four recommendations to improve software supply chain security. 

from Cyber Security News https://ift.tt/VpG6zkF

Cybersecurity risks at this year's Olympics and Super Bowl

This February, two of the biggest in the sports world will occur concurrently: the Winter Olympic Games and the Super Bowl. Cybercriminals could use a broad range of cyber activities to disrupt these events. 

from Cyber Security News https://ift.tt/vGanHgb

CISA adds 15 new vulnerabilities to exploit catalog

The Cybersecurity and Infrastructure Security Agency (CISA) has added 15 new vulnerabilities to its Known Exploited Vulnerabilities Catalog.

from Cyber Security News https://ift.tt/iK1SaIO

53% of hospital IoT devices have security vulnerabilities

The State of Healthcare IoT Device Security 2022 report shows cybersecurity professionals how to best protect IoT devices in healthcare environments.

from Cyber Security News https://ift.tt/T7eY4WZ

Over 22 billion records exposed in 2021

There were 4,145 publicly disclosed data breaches that exposed over 22 billion records in 2021, approximately 5% fewer than 2020. 

from Cyber Security News https://ift.tt/eZNCmEx

Runli Guo named Chief Information Security Officer at Gett

Runli Guo has joined business travel firm Gett as the new Chief Information Security Officer (CISO).

from Cyber Security News https://ift.tt/zFpiNUt

The evolving standards for online accountability in 2022

The “metaverse” is no longer a far-off concept in Sci-Fi novels. With this new reality, here are four evolving areas to watch as online platforms grapple with new and growing abuse vectors and the new phase of accountability.

from Cyber Security News https://ift.tt/JHrRMDI

DOJ seizes $3.6 billion in stolen cryptocurrency

The U.S. Department of Justice seized $3.6 billion in stolen cryptocurrency, making this the largest financial seizure in the DOJ’s history.

from Cyber Security News https://ift.tt/uPSAQ7H

Listen to Karen Worstell, Senior Cybersecurity Strategist at VMware, talk eliminating cyber vulnerabilities and burnout

Listen to a new podcast episode featuring Karen Worstell, Senior Cybersecurity Strategist at VMware. Drawing from her own experience as Chief Information Security Officer (CISO) at Microsoft and AT&T, Worstell discusses her career accomplishments as a security executive and how cyber leaders can manage burnout in their organizations.

from Cyber Security News https://ift.tt/XHe5u2c

Consolidation and automation key as cybersecurity becomes a competitive edge in 2022

Organizations must fortify their security foundation for the coming year and shore up security in existing infrastructure with these four approaches.

from Cyber Security News https://ift.tt/Yx3eKTc

Raynor Dahlquist named SVP of Booz Allen Hamilton national security

Cybersecurity leader Raynor Dahlquist rejoins Booz Allen Hamilton as a Senior Vice President leading the organization's national security sector.

from Cyber Security News https://ift.tt/ShHckXi

Garrett Yee, DISA's Assistant Director, to close out 35-year career

Army Maj. Gen. Garrett Yee, assistant to the director of the Defense Information Systems Agency, is scheduled to retire April 28, closing out a 35-year career.

from Cyber Security News https://ift.tt/XozhBRr

Swissport operations impacted by ransomware attack

Swissport flight operations were disrupted after a ransomware attack took down IT systems.

from Cyber Security News https://ift.tt/VEvu9Uk

Cyber center launches manufacturing security training

The Texas Manufacturing x Transformation Hub (TxMx Hub) will launch cybersecurity training and compliance programs for students, employees, government officials and organizations focused on securing manufacturing environments.

from Cyber Security News https://ift.tt/dOjL3W0

China linked to News Corp cyberattack

News Corp said it had been hacked and had sensitive data stolen from journalists and other employees. The attack was likely conducted to gather intelligence to benefit China’s interests.

from Cyber Security News https://ift.tt/YhGE40L

RSA Conference Asia Pacific Japan cancelled in 2022

The RSA Conference Asia Pacific Japan (APJ) has been cancelled for 2022, citing the effects of the COVID-19 pandemic.

from Cyber Security News https://ift.tt/xCPR0hy

IRS facial recognition raises privacy concerns

The U.S. Internal Revenue Service (IRS) announced the implementation of mandatory facial recognition in order to access some government services. This may increase cybersecurity and data privacy risks.

from Cyber Security News https://ift.tt/ONbPDXh

DHS launches first Cyber Safety Review Board

The U.S. Department of Homeland Security (DHS) announced the establishment of the first-ever Cyber Safety Review Board (CSRB), a public-private initiative that will bring together government and industry leaders to elevate the nation’s cybersecurity.

from Cyber Security News https://ift.tt/W6A5eLJ

Cybersecurity institute launches scholarship for veterans and underrepresented groups

Infosec Institute has launched a $225,000 scholarship program to support the cybersecurity education of veterans, students, and underrepresented groups including people of color, the LGBTQ+ community and women looking to enter the cyber field.

from Cyber Security News https://ift.tt/z2fZNDQna

3 tips to offset security challenges created by the Great Resignation

 Three ways security leaders can counteract insider risks brought on by the Great Resignation.

from Cyber Security News https://ift.tt/ipgLGwOnf

5 minutes with Jason Lee, Zoom CISO: Top 4 cybersecurity trends for 2022

Security sits down with Jason Lee, chief information security officer (CISO) at Zoom, to discuss his top four cybersecurity predictions for 2022.

from Cyber Security News https://ift.tt/g0CMYi3Nu

SBA announces $3 million for small business cybersecurity

State governments can apply for funding through the Small Business Administration's Cybersecurity for Small Business Pilot Program to support small business cybersecurity across the United States.

from Cyber Security News https://ift.tt/adcWeJTfE

90% of security leaders face internal cybersecurity skills shortage

Internal skills represent the single most significant barrier to strategy execution for 43% of cybersecurity leaders, according to new research.

from Cyber Security News https://ift.tt/9cVo1SphE

Ben Schommer named CISO at Magnet Forensics

Ben Schommer has been named Chief Information Security Officer at Magnet Forensics.

from Cyber Security News https://ift.tt/cbWtdMKJp

Check out Episode 9 of The Cybersecurity and Geopolitical Podcast — Russia: The Global Protagonist

In Episode 9 of The Cybersecurity and Geopolitical Podcast, Ian Thornton-Trump, Chief Information Security Officer (CISO) at Cyjax, and Gareth Corfield, Security and Legal Correspondent at The Register, review the current conflict between Russia and Ukraine and discuss the ongoing “cyber war” in the region.

from Cyber Security News https://ift.tt/QBzTqbX7s

Making sense of federal cybersecurity critical infrastructure guidance

The Cybersecurity and Infrastructure Security Agency (CISA) has issued best practices around nine cybersecurity goals for control systems in response to the 2021 Presidential Memorandum. Let’s unpack what’s involved in the CISA guidelines, who should be paying attention, and the steps your company may need to take now.

from Cyber Security News https://ift.tt/20TZRjxzm

Oil and supply firms disrupted by cyberattack

Oiltanking GmbH Group and Mabanaft Group — two companies involved in storing and supplying oil and other materials —  have been hit by a cyberattack that has disrupted operations in Germany. 

from Cyber Security News https://ift.tt/Am7KxBcvn

Antonio Anderson named VP of Information Security and IT at Somos

Antonio Anderson has been named the new Vice President of Information Security and IT at Somos, a registry management firm.

from Cyber Security News https://ift.tt/9EWa6xXIl