DataNet Systems suffers data breach

DataNet Systems gas announced that the company experienced a data breach affecting District of Columbia (D.C.) voters, including email addresses.

from Cybersecurity News https://ift.tt/D6k4ZmE

New data reveals the states at highest risk of cybercrime

According to new data, residents of Nevada face a greater susceptibility to cyberattacks compared to those in all other states. 

from Cybersecurity News https://ift.tt/5Ynoi4h

Malware targeting video came users discovered by researchers

A new malware scam was discovered by ReasonLabs, affecting individuals attempting to download torrented versions of popular video games. 

from Cybersecurity News https://ift.tt/3A9kZ2b

FTC bans Rite Aid from using AI facial recognition

The Federal Trade Commission (FTC) banned Rite Aid from using facial recognition technology for surveillance purposes for the next five years.

from Cybersecurity News https://ift.tt/SXdbiz9

Top cybersecurity predictions of 2024

As another year comes to a close, cybersecurity leaders are not only looking back and reviewing the top trends of 2023, but considering what the future holds for 2024.

from Cybersecurity News https://ift.tt/TluJWp9

CISA Releases Key Risk and Vulnerability Findings for Healthcare and Public Health Sector

CISA recently published a cybersecurity advisory which details the agency’s key findings and activities during a Risk and Vulnerability Assessment conducted at a healthcare and public health organization in early 2023.

from Cybersecurity News https://ift.tt/lXMOSsI

77% of financial organizations detected a cyberattack in the last year

According to a recent Netwrix report, 77% of financial organizations detected a cyberattack in the last year, compared to 68% in other industries.

from Cybersecurity News https://ift.tt/7IWs4fy

Henry Schein reports 29K affected in September cyber attack

In a filing with the Maine Attorney General, dental and medical products supplier Henry Schein announced more than 29,000 people were potentially affected from a recent data breach.

from Cybersecurity News https://ift.tt/JjkBaWV

65% of organizations say ransomware concerns impact risk management

Enterprise risk management in the financial sector was analyzed in a report where 65% of organizations say ransomware concerns impact risk management.

from Cybersecurity News https://ift.tt/rUnN2IT

UTSA names David Brown as next NSCC executive director

The University of Texas at San Antonio has announced David Brown as the new executive director of its National Security Collaboration Center (NSCC) and professor of practice.

from Cybersecurity News https://ift.tt/r7kXODh

80% predict burnout will have significant effect on businesses

The global perma-crisis is set to continue to take its toll in 2024, as extreme weather events continue to impact organizations and global instability deepens. 

from Cybersecurity News https://ift.tt/ijnoCIU

66% of employees prioritize daily tasks over cybersecurity

Cybersecurity in the workplace was analyzed in a report, where 66% of respondents flagged completing daily tasks as more crucial than cybersecurity.

from Cybersecurity News https://ift.tt/vKepJo5

Report: 29 malware families targeted 1800 banking apps in 61 countries

Threat landscape shows continued investment by threat actors financially motivated to “follow the money” as banking via a mobile app becomes increasingly ubiquitous.

from Cybersecurity News https://ift.tt/AOLlfaN

Security leaders discuss new SEC disclosure rule as deadline nears

With the Securities and Exchange Commission (SEC) cybersecurity disclosure rule deadlines fast approaching, security leaders are sharing thoughts on the ruling and its effect on the industry.

from Cybersecurity News https://ift.tt/xIrbRjq

39% of security leaders cite phishing as most feared cyberattack

Security leaders were surveyed about cyberattack response. According to the report, 39% indicated phishing is the most feared cyberattack.

from Cybersecurity News https://ift.tt/SsEWuFj

Report: 90% of energy companies experienced a third-party breach

New research reveals that 90% of the world’s leading energy companies experienced a third-party data breach in the past 12 months.

from Cybersecurity News https://ift.tt/yW6EODP

81% of companies had malware, phishing and password attacks in 2023

According to a recent report, 81% of organizations faced malware, phishing and password attacks last year which were mainly targeted at users.

from Cybersecurity News https://ift.tt/tjgI0HO

September 2023 saw more ransomware attacks than all of 2022

According to a recent report by Apple, the total number of data breaches more than tripled between 2013 and 2022, and rose further in 2023.

from Cybersecurity News https://ift.tt/vQeOJxM

Red Roof announces data breach

Red Roof confirmed that the organization experienced a data breach in late September of 2023. The breach did not involve any Red Roof guest data.

from Cybersecurity News https://ift.tt/t6VDTZY

Lack of encryption the primary reason for sensitive data loss

New study reveals that organizations appear to struggle in their ability to assess and remediate data encryption risks and policy violations.

from Cybersecurity News https://ift.tt/E4Zgx6t

The threat landscape in H1 2023

Ransomware, AI and malware featured in top threat actors in H1 2023.

from Cybersecurity News https://ift.tt/JmHOZxw

Employee burnout is on the rise

According to a recent report, 80% of surveyed global risk leaders believe burnout will have a significant impact on businesses in the next year.

from Cybersecurity News https://ift.tt/Tfdze8K

Perception gap exists in what causes cyber incidents & data breaches

A recent study reveals that the media, academia and the general public overestimate the prevalence of system intrusions while underestimating more common causes of cybersecurity incidents and data breaches.

from Cybersecurity News https://ift.tt/ixyomqf

John Denning joins FS-ISAC as Chief Information Security Officer

FS-ISAC has announced the appointment of John Denning as Chief Information Security Officer (CISO) effective as of January 1, 2024.

from Cybersecurity News https://ift.tt/UiZEBXA

47% of organizations monitored supply chain risks monthly or more

According to a report, there was a 26% increase in supply chain breaches in 2022 and 9% of organizations are working with suppliers to fix them.

from Cybersecurity News https://ift.tt/9RxC0MS

Report shows rise in threat actors exploiting remote access software

A new report shows increasing instances of remote access software abuse and the rise of cyber adversaries using password-stealers.

from Cybersecurity News https://ift.tt/q2UjbNx

Jennifer Williams named Vice President, Information Security at HOOPP

Healthcare of Ontario Pension Plan (HOOPP) has announced Jennifer Williams will be the new Vice President, Information Security.

from Cybersecurity News https://ift.tt/gJehIBs

42% of flagged messages are impersonation warnings

According to a report, 42% of organizations say employees with BYOD policies that use tools like WhatsApp have led to new security incidents.

from Cybersecurity News https://ift.tt/o3ikE7S

95% of executives say AI initiatives will fail without training

Organization's readiness for AI was analyzed in a recent report by Pluralsight, finding that employee's AI confidence and experience don't match.

from Cybersecurity News https://ift.tt/DQlaiLd

75% of sports-related passwords are reused across accounts

According to a recent Bitwarden report, 33% of Americans have used a sports-themed password and 75% have reused their sports password across accounts.

from Cybersecurity News https://ift.tt/t1jPG2O

Report shows physical security market embracing cloud & hybrid solutions

A new report shows 44% of end users say more than 25% of their physical security setups are now either in the cloud or use a combination of cloud and on-premises solutions.

from Cybersecurity News https://ift.tt/HEVksdT

Suspected digital shopping fraud up 12% during Cyber Five holiday

A new report highlights global e-commerce fraud that occurred during the start of the 2023 holiday shopping season.

from Cybersecurity News https://ift.tt/ap26jSy

Mobile payment fraud increased in 2023

According to a recent report from BioCatch, mobile banking rates increased to 73% in 2023. This rise has also led to a surge in mobile fraud.

from Cybersecurity News https://ift.tt/kB2ut0X

Data breach affects Michigan healthcare companies

The Michigan Attorney General announced that Corewell Health suffered a data breach affecting Michigan residents, including Social Security numbers.

from Cybersecurity News https://ift.tt/lZucrb0

FTC creates compulsory process for legal issues involving AI

The Federal Trade Commission (FTC) approved a compulsory process regarding fraud investigations involving artificial intelligence (AI).

from Cybersecurity News https://ift.tt/Caj4prW

Anna Mercardo Clark hired as Chief Information Security Officer at Phyllis Lytle

Anna Mercado Clark has been hired as the first Phillips Lytle CISO. Clark has worked in data privacy and cybersecurity for the company for 12 years.

from Cybersecurity News https://ift.tt/IeBVTDE

37% of adults change passwords following a scam

According to a survey by Citi, 27% of U.S. adults have fallen victim to a financial scam despite 90% feeling confident that they could detect scams.

from Cybersecurity News https://ift.tt/lLrV1Tv

Mississippi received the most spam calls per month in 2023

A recent Truecaller report found that Americans receive an average of six spam calls a month, with Mississippi receiving the highest number of calls.

from Cybersecurity News https://ift.tt/VrmDSwj

88% of IT leaders have met compliance requirements

According to a recent report by AppDirect, 45% of IT leaders faced a security breach within the last year and 49% consider human error as top concern.

from Cybersecurity News https://ift.tt/MhgiaN2

Survey shows AI-powered cybersecurity tools adoption uncertainty

A new survey reveals that although security leaders see AI as superior at identifying threats, the widespread adoption of large language models is not likely on the horizon.

from Cybersecurity News https://ift.tt/TMsg5aF

56% of companies educate workers on AI risks

According to a Kolide report on AI, there is a significant gap between the percentage of employees allowed to use AI and those who actually use it.

from Cybersecurity News https://ift.tt/ZFmPrUL

Bots make up 30% of internet traffic

According to a recent DataDome report, 68% of U.S. websites are unprotected against bot attacks and traditional CAPTCHAs are no longer effective.

from Cybersecurity News https://ift.tt/nmVauzE

Phishing makes up 43% of email attacks

According to a recent cybersecurity report by Hornetsecurity, there was a 144% increase in email attacks, with phishing making up 43% of attacks.

from Cybersecurity News https://ift.tt/8vsMSnz

Scott Metro joins Hazeltree as Chief Information Security Officer

Scott Metro has been appointed as Chief Information Security Officer (CISO) at Hazeltree. Scott brings more than 25 years of compliance experience.

from Cybersecurity News https://ift.tt/AG78FXj

Digital fatigue is increasing cyber risks in modern workplaces

A new report reveals 54% of today’s office workers are ignoring important cybersecurity alerts and warnings due to information overload from digital communication.

from Cybersecurity News https://ift.tt/lAhB5Xz

DHS CISA release joint guidelines for secure AI system development

 CISA and the NCSC jointly released Guidelines for Secure AI System Development to help developers of any systems that use AI make informed cybersecurity decisions at every stage of the development process. 

from Cybersecurity News https://ift.tt/sqLMIig

E-commerce is used a lure for 43% of phishing attacks

According to a Kapersky report, there were over 30 million phishing attacks in 2023, increasing during holiday online shopping periods.

from Cybersecurity News https://ift.tt/jT5nmWF

FTC announces plans to mitigate AI voice fraud

The Federal Trade Commission (FTC) has announced plans to better protect consumers from artificial intelligence (AI) voice cloning and fraud.

from Cybersecurity News https://ift.tt/vEKmskp

William Wetherill named new DefenseStorm CISO

 After nine years, Robert Thibodeaux, DefenseStorm's Chief Information Security Officer (CISO), will retire and William Wetherill will step in as the new CISO.

from Cybersecurity News https://ift.tt/O3eRNCH

Strong security posture means building effective partnerships

Michael Daniel, President & CEO at Cyber Threat Alliance, discusses sharing threat intelligence with other organizations as well as the challenges faced when establishing effective partnerships in the security industry.

from Cybersecurity News https://ift.tt/E5csVq8

Top 2023 cybersecurity trends of 2023

As another year comes to a close, cybersecurity leaders are looking back and reviewing the top trends of 2023.

from Cybersecurity News https://ift.tt/RJryBUG

66% of employees will shop on mobile phones this holiday season

According to a recent Lookout report, phishing attacks are expected to more than double the week of Thanksgiving as employees spend more time online.

from Cybersecurity News https://ift.tt/DneuAOG

FTC orders communication company to disclose data breaches

The FTC announced that prison communications provider Global Tel*Link Corp will now be required to disclose any future data breaches within 30 days.

from Cybersecurity News https://ift.tt/ZswheJk

Roshan Navagamuwa hired as EVP and Chief Information Officer at AIG

Roshan Navagamuwa has been hired as Executive Vice President (EVP) and Chief Information Officer (CIO) at American International Group (AIG). 

from Cybersecurity News https://ift.tt/gr82IQ7

Businesses that eliminate passwords report better security outcomes

New research shows organizations using passwordless technologies experience the fewest phishing attacks, are more productive and achieve greater levels of employee satisfaction.

from Cybersecurity News https://ift.tt/C7ng0Bq

Report: 46% of SMBs have experienced a ransomware attack

According to a new report, 46% of small-to-medium sized businesses have experienced a ransomware attack.

from Cybersecurity News https://ift.tt/ab2zDNP

46% of SMBs and enterprises have experienced a ransomware attack

According to a ransomware report, almost half of small and medium businesses (SMBs) and enterprises (46% each) have experienced a ransomware attack.

from Cybersecurity News https://ift.tt/W5tazeJ

The holiday season sees a rise in credit card skimming

Holiday shopping often brings increased risk, and organizations aren’t exempt. According to a recent report, credit card skimming is on the rise.

from Cybersecurity News https://ift.tt/9aLtOUb

Q3 2023 sees a rise in botnet activity

According to a Nuspire threat report, there was a surge in botnet activity in Q3 2023, including an increase in activity of nearly 93% over Q2.

from Cybersecurity News https://ift.tt/dgE1HXc

6 steps for protecting small businesses from cyberattacks

The increased shopping during the holiday season often leads to increased cyberattacks affecting both the organization and their consumers. 

from Cybersecurity News https://ift.tt/sxHw3dj

Ransomware reported as a top concern for 64% of consumers

According to a recent ThreatX report, 97% of consumers are concerned that cyberattacks will continue to grow in volume over the next year.

from Cybersecurity News https://ift.tt/Uek2CvH

61% of organizations store sensitive data in multiple locations

According to a recent zero trust and data protection report, one of six organizations experienced multiple losses of data in the past 12 months.

from Cybersecurity News https://ift.tt/XzNi4cm

75% of security leaders say security automation is important

According to a recent ThreatQuotient survey, 75% of security professionals say cybersecurity automation is important, up from 68% last year.

from Cybersecurity News https://ift.tt/gb3SZEG

Malicious Python packages targets developers

New research recently released reveals an increase in malicious code disguised as Python obfuscation packages. 

from Cybersecurity News https://ift.tt/oTpsMum

6% of companies have not had a digital risk cyberattack since 2020

A recent BrandShield survey of chief information security officers (CISOs) found that CISOs reported an average loss of $2.1M USD per cyberattack.

from Cybersecurity News https://ift.tt/tNLprAH

Diana Lovati hired as True Anomaly's first CISO

Diana Lovati was hired as the first CISO at True Anomaly. Lovati has experience with risk management, compliance, IT and data protection.

from Cybersecurity News https://ift.tt/FWTYVn8

Downtime cost of an application DDoS attack averages $6130 per minute

A new report highlights downtime due to a successful application DDoS attack costs organizations an average of $6,130 per minute. 

from Cybersecurity News https://ift.tt/7Lpwx5A

37% of organizations will increase cybersecurity spending

Cloud adoption and cybersecurity spending for small and medium businesses (SMBs) was analyzed in a recent report by DigitalOcean Holdings.

from Cybersecurity News https://ift.tt/OBmHFnv

New report shows 51% rise in QR code phishing for September

As organizations increasingly use QR codes, it seems QR code phishing AKA "quishing" is also on the rise with a 51% increase in September.

from Cybersecurity News https://ift.tt/KthA1MU

39% of software developers say supply chain security is essential

A report found that 70% of developers and 52% of chief information security officers view software supply chain security as a top priority.

from Cybersecurity News https://ift.tt/cWBD65b

Study shows data breaches decreased 84% in US during Q3

The U.S. is still the first most breached country in Q3 2023 despite a decrease in breach count, according to a recent report.

from Cybersecurity News https://ift.tt/w0FD2qG

Report: Business see rise in cyber insurance costs and requirements

A new report reveals that more than 40% of businesses have reported an increased requirement from insurers for cybersecurity tools.

from Cybersecurity News https://ift.tt/iAPvzRx

How to build future security leaders

What challenges do aspiring cybersecurity leaders face? Answer this question and more with George Gerchow, Chief Security Officer at Sumo Logic.

from Cybersecurity News https://ift.tt/2fpehH4

Financial sector prepares for new payment security guidelines

Financial institutions work to improve payment data security.

from Cybersecurity News https://ift.tt/5nXzkrP

Fraud attacks on financial industry call centers rising

A new survey found that fraud attacks on call centers are on the rise, based on growth from 2021 to 2022, with financial industry respondents noting an even more acute increase.

from Cybersecurity News https://ift.tt/WGVgZSx

Data breach and identity protection concerns are at a all time high

According to a report, 73% of respondents expressed concerns about their personal and financial data being at risk during holiday shopping.

from Cybersecurity News https://ift.tt/5LRwMF9

70% of security leaders see software supply chain as top blind spot

According to a cloud native security report by Venafi, 87% percent of security and IT leaders have started moving legacy applications to the cloud.

from Cybersecurity News https://ift.tt/beN2SCa

November is Critical Infrastructure Security and Resilience month

The Cybersecurity and Infrastructure Security Agency (CISA) has announced the kickoff of Critical Infrastructure Security and Resilience Month.

from Cybersecurity News https://ift.tt/U7TVY2X

Researchers discover malicious WhatsApp modification

A malicious WhatsApp spy modification has been uncovered by Kaspersky researchers that clandestinely harvests personal information from its victims.

from Cybersecurity News https://ift.tt/7kIuljg

Almost 70% of children & adolescents have been exposed to cyber risks

According to a recent report by the DQ Institute, nearly 70% of children and adolescents worldwide have been exposed to cyber risks in 2023. 

from Cybersecurity News https://ift.tt/gVh1q4a

Security and privacy ranked second among AI concerns

Consumer trust in artificial intelligence was analyzed in a recent report by dunhumby. Forty-six percent cite security as a grocery use case for AI.

from Cybersecurity News https://ift.tt/qBtOMWr

SolarWinds CISO faces fraud charges for misleading investors

A recent announcement by the SEC reveals SolarWinds Corporation and its CISO are facing charges for fraud and internal control failures relating to allegedly known cybersecurity risks and vulnerabilities related to a 2020 cyberattack.

from Cybersecurity News https://ift.tt/JRe25tE

HHS settles data breach investigation

The U.S. Department of Health and Human Services (HHS) settled healthcare data breach charges alongside the Office for Civil Rights (OCR).

from Cybersecurity News https://ift.tt/RHdUTYM

NSA releases guidelines to mitigate phishing

The National Security Agency (NSA) has partnered with other U.S. agencies to warn against phishing attacks and provide security strategies.

from Cybersecurity News https://ift.tt/WgouM7S

Over half of CISOs measure security program maturity monthly

Chief Information Security Officers (CISOs) were surveyed on their security programs and risk management strategies, including attack response times.

from Cybersecurity News https://ift.tt/AFbvdRP

API open authentication vulnerabilities discovered by researchers

API security vulnerabilities in open authentication (OAuth), including user account information, were recently discovered by Salt Security.

from Cybersecurity News https://ift.tt/JNkOeLP

One in five executives have shared work passwords outside the company

A report found that one in five leaders have shared their work password with someone outside the company and 77% use easy-to-remember password hacks.

from Cybersecurity News https://ift.tt/iwQM9ja

White House announces executive order to manage AI risk

Yesterday, the White House announced a sweeping executive order aimed to manage the risk of artificial intelligence (AI).

from Cybersecurity News https://ift.tt/W8gl3Us

NASCO notifies individuals of a data breach through MOVEit

NASCO announced a data breach. NASCO utilized MOVEit software, which was accessed in late May and the breach was discovered in mid-July.

from Cybersecurity News https://ift.tt/fk35MJ9

FTC says financial institutions must disclose data breaches in 30 days

The Federal Trade Commission (FTC) has amended the Safeguards Rule requiring non-banking financial institutions to report data breaches.

from Cybersecurity News https://ift.tt/vZOTs5c

45% of Americans avoid accessing sensitive information on public Wi-Fi

According to a public Wi-Fi security survey by NordVPN, almost 70% of U.S. respondents prefer mobile internet for public online activities.

from Cybersecurity News https://ift.tt/3V8rDYf

Report shows 1265% increase in phishing emails since ChatGPT launched

A new report reveals a 967% increase in credential phishing attempts year-over-year, the number one access point to organizational breaches.

from Cybersecurity News https://ift.tt/1Dqbh4c

Daily malware activity doubled year over year for small businesses

Small business cybersecurity was analyzed in a recent Comcast report, finding that daily malware activity in 2023 roughly doubled since 2022.

from Cybersecurity News https://ift.tt/y96zWuf

Missouri school district announces data breach

Reeds Spring School District discovered in late September that threat actors had gained access to files between April 26, 2023 and May 18, 2023. 

from Cybersecurity News https://ift.tt/E9Ps2AL

Survey highlights 5 mounting pressures Chief Risk Officers face

A recent survey reveals Chief Risk Officers (CROs) are facing five pressures that require the acceleration in the transformation of the risk function to adapt to change.

from Cybersecurity News https://ift.tt/a0RtiH6

75% of Americans want government regulations for AI

The public perception of AI was analyzed in a recent report by IONOS, finding that 75% of respondents want some form of government oversight.

from Cybersecurity News https://ift.tt/406tEBu

The holiday season leads to a rise in business payment fraud

A payment security report found that three-fourths of business leaders are more concerned about business payment fraud during the holiday season.

from Cybersecurity News https://ift.tt/sJYvnAB

78% of fintech leaders report concern over compliance training

The current risks within the financial technology (fintech) sector and new compliance regulations were analyzed in a recent report by Fenergo. 

from Cybersecurity News https://ift.tt/fS9NiXq

10% of organizations have a formal AI policy in place

Security leaders were surveyed by ISACA on generative AI uses and policies within the workplace, finding 10% of organizations have a formal policy.

from Cybersecurity News https://ift.tt/zh4Ml2G

Cl0p named 'nastiest' malware of 2023

Malware threat actors in 2023 were ranked in a report by OpenText Cybersecurity, finding that the list was topped by four new ransomware groups.

from Cybersecurity News https://ift.tt/C6JkIRm

Connecting the wars: Intel analysis of Israel-Hamas and Russia-Ukraine

In Episode 17 of the Cybersecurity & Geopolitical Discussion from Security magazine, Ian Thornton-Trump, Philip Ingram and Lisa Forte analyze the Russia-Ukraine and Israel-Hamas wars.

from Cybersecurity News https://ift.tt/31CfOBT

Over 80% of security leaders have already received AI email attacks

The impact of AI on email security was analyzed in a recent report by Abnormal Security, finding 98% of security leaders are concerned about AI.

from Cybersecurity News https://ift.tt/9keMqY4

There were 11% more ransomware attacks in Q3 than Q2 2023

A recent global ransomware report by Corvus Insurance found that ransomware attack frequency up 11% over Q2 and 95% year-over-year (YoY).

from Cybersecurity News https://ift.tt/Ng1uKsS

62% of organizations perform vulnerability assessments and audits

Mainframe security was analyzed in a report finding that 51% of organizations run either all or the majority of core applications on the mainframe.

from Cybersecurity News https://ift.tt/7WJPgtl

Cybersecurity concerns grow among physical security professionals

As October brings cybersecurity awareness month into the spotlight, new research reveals that cybersecurity remains a key concern for physical security experts.

from Cybersecurity News https://ift.tt/EF0uwPl

City of Philadelphia discloses data breach

The city of Philadelphia released a notice regarding a data breach that occurred between May and July of 2023, including suspicious email activity. 

from Cybersecurity News https://ift.tt/X60hBEG

FTC works to reduce cross-border fraud

The FTC sent a report to congress in an attempt to extend the Undertaking Spam, Spyware and Fraud Enforcement With Enforcers Beyond Borders Act.

from Cybersecurity News https://ift.tt/3lUG0Dy

48% of organizations predict cyberattack recovery to take weeks

According to a cloud adoption report, 72% of respondents are using generative AI and 74% leveraging public cloud AI and analytics services.

from Cybersecurity News https://ift.tt/47Yd6zE

Over 200 million malicious emails were detected in Q3 2023

According to an email security report, 233.9 million malicious emails were detected in Q3 2023. 150,000 emails displayed previously unknown behaviors.

from Cybersecurity News https://ift.tt/fdXVMsY

39% of individuals use the same password for multiple accounts

According to a recent Yubico survey, 80% of respondents are concerned about the security of their online accounts and 39% admit to reusing passwords.

from Cybersecurity News https://ift.tt/V4uehUN

Phishing emails impersonating HR are on the rise

According to a recent phishing report, nearly one in three users are likely to click on a suspicious link or comply with a fraudulent request. 

from Cybersecurity News https://ift.tt/qovSiT6

Manufacturing is the top industry affected by ransomware in 2023

A recent Q3 ransomware report found a nearly 15% increase in ransomware activity since Q2 due to an increased number of ransomware groups.

from Cybersecurity News https://ift.tt/G5KhwyS

Report: Cyberattacks No. 1 cause of downtime and data loss

A new report reveals cyberattacks are the leading cause of IT downtime and data loss in 2023.

from Cybersecurity News https://ift.tt/054cfpL

Roles of AI, automation and humans in security

Jordan Lippel, Vice President of Sales at ECAMSECURE, discusses how security professionals can stay updated regarding integration of automation and AI into their security operations.

from Cybersecurity News https://ift.tt/1UFOKEB

6% of financial firms are confident in communications compliance

According to a report, 74% of respondents say it’s likely their employees are using unmonitored communications channels, up from 66% in 2022.

from Cybersecurity News https://ift.tt/vajM0DE

63% of organizations restore data after a ransomware attack

According to a recent data recovery report, 63% of organizations successfully restore their data when they experience a ransomware attack.

from Cybersecurity News https://ift.tt/KIxC2Zb

32% of organizations have banned the use of generative AI tools

The security concerns of generative artificial intelligence (AI) use within the workplace were analyzed in a recent report by ExtraHop.

from Cybersecurity News https://ift.tt/DQSkHuI

Report finds majority of enterprises expect an imminent cyberattack

A recently released report reveals more than half of senior leaders have no involvement in their company's cyber cases. 

from Cybersecurity News https://ift.tt/MFBC9Zb

Henry Schein announces data breach

Henry Schein announced that a part of the company's manufacturing and distribution business suffered a data breach on October 14, 2023.

from Cybersecurity News https://ift.tt/0VPuARo

Data privacy among top concerns for workplace generative AI use

Generative artificial intelligence use within the workplace was analyzed in a recent report, finding 9% of organizations feel prepared for the threat.

from Cybersecurity News https://ift.tt/LR4Xtrl

92% of business plan to move to passwordless technology

A recent report found that 55% of IT leaders surveyed feel they need more education on how passwordless technology works and/or how to deploy it.

from Cybersecurity News https://ift.tt/MtGH7ls

18% of African banking apps have vulnerable high severity secrets

The security of African financial service applications were analyzed in a recent report by Approov, finding sensitive data was left vulnerable.

from Cybersecurity News https://ift.tt/eICcPV6

Report uncovers critical cyber threats facing financial industry

A new report sheds light on the distinctive cybersecurity risks facing financial services organizations.

from Cybersecurity News https://ift.tt/1N2hKDe

79% of organizations say bots are more difficult to detect

Bot attacks were analyzed in a recent report by Kasada, finding that bot attacks were becoming increasingly difficult to detect by security teams.

from Cybersecurity News https://ift.tt/TKaPcgq

Encrypted pager use on the rise in healthcare since 2022

Healthcare communication methods were analyzed in a recent report by Spok Holdings, including budget constraints and security concerns.

from Cybersecurity News https://ift.tt/kZHecWh

First half of 2023 sees more ransomware victims than all of 2022

A recent Deep Instinct report found that more victims were affected by ransomware in the first half of 2023 than in the entirety of 2022.  

from Cybersecurity News https://ift.tt/c6GzLmF

Communicating cybersecurity risks with non-security personnel

Listen to the new episode of The Security Podcasts featuring Grayson Milbourne, Security Intelligence Director at OpenText Cybersecurity.

from Cybersecurity News https://ift.tt/UZxiuNC

Survey reveals critical security issues lead to DevOps delays

A report reveals more than 80% of survey respondents indicated a critical security issue in deployed software impacted DevOps delivery schedule in the last year.

from Cybersecurity News https://ift.tt/3oaWd9c

Threat actors exploit HTTP/2 vulnerability

In August of 2023, Cloudflare discovered a zero-day vulnerability developed by an unknown threat actor that exploits the standard HTTP/2 protocol.

from Cybersecurity News https://ift.tt/7zoyAF3

90% of CISOs faced at least one cyberattack in 2022

The security practices of Chief Information Security Officers and Chief Security Officers were analyzed in a recent report by Splunk Inc.

from Cybersecurity News https://ift.tt/ljqs9Sg

Survey: 97% face challenges securing IoT & connected devices

A new report reveals concerns and challenges modern businesses face when establishing digital trust in today’s connected world.

from Cybersecurity News https://ift.tt/aKoFw4I

The evolving cyber threat landscape

Common targets of cyberattacks in Q2 2023

from Cybersecurity News https://ift.tt/thVplya

FTC finds that social media scams lead to more losses than other scams

The Federal Trade Commission (FTC) released data finding that social media-based scams account for more losses than any other contact method. 

from Cybersecurity News https://ift.tt/2YsbJX4

Ahmed Fessi joins Medius as Chief Transformation & Information Officer

Ahmed Fessi was hired as Chief Transformation & Information Officer at Medius. Fessi brings 15 years' of experience with AI, data and cybersecurity.

from Cybersecurity News https://ift.tt/J4EAM1q

AI's role in future advanced social engineering attacks

The combination of AI's adaptive algorithms and data processing capabilities has empowered mal actors to develop complex social engineering attacks.

from Cybersecurity News https://ift.tt/kBQn85t

Canadian organizations unprepared for AI-driven cyber threats

A new survey reveals that Canadian organizations are unprepared to handle and recover from new cyber threats including artificial intelligence.

from Cybersecurity News https://ift.tt/bYD4FCf

Study: 37% intimidated, 39% frustrated with online security

A new survey reveals 39% of participants express frustration and 37% feel intimidated by the process of staying secure online.

from Cybersecurity News https://ift.tt/k2lPNIs

False Amazon callers one of the top phone scams in 2023

Phone call fraud and spam callers were analyzed in a recent report by Hiya, finding Amazon impersonation scams in the top scams of 2023.

from Cybersecurity News https://ift.tt/kILVSyu

Report: Ransomware dwell time hits low of 24 hours

Analysis from new annual report shows ransomware median dwell time has dropped from 4.5 days to less than 24 hours in a year.

from Cybersecurity News https://ift.tt/OPLD9US

69% of generative AI users are concerned their data might be misused

A recent Malwarebytes report found that online threats are affecting consumer behavior as 70% have experienced a cybersecurity threat while online.

from Cybersecurity News https://ift.tt/BVq2Fsl

Ransomware double-extortion attacks increased 72%

Malware, ransomware attacks and network security trends were analyzed in a recent report by WatchGuard, finding a rise in double-extortion attacks.

from Cybersecurity News https://ift.tt/6PYM5iw

Motel One Group discloses data breach

The Motel One Group announced that the company was the target of a cyberattack affecting address data and customer credit card information.

from Cybersecurity News https://ift.tt/OR3ID7M

81% of security leaders say that API security is a higher priority

According to a recent Noname Security report, API security is more of a priority for 81% of security leaders than it was 12 months ago.

from Cybersecurity News https://ift.tt/mjEVnNe

CISA kicks off 20th Cybersecurity Awareness Month

Cybersecurity and Infrastructure Security Agency announced the kickoff of the 20th Cybersecurity Awareness Month.

from Cybersecurity News https://ift.tt/F3x52Al

Financial sector sees rise in digital identity verification

According to a Juniper Research report, the rate of digital identity verification checks is on the rise in response to increased identity theft.

from Cybersecurity News https://ift.tt/CH0qRAj

Healthcare top infrastructure target for cyberattacks

According to the recent KnowBe4 report, healthcare is the top infrastructure topic for ransomware attacks with an increase in cyberattack frequency.

from Cybersecurity News https://ift.tt/03nDhB4

Government shutdown averted: What security leaders can learn

Here security leaders discuss what a government shutdown would mean for security professionals and how it could affect the security industry.

from Cybersecurity News https://ift.tt/zgtXqSW

CISA, NSA, FBI and Japan warn of BlackTech, PRC-linked cyber activity

CISA has recently published a Joint Cybersecurity Advisory about malicious activity by People’s Republic of China (PRC)-linked cyber actors known as BlackTech.

from Cybersecurity News https://ift.tt/QqHJM1r

Security leaders discuss implications as Sony investigates recent cyber attack

Here, security leaders discuss their thoughts on the most recent alleged Sony attack and what lessons can be learned.

from Cybersecurity News https://ift.tt/UjB04tY

Department of Defense overhauls cyber strategy: Experts weigh in

Security leaders discuss recently released unclassified summary of the Department of Defense's classified 2023 Cyber Strategy.

from Cybersecurity News https://ift.tt/dtVZ1KQ

Creating an impactful culture in remote work environment

Jim Barkdoll, CEO at Axiomatics, discusses what initiatives or strategies organizations can utilize to build or maintain an impactful culture in a remote work environment, and more.

from Cybersecurity News https://ift.tt/ZTlPzSx

40% of U.S. security leaders cite malware as threat focus

According to a report from CompTIA, cybersecurity leaders struggle with conflicting challenges and interests when it comes to prioritizing threats.

from Cybersecurity News https://ift.tt/BJDdR7j

CISA releases HBOM framework for supply chain risk management

The CISA released the new Hardware Bill of Materials Framework for Supply Chain Risk Management product from the Information and Communications Technology Supply Chain Risk Management Task Force.

from Cybersecurity News https://ift.tt/T30q5Ps

Report shows cybersecurity budgets increased 6% for 2022-2023 cycle

A new report shows despite economic uncertainty and inflation, security budgets generally continued to rise but at a lower rate than prior years.

from Cybersecurity News https://ift.tt/jD2xG67

85% of IT anticipate leaving their role due to burnout

According to a report, a majority of IT security leaders say that stress has caused them and others to make errors that led to data breaches.

from Cybersecurity News https://ift.tt/qxsOUeI

40% of organizations have hybrid cloud environments

According to a recent report, 75% of respondents are extremely or very concerned about cloud security and 40% have hybrid cloud environments.

from Cybersecurity News https://ift.tt/B4stbSN

75% who didn't report cyber attack to leadership, felt guilty about it

Research finds 40% of organizations have experienced a cybersecurity incident, yet 48% didn't disclose those incidents to the appropriate authorities.

from Cybersecurity News https://ift.tt/LtMITQb

Security leaders weigh in on latest MOVEit data breach

A U.S. educational nonprofit has announced that nearly 900 schools using the organization’s services may have been affected by a recent data breach.

from Cybersecurity News https://ift.tt/RrIVzmj

Report: 79% of organizations confident in ransomware defenses

A recently released ransomware defense report analyzes how security leaders and practitioners view the threat of ransomware and their organizations’ cyber readiness.

from Cybersecurity News https://ift.tt/AYFLUWS

Tim Roemer hired as Chief Security Officer at Global Market Innovators

Tim Roemer has been hired as CSO at Global Market Innovators. Roemer previously served as the Director of the Arizona Department of Homeland Security.

from Cybersecurity News https://ift.tt/Nd7o912

The transformative impact of cryptocurrency on digital fraud investigations

Cryptocurrency's rise has reshaped the landscape of digital fraud investigations, presenting new challenges and opportunities for enterprise security leaders.

from Cybersecurity News https://ift.tt/rqYUieR

Risk management legislation introduced to House of Representatives

The National Risk Management Act, designed to strengthen the defense of critical infrastructure, was introduced to the U.S. House of Representatives.

from Cybersecurity News https://ift.tt/raEuZmb

57% of LockBit victims were organizations with 200 employees or fewer

A Trend Micro Incorporated report found that many ransomware actors are targeting smaller organizations that have 200 or fewer employees.

from Cybersecurity News https://ift.tt/1E6bAYf

97% of organizations take over a month to respond to bot attacks

A recent report by Netacea analyzed the affect of bot attacks and found that the average business loses 4.3%, of online revenues every year to bots.

from Cybersecurity News https://ift.tt/45pEJDG

CISA holds cybersecurity exercise in preparation for Super Bowl LVIII

CISA, NFL, Allegiant Stadium and Super Bowl LVIII partners held a tabletop exercise this week to enhance cybersecurity response capabilities, plans and procedures.

from Cybersecurity News https://ift.tt/5zQH2Pq

Cloud adoption is driving up IT budgets

The impact of cloud adoption on IT teams was analyzed in a report, finding that cloud platforms took up significant portions of IT budgets.

from Cybersecurity News https://ift.tt/RmkOFqZ

Ransomware cyber insurance claims rose by 27%

Cyber insurance claims and trends were analyzed in a recent report finding a 12% increase in cyber claims over the first six months of the year.

from Cybersecurity News https://ift.tt/8JGl2MS

57% of small and medium enterprises experienced a cybersecurity breach

Small and medium enterprises were analyzed in a recent report by Guardz. According to the report, 57% of SMEs have experienced a cybersecurity breach.

from Cybersecurity News https://ift.tt/KOhwNFf

Gaming and financial service applications most likely to be attacked

According to a report, 57% of monitored applications are under attack with no correlation between app popularity and likelihood of being attacked.

from Cybersecurity News https://ift.tt/M0NrYjQ

Nuance Communications announces data breach affecting healthcare

St. Luke's Health Systems in Boise, Idaho informed patients of a data breach involving Nuance Communications and MOVEit Transfer software.

from Cybersecurity News https://ift.tt/96LbO0W

Eric Johnson appointed Chief Information Officer at PagerDuty

Eric Johnson has been hired as Chief Information Officer at PagerDuty. Johnson will oversee critical IT infrastructure with two decades of experience.

from Cybersecurity News https://ift.tt/rmj4X10

FTC charges background check companies for data privacy violations

Two companies are settling Federal Trade Commission charges claiming that they allowed access to background checks without a permissible purpose.

from Cybersecurity News https://ift.tt/3SZY25B

Security leaders share thoughts on MGM cyberattack

Security leaders have shared their thoughts and responses to the recent MGM breach, highlighting the need for stronger cybersecurity measures.

from Cybersecurity News https://ift.tt/uG0y16T

CISA announces open source software security roadmap

New roadmap articulates how CISA will enable the secure usage of open source software within the federal government.

from Cybersecurity News https://ift.tt/Q5g42Op

How do security leaders prepare for quantum computing?

Listen to this episode of The Security Podcasts with Greg Wetmore, VP of Software Development at Entrust, as he discusses quantum computing.

from Cybersecurity News https://ift.tt/zk50VMh

Anna Brackin appointed to Chief Compliance Officer at Regions Bank

Anna Brackin has been appointed to Chief Compliance Officer at Regions Bank. Brackin will oversee the company’s compliance risk management program. 

from Cybersecurity News https://ift.tt/fnMCPQp

Ransomware in top three threats for 65% of organizations

Ransomware and the threat landscape were analyzed in a report finding that nearly 60% of respondent organizations report an impact to regulated data.

from Cybersecurity News https://ift.tt/xt6OGJv

44% of IT leaders describe their organization as secure

A report found that IT leaders believe cybersecurity concerns are negatively impacting their organization’s willingness to invest in innovative tech.

from Cybersecurity News https://ift.tt/sOn62dS

Healthcare looks to AI to prevent drug diversion

Drug diversion is when a healthcare worker takes prescriptions meant for patients either to use or sell, and hospitals are using AI to prevent it.

from Cybersecurity News https://ift.tt/3kzgJx2

47% report economic unrest as greatest security-impacting hazard

According to a recent global security report, economic unrest is expected to be the greatest security-impacting hazard in the next 12 months.

from Cybersecurity News https://ift.tt/CPaOXky

Rising fraud is damaging consumer trust

Consumers reveal how rising fraud impacts their trust in organizations.

from Cybersecurity News https://ift.tt/1fqOeSN

CISA and FBI release joint cybersecurity advisory

CISA, the Federal Bureau of Investigation and U.S. Cyber Command’s Cyber National Mission Force (CNMF) released a joint Cybersecurity Advisory (CSA).

from Cybersecurity News https://ift.tt/F7GhxYp

Anjana Harve named EVP, Chief Information Officer at BJ's Wholesale Club

Anjana Harve has been named Executive VP, Chief Information Officer at BJ's Wholesale Club. Harve has worked as CIO in a variety of organizations.

from Cybersecurity News https://ift.tt/ITSNfzo

Security’s Top 5 – August 2023

In this edition of Security’s Top 5 from Security magazine, we showcase the top stories and new developments from across the security industry throughout August.

from Cybersecurity News https://ift.tt/VFbinNA

60% of organizations faced at least one API related breach

The API threat landscape, including data breaches, sprawl, DDoS attacks and zero trust, was analyzed in a recent report by Traceable AI. 

from Cybersecurity News https://ift.tt/3hPD0Lu

CISA announces secure by design pledge with K-12 education tech providers

CISA announces a voluntary pledge for K-12 Education Technology software manufacturers to commit to designing products with greater security built in.

from Cybersecurity News https://ift.tt/4CU8Sbv

48% of CISOs claim AI security is their biggest concern

 Despite being in a period of economic slowdown, 56% of CISO survey respondents reported an increase in their cybersecurity budget from 2022.

from Cybersecurity News https://ift.tt/YqbIB62

26% of hospitality industry cyberattacks included credential access

According to a report, artificial intelligence, contactless technology and third-party exposures all pose risks to the hospitality industry.

from Cybersecurity News https://ift.tt/GUFYJtP

New report analyses ransomware activity for past 6 months

A new report reveals the most headline-grabbing cyber extortion event in the first half of 2023 was the Clop ransomware group.

from Cybersecurity News https://ift.tt/JM1oBPx

94% of organizations don't have full visibility into service accounts

Identity security was analyzed in a report by Silverfort finding the identity attack surface as the most significant gap in cybersecurity resilience.

from Cybersecurity News https://ift.tt/VpRvfnb

Nominations for Top Cybersecurity Leader 2024 are now open

The submission form for Security magazine's Top Cybersecurity Leaders 2024 is now open until November 17, 2023 with awardees named in March 2024.

from Cybersecurity News https://ift.tt/W3fYlcr

Anti-scraping policies and data privacy

Listen to this episode of The Security Podcasts with Oded Anderman, Program Manager in Meta Platform’s Privacy organization, on data scraping.

from Cybersecurity News https://ift.tt/vqr7jH3

71% of organizations are impacted by cybersecurity skills shortage

According to a recent report on security leaders, a career in cybersecurity is becoming more difficult in an increasingly challenging environment.

from Cybersecurity News https://ift.tt/KIgWdyB

65% of organizations prioritize vulnerabilities based on risk

A recent report by Syxsense shows that 78% of respondents report experiencing an increase in vulnerability volume over the past 12 months.

from Cybersecurity News https://ift.tt/xZXlkMh

Amerita and PharMerica announce data breach

Amerity and parent company announced a data breach that exposed personal information after learning of suspicious activity on their computer network.

from Cybersecurity News https://ift.tt/DsSIXYJ

Malware top consumer threat from May to July 2023

According to a cybersecurity trends report, malware was the top online consumer threat from May to July 2023, accounting for 58% of all detections.

from Cybersecurity News https://ift.tt/ptdvD4P

CISA report: Russian cyber actors using “Infamous Chisel” malware

CISA recently published a joint report on a malware campaign conducted by Russian cyber actors against the Ukrainian military.

from Cybersecurity News https://ift.tt/EmnNfBy

13% of employees admit to falling for phishing attacks working at home

Cyber threats facing remote workers were analyzed in a report by Lookout. The report included phishing campaigns and cybersecurity recommendations.

from Cybersecurity News https://ift.tt/jzUW5mv

58% of malicious emails contained spoof content

According to a VIPRE Security Group report, 85% of phishing emails sent in Q2 2023 utilized malicious links in the content of the email.

from Cybersecurity News https://ift.tt/kI6thDH

Cyber defense makes up majority of cybersecurity budgets

Cyberattacks and risk management were analyzed in a report. When asked, 18% of respondents report cyberattacks threatened or disrupted their business.

from Cybersecurity News https://ift.tt/TqD1UZf

Security leaders report need to balance human and machine identities

The effect of data breaches was analyzed in a recent report by AppViewX and Forrester, including financial costs and decision-maker stress.

from Cybersecurity News https://ift.tt/Zme0WiJ

AMA: Cybersecurity Executive Edition — Andrew Wilder

In this AMA episode from Security magazine, Andrew Wilder, cybersecurity executive and professor at Washington University, discusses security trends.

from Cybersecurity News https://ift.tt/emLYIU4

Marqeta names Heather Gantt-Evans as CISO

Marqeta has announced the appointment of Heather Gantt-Evans as its Chief Information Security Officer (CISO).

from Cybersecurity News https://ift.tt/atQ75lY

86% of organizations using AI agree on need for clear AI guidelines

Organizations' leadership and workforce were surveyed by Conversica on artificial intelligence (AI) use and opinions, including data security.

from Cybersecurity News https://ift.tt/dZQgn1s

CISA publishes resource for migrating to post-quantum cryptography

CISA urges organizations to begin early planning for migration to post-quantum cryptographic standards by developing quantum-readiness roadmaps.

from Cybersecurity News https://ift.tt/rKc86IU

Study finds increase in cybersecurity attacks fueled by generative AI

A new report analyzes stressors caused by generative AI, with 51% of security professionals saying they are likely to leave their job over the next year.

from Cybersecurity News https://ift.tt/UEKeFHW

Gregory Thompson appointed as first CISO at Vantage Data Centers

Gregory Thompson has been appointed as Chief Information Security Officer at Vantage Data Centers. Thompson is the first CISO at the company. 

from Cybersecurity News https://ift.tt/tBpWriv

Key takeaways from BlackHat 2023

The best cyber defenses will only go so far. As Ukraine has shown, cyberattacks are not the only way to take down critical infrastructure.

from Cybersecurity News https://ift.tt/ph9N4ba

University of Tulsa opens cyber research institute

The growing significance of cybercrime and the deficit of cybersecurity workforce fuel the launch of the Oklahoma Cyber Innovation Institute.

from Cybersecurity News https://ift.tt/3NixV0k

There was a 387% increase in attack activity from Q1 to Q2 2023

Global Distributed Denial of Service (DDoS) attacks during the first half of 2023 were analyzed in a recent report by Zayo Group Holdings.

from Cybersecurity News https://ift.tt/VWQe4Si

32% of security leaders struggle with prioritizing improvements

According to a Cloud Security Alliance report, 32% of respondents disclosed that they're struggling with prioritizing security improvements.

from Cybersecurity News https://ift.tt/UKoRZ0m

Gary Perkins hired as Chief Information Security Officer at CISO Global

Gary Perkins has been hired as CISO at CISO Global. In his new role, Perkins will spearhead cybersecurity strategies and risk management initiatives.

from Cybersecurity News https://ift.tt/lJubX9c

IT leaders optimistic about how AI will transform their business

 A new survey of global IT leaders which found that three in four IT leaders are optimistic about the potential benefits of artificial intelligence. 

from Cybersecurity News https://ift.tt/qY7l06K

IT leaders report concern over generative AI in SaaS applications

When asked in a survey how they would feel if a SaaS vendor used generative AI without their knowledge, more than half of IT leaders reported concern.

from Cybersecurity News https://ift.tt/cvfC2wO

Malicious web application transactions increased by 500% in 2023

According to a Radware cyberattack report, the number of malicious web application transactions increased by 500% compared to the first half of 2022.

from Cybersecurity News https://ift.tt/AumKHxt

Social Security Numbers were exposed in 69% of breaches in 2023

According to a recent TransUnion report, Social Security Number has passed date of birth as second most often exposed credential in data breaches.

from Cybersecurity News https://ift.tt/8IpR1vs

91% of security pros say cybercriminals are using AI in email attacks

A recent report reveals that the majority of organizations believe cybercriminals are already using artificial intelligence (AI) in email attacks targeting their organizations.

from Cybersecurity News https://ift.tt/V7Sw4gK

Security leaders report misalignment of investments and risk reduction

Sixty-seven percent of organizations experienced a breach requiring attention within the last two years according to a recent Critical Start report.

from Cybersecurity News https://ift.tt/gACGLXm

Healthcare delivery organizations report concern over malware

Healthcare delivery organizations' (HDOs) cybersecurity was analyzed in a recent report by Asimily, finding concerns over ransomware and malware.

from Cybersecurity News https://ift.tt/DV3nhKN

The evolving generative AI risk landscape

Jeremy Ventura, Director of Security Strategy & Field CISO at ThreatX, discusses challenges associated with the use of generative AI in cybersecurity, and more. in this episode of The Security Podcast.

from Cybersecurity News https://ift.tt/J3eV0iK

Cybersecurity risks found in browser extensions

Browser extension security was analyzed in a recent report by Spin.AI, finding extensions with unknown authors attached to personal email accounts.

from Cybersecurity News https://ift.tt/XeWqR7V

US and UK express interest in cybersecurity education for children

According to ThreatX research, consumers in the U.S. and U.K believe increasing cybersecurity education in schools will help close the talent gap.

from Cybersecurity News https://ift.tt/h3OgB1o

35% of online shoppers trust AI tools to manage their data

In response to FTC concerns over artificial intelligence (AI) and data privacy, consumer opinions on AI were analyzed from a recent Capterra survey. 

from Cybersecurity News https://ift.tt/kMRQ7O9

Brighthouse Life Insurance Company discovers data security event

A life insurance company has notified affected policy holders after sensitive information disclosed in data breach.

from Cybersecurity News https://ift.tt/q6diU5e

Detecting malware cited as a challenge for organizations

According to a report, threat actors leverage malware as an initial foothold to infiltrate targeted infrastructures to gain long-term access.

from Cybersecurity News https://ift.tt/bsuNTnJ

41% of organizations said they can enforce consistent access policies

According to a recent Strata Identity report, 60% of organizations do not have the resources or time to rewrite old, outdated applications.

from Cybersecurity News https://ift.tt/7JcGBYa

New report shows mobile devices are the top endpoint choice for SLED

The SLED focused Cybersecurity Insights Report highlights how leaders are budgeting differently for the industry’s top edge use cases.

from Cybersecurity News https://ift.tt/pBGeKDt

New phishing campaign recognized in Europe and South America

A phishing campaign designed to collect Zimbra user credentials was uncovered by ESET. The campaign has been active since at least April 2023.

from Cybersecurity News https://ift.tt/9Df5rao

Synthetic identity fraud fastest growing financial crime in U.S.

A Deloitte report found that synthetic identity fraud such as deepfakes could trigger the need for more sophisticated biometric security systems.

from Cybersecurity News https://ift.tt/tAxkZfC

CISA hosts nation’s largest annual election security exercise

This week, the Cybersecurity and Infrastructure Security Agency (CISA) hosted the nation’s largest annual election security exercise.

from Cybersecurity News https://ift.tt/6UgeyfN

Over 74% of organizations see a rise in AI use by cybercriminals

According to a recent report, the threat of email attacks generated by AI is growing year over year and is projected to increase exponentially.

from Cybersecurity News https://ift.tt/xscXqRi

CISA posts remote monitoring & management systems cyber defense plan

A new plan published by CISA through JCDC provides a roadmap to address systemic risks by advancing security and resilience of the RMM ecosystem.

from Cybersecurity News https://ift.tt/AdJ0vlg

70% of web applications have severe security gaps

According to a CyCognito report, 74% of assets with personally identifiable information (PII) are vulnerable to at least one known major exploit.

from Cybersecurity News https://ift.tt/dMwzHEX

Report finds exposed sensitive data in more than 30% of cloud assets

A new report reveals that more than 30% of cloud data assets contain sensitive information.

from Cybersecurity News https://ift.tt/EkaR9G8

Scott Sykes joins Asurity as Chief Information Security Officer

Scott Sykes has been hired as CISO at Asurity Technologies. Sykes was previously CISO at Netcracker Technology and Tata Communications.

from Cybersecurity News https://ift.tt/QqjC8AR

22% of BlackHat USA attendants believe AI takeover is already here

BlackHat USA attendants were surveyed by Delinea, finding that of 100 attendees polled, 54% said that "passwordless" is a viable concept.

from Cybersecurity News https://ift.tt/PnyTsgo

67% of government agencies claim confidence in adopting zero trust

A recent Swimlane report analyzed federal agencies' confidence level and adoption of zero trust requirements following a 2022 executive order.

from Cybersecurity News https://ift.tt/oUGKMhN

Security’s Top 5 – July 2023

In this edition of Security’s Top 5, we showcase the top stories and new developments from across the security industry throughout July.

from Cybersecurity News https://ift.tt/u50Gdh3

29% of SMBs admit to tossing IT hardware into landfills

As growing businesses look to upgrade hardware, some are throwing computers, routers and other IT assets into the trash leading to security and environmental concerns.

from Cybersecurity News https://ift.tt/EJZ6BlN

77% of financial firms saw an increase in cyberattack frequency

Cyberattacks against financial organizations were analyzed in a recent report, finding that 77% saw an increase in cyberattack frequency.

from Cybersecurity News https://ift.tt/vqbFfQ7

President Biden signs security technology executive order

In an effort to protect sensitive technology, President Biden signed an executive order on regulating U.S. security technology investments.

from Cybersecurity News https://ift.tt/v3pqSI4

Q2 of 2023 saw a rise in spam calls featuring family impersonations

According to a fraud report, while the overall volume of spam calls declined from Q1, data collected showed that the rate of fraud calls increased.

from Cybersecurity News https://ift.tt/0Za58bP

Security leaders chime in on new SEC disclosure rules

Security leaders discuss the recent vote by Securities and Exchange Commission (SEC) to adopt final rules on cybersecurity disclosure.

from Cybersecurity News https://ift.tt/qKgMae6

Building digital trust in an organization

The importance of digital trust.

from Cybersecurity News https://ift.tt/cNUpwVo

Large-user applications vulnerable to dependency confusion attacks

A OX Security report found applications with more than 1 billion users are using dependencies which are vulnerable to dependency confusion attacks.

from Cybersecurity News https://ift.tt/XpnWoRZ

Social media for research and threat intelligence

 Learn about threat intelligence on this episode of The Security Podcasts with Igal Lytzki, Incident Response team leader at Perception Point.

from Cybersecurity News https://ift.tt/E9TGo6I

Organizations concerned about enterprise security from unsafe VPNs

A recent report reveals that organizations have concerns about their network security due to the risks from VPNs.

from Cybersecurity News https://ift.tt/yrpHE9M

Ensuring data privacy while working remotely

Protecting the personal information of remote executives.

from Cybersecurity News https://ift.tt/6rPbXgC

Financial sector saw an 80% increase in interactive intrusions

Cyberattack trends were analyzed in a recent report by CrowdStrike. The report revealed a massive increase in identity-based intrusions.

from Cybersecurity News https://ift.tt/TP7rSmz

Tom Gorup hired as Edigo Vice President of Security Services

Tom Gorup has been hired as the Vice President of Security Services at Edigo. Gorup has 15 years of experience in the cybersecurity industry.

from Cybersecurity News https://ift.tt/cP8QkJo

Study: Higher education leaders see security as top priority

A new study found that top institutional leaders are increasingly focused on improving both physical and network security.

from Cybersecurity News https://ift.tt/0tBV97r

CISA joins partners to warn of routinely exploited vulnerabilities

A joint advisory urges organizations to implement secure by design practices and prioritize patching known exploited vulnerabilities to reduce risk of compromise.

from Cybersecurity News https://ift.tt/sUBej4o

Rise of AI leads to free training sources

The rise of technology such as artificial intelligence (AI) has led to security leaders looking for ways to educate themselves on its uses and risks. 

from Cybersecurity News https://ift.tt/VlMSxan

White House announces K-12 cybersecurity plans

 The White House has announced steps for providing various resources for K-12 schools to update their cybersecurity practices and report incidents.

from Cybersecurity News https://ift.tt/vexSOTm

Report: US suffers 49.8M leaked accounts in Q2

A recent report shows the United States was the most breached country in Q2 of this yea

from Cybersecurity News https://ift.tt/emXHTD0

On average shareholder value drops 9% year after major cyber incident

A recent report reveals on average, a major cyber incident resulted in a 9 percent decrease in shareholder value in the year following the event. 

from Cybersecurity News https://ift.tt/GPlcU10

Report: 97% of executives access work accounts on personal devices

The majority of executives are using their personal devices for work, creating a “backdoor” for cyber criminals to access large enterprise organizations.

from Cybersecurity News https://ift.tt/CzvIV5r

97% of execs expect firms will be highly impacted by AI in a year

A new report shows that three in four business leaders find generative AI will be a top three emerging technology over the next 12-18 months.  

from Cybersecurity News https://ift.tt/Bh1AY2g

TSA updates gas pipeline cybersecurity guidelines

The Transportation Security Administration (TSA) is updating its security directive and guidelines for oil and natural gas pipeline cybersecurity.

from Cybersecurity News https://ift.tt/E7DPQT9

71% of organizations are using a multi-cloud environment

Cloud use and migration was analyzed in a recent report showing that 59% of organizations moved workloads back on-premises from the cloud.

from Cybersecurity News https://ift.tt/zPCEDZu

91% IT leaders are better protected with PAM, seek affordable solutions

A new report reveals 56% of IT leaders tried to deploy a PAM solution but did not fully implement it, and 92% cited overly-complex solutions as the main reason.

from Cybersecurity News https://ift.tt/e95WNlz

Cyberattack response times are accelerating

According to a recent Immersive Labs report, organizations saw an accelerated cyberattack response time, from 29 days to 19 days from 2021 to 2022.

from Cybersecurity News https://ift.tt/42Fswo9

Business email compromise attacks outpace malware

A recent Abnormal report analyzed the increase in third-party application usage and increase in email attacks in the first half of 2023.

from Cybersecurity News https://ift.tt/YIQuW7O

Report finds governments, public services facing 40% more cyberattacks

A new report highlights a 40% increase in cyberattacks targeting government agencies and the public services sector.

from Cybersecurity News https://ift.tt/GuvDtc0

MacOS malware discovered on Russian dark web forum

Hidden virtual network computing (hVNC) malware specifically targeting macOS was identified by Guardz on the Russian dark web forum Exploit.

from Cybersecurity News https://ift.tt/ofzdrwi

10% of expired certificates on the internet pose a security threat

A  survey found that nearly 80% of transport layer security (TLS) certificates on the Internet are vulnerable to Man in the Middle (MiM) attacks.

from Cybersecurity News https://ift.tt/fc7yKr0

Report finds 164% increase in cyber threats targeting brands

A new report reveals an increase in key personnel and corporate social media impersonation accounts, among other threats targeting brands.

from Cybersecurity News https://ift.tt/QEtx6pf

Fredrick Lee named Reddit’s Chief Information Security Officer

Fredrick “Flee” Lee has been named Reddit’s new Chief Information Security Officer (CISO).

from Cybersecurity News https://ift.tt/nl9mLDf

Between 80- and 95% of cyberattacks begin with phishing

A recent Comcast Business report pulls data from 23.5 billion cybersecurity attacks and found that attacks come from internal and external sources.

from Cybersecurity News https://ift.tt/PDKsv9f

Marshall Erwin hired as Chief Information Security Officer at Fastly

Marshall Erwin has been hired as Chief Information Security Officer at Fastly. Erwin was previously Chief Security Officer at Mozilla. 

from Cybersecurity News https://ift.tt/hQgX5Us

Security leaders discuss CISA advisory of IDOR web app vulnerabilities

Security leaders talk about a new advisory released by CISA which warns of web applications about insecure direct object reference (IDOR) vulnerabilities.

from Cybersecurity News https://ift.tt/8xrR1dg

Danny Rittman named CISO at Avant Technologies, Inc.

Avant Technologies, Inc. announced the appointment of Dr. Danny Rittman as Chief Information Security Officer (CISO).

from Cybersecurity News https://ift.tt/sh30uvH

FTC warns against online tracking technology for healthcare providers

Hospitals and telehealth providers have been warned by the FTC and the Office for Civil Rights (OCR) regarding online tracking technology.

from Cybersecurity News https://ift.tt/IMs2Ej6

85% of security leaders cite complexity as wide area network challenge

The increasing rise of hybrid and remote work has risen the demand for secure access service edge (SASE), according to a recent report.

from Cybersecurity News https://ift.tt/8LGMk4Y

Legal industry expresses AI concerns

The legal industry's response to artificial intelligence (AI) was analyzed in a recent report by Litify, finding that there were privacy concerns. 

from Cybersecurity News https://ift.tt/hcPIfoR

Elizabeth Davies joins Verkada as Chief Privacy Officer

Elizabeth Davies has been hired as Chief Privacy Officer at Verkada. Davies will oversee Verkada's privacy and government affairs programs.

from Cybersecurity News https://ift.tt/vTkilYF

Report reveals new information about Akira Group connection to Conti

New research dives into the Akira ransomware group, including the group’s recent victim focuses, tactics and affiliation with Conti.

from Cybersecurity News https://ift.tt/VPKYqFj

Harry Cocker, Jr. nominated for National Cyber Director

President Biden has nominated Harry Cocker, Jr. for National Cyber Director. From 2017 to 2019, Coker served as the Executive Director of the NSA.

from Cybersecurity News https://ift.tt/5MsitJe

84% of financial institutions were exposed to a fourth-party breach

According to a recent report by SecurityScorecard, 78% of financial institutions experienced a third-party data breach in the past year.

from Cybersecurity News https://ift.tt/L3C0fyB

Chad LeMaire hired as Chief Security Officer at Echelon Risk + Cyber

Chad LeMaire has been hired as CSO at Echelon Risk + Cyber. LeMaire is a senior cybersecurity executive and CIO with more than 30 years of experience.

from Cybersecurity News https://ift.tt/Ehl8sgj

90% of SOC analysts believe current threat detection tools are effective

The new 2023 State of Threat Detection Research Report provides insight into the “spiral of more” that prevents security operations center (SOC) teams from effectively securing their organizations from cyberattacks.

from Cybersecurity News https://ift.tt/2meygnk

Travel and tourism sector ranked third in cyberattack incidents

With increased digitalization comes greater vulnerability to cyber threats, making cybersecurity a top priority for lodging and aviation companies.

from Cybersecurity News https://ift.tt/FUsLwVd

67% of organizations not confident in cyberattack recovery

According to a survey by Cohesity, 45% of respondents confirmed their business had been the victim of a ransomware attack in the prior six months.

from Cybersecurity News https://ift.tt/obVQpxu

Cyber threat report reveals misalignment between execs & security analysts

A new global study finds 70% of cybersecurity executives think all alerts are being handled while front-line roles report only 36% are handled.

from Cybersecurity News https://ift.tt/xPYMCfr

70% financial services, insurance companies suffer API security delays

A new report reveals nearly 70% of financial services and insurance companies have suffered rollout delays due to API security.

from Cybersecurity News https://ift.tt/oLiI6DA

Report: US and UK executives grapple with evolving data privacy laws

As global data privacy compliance increases in scope and complexity, only about half of executives feel “very prepared” to meet regulatory requirements in the United States, United Kingdom and European Union. 

from Cybersecurity News https://ift.tt/HlYRhW6

FI$Cal names Benson as new Chief of Information Security

The Department of Financial Information System for California (FISCal) has hired Jennifer Benson as the new Chief of the Information Security Office.

from Cybersecurity News https://ift.tt/09akohP

Q2 observed more ransomware events than Q1

Ransomware attacks in Q2 was analyzed in a recent report by GuidePoint Security and shows a 38% increase in public ransomware victims compared to Q1.

from Cybersecurity News https://ift.tt/GaWpSh1

CISA and Microsoft partner to expand access to logging capabilities

 A collaboration between CISA and Microsoft, will now expanded cloud logging capabilities at no additional charge to customers, enhancing cyber defense and incident response.

from Cybersecurity News https://ift.tt/yxuHXqh

Banks reveal concern over insider threats

A report highlights the most prominent threats visible on the dark web including posts on dark web forums, insider threats and supply chain attacks.

from Cybersecurity News https://ift.tt/xFBEVL7

2022 ransomware attacks declined in number but grew in sophistication

A recent report finds that state, local and educational organizations, despite having lower profiles, are still at risk of a cyberattack.

from Cybersecurity News https://ift.tt/vtobiX4

Financial services industry sees rise in public cloud storage

A report highlights how financial services organizations have embraced the cloud in response to the pandemic-fueled movement toward remote work.

from Cybersecurity News https://ift.tt/Uco7mhi

GoTo names Attila Török as new Chief Information Security Officer

GoTo recently announced the appointment of Attila Török as Chief Information Security Officer (CISO).

from Cybersecurity News https://ift.tt/MqsPe5Z

Digital maturity is a growing factor in cybersecurity practices

A report finds that the U.S. security landscape changed significantly in 2022, with breaches declining in number but increasing in size.

from Cybersecurity News https://ift.tt/3aerAwi

Accreditation Commission for Education in Nursing reveals data breach

The Accreditation Commission for Education in Nursing announced they were contacted by an unknown user claiming to have accessed the computer network.

from Cybersecurity News https://ift.tt/MTDB8cS

Applications open for SIA 2023 Women in Security Forum scholarship

The Security Industry Association is accepting applications for the 2023 SIA Women in Security Forum Scholarship, an initiative led by the SIA Women in Security Forum.

from Cybersecurity News https://ift.tt/MhQUzYJ

Australia updates cybersecurity measures after government breaches

Following a series of data breaches, the Australian government is working to improve its cybersecurity measures and data breach notification rules.

from Cybersecurity News https://ift.tt/GcMI9Sr

Protecting the Cloud

One of the technologies that has been instrumental in facilitating smart buildings has been the emergence of “the cloud.”

from Cybersecurity News https://ift.tt/WFNVnxQ

12% of organizations experienced a breach while using new solutions

According to a survey of RSA and InfoSec attendants, 63% of the 219 respondents now use cloud-native security tools to monitor and protect data.

from Cybersecurity News https://ift.tt/1SYo5It

White House announces cybersecurity implementation plan

The White House has released a cybersecurity plan that outlines over 60 federal initiatives including cybercrime and building a cyber workforce. 

from Cybersecurity News https://ift.tt/Iu4CJyb

2% of organizations feel confident with current security strategies

With at least 75% of organizations upgrading infrastructure and 78% increasing security budgets, a new report highlights disparity between infrastructure upgrades, spending and security improvements.

from Cybersecurity News https://ift.tt/1DihrGR

Small and home office router malware discovered by researchers

A new malware that targets small and home office (SOHO) routers has been discovered by Lumen Technologies. The malware has been named "AVrecon".

from Cybersecurity News https://ift.tt/ZMAHLbm

54% of organizations struggle with shadow IT

IT and security leaders were surveyed on malware readiness. The report found that security leaders are concerned about malware compromising data.  

from Cybersecurity News https://ift.tt/qPfIcH2

Report: Edge computing in healthcare is taking off

In a new report, focused on the healthcare industry, found the primary use case was tele-emergency medical services.

from Cybersecurity News https://ift.tt/s69FV5R

Hackers: Generative AI unlikely to replace human cybersecurity skills

A new report finds that 72% of hackers believe artificial intelligence (AI) will not replace the creativity of humans in security research and vulnerability management.

from Cybersecurity News https://ift.tt/d1War9V

Maneet Singh hired as Chief Information Officer at Odyssey

Maneet Singh has been hired as Chief Information Officer at Odyssey Logistics & Technology Corporation. Singh comes with over 20 years of experience.

from Cybersecurity News https://ift.tt/7TIqpy1

Cybersecurity researchers identify new ShadowVault malware

A new malware has been identified by Guardz. The malware known as 'ShadowVault' is capable of stealing sensitive data from macOS-based devices.

from Cybersecurity News https://ift.tt/VctGmoq

Cybersecurity is top concern for education technology leaders

A recent report by the Consortium for School Networking (CoSN) analyzed the cybersecurity priorities of education technology (EdTech) leaders. 

from Cybersecurity News https://ift.tt/xeJB1uK

Lee Buttke hired as Managing Director and CISO at AgileBlue

Lee Buttke has been hired as Managing Director and Chief Information Security Officer (CISO) at AgileBlue. Buttke brings threat mitigation experience.

from Cybersecurity News https://ift.tt/bH9zy83

85% of organizations are adopting multicloud strategies

A report reveals a large multicloud skills gap, underscoring how critical cloud skills development is for organizations.

from Cybersecurity News https://ift.tt/CrhlNz9

13% of businesses continuously monitor third-party vendor security risks

A new report shows that 13% of organizations continuously monitor the security risks of their third parties.

from Cybersecurity News https://ift.tt/kP28Gxu

Experts discuss cyber attack at Japan's largest port

Operations came to a halt after Japan’s largest port, Port of Nagoy, was hit with a ransomware attack earlier this week.

from Cybersecurity News https://ift.tt/caQBpwj

AI and machine learning have been added to financial crime programs

A report found that 69% of global executives and risk professionals worldwide expect financial crime risks to increase over the next 12 months. 

from Cybersecurity News https://ift.tt/Fi5yX3U

iHealth Solutions settles HIPAA violation charges

iHealth has settled with the Office for Civil Rights over potential Health Insurance Portability and Accountability Act (HIPAA) privacy violations.

from Cybersecurity News https://ift.tt/lSyE8j1

CISA updates election security team

Cait Conley, Senior Advisor to the Director, will take on additional responsibilities supporting CISA’s election security efforts.

from Cybersecurity News https://ift.tt/CVdqLAu

39% of businesses faced a cloud environment data breach last year

A recent cloud security study found that more than a third (39%) of businesses have experienced a data breach in their cloud environment last year.

from Cybersecurity News https://ift.tt/350VAwu

Pepsi Bottling Ventures announces data breach

Pepsi Bottling Ventures suffered a data breach in late 2022. The breach may have involved information of current and former employees.

from Cybersecurity News https://ift.tt/mTfSMED

Report reveals new browser-based social engineering trends

A new report shows that three of the four new malware threats in the Q1 2023 top 10 list have originated in China and Russia.

from Cybersecurity News https://ift.tt/OCnc9sK

75% of businesses report security as an increasing priority

A report found that 75% of businesses report that security is a growing priority and they are spending more in security related areas than in 2022.

from Cybersecurity News https://ift.tt/fsh5xAI

31% of breaches are being identified later

A report from Gigamon analyzed the difference between how secure an organization perceives itself to be and how secure it actually is.

from Cybersecurity News https://ift.tt/L2S0MsO

Enterprise SIEMs miss 76% of all MITRE ATT&CK techniques used

According to industry analysts, the SIEM continues to be the "operating system of the SOC" and is not going away anytime soon.

from Cybersecurity News https://ift.tt/HxwMcPg

Security leaders discuss NSA guide to mitigate BlackLotus threat

The National Security Agency (NSA) is warning of a known vulnerability in the Microsoft Windows secure startup process that malicious actors could use to bypass Secure Boot protection and execute BlackLotus malware.

from Cybersecurity News https://ift.tt/1LomHdQ

Las Vegas makes cybersecurity updates

Las Vegas is updating its cybersecurity and will switch to a hybrid multi-cloud environment to protect sensitive data and critical infrastructure.

from Cybersecurity News https://ift.tt/mQCXIAM

Financial fraud prevention strategies

Michael Jabbara, Vice President, Head of Global Fraud Services at Visa, covers the evolution of the financial fraud landscape and more in this episode of The Security Podcast.

from Cybersecurity News https://ift.tt/C9sgiFk

CISA releases cloud services guidance and resources

CISA has recently released the first series of final security guidance resources under the organization's Secure Cloud Business Applications (SCuBA) project.

from Cybersecurity News https://ift.tt/GptH5lc

Security leaders say cloud platform misconfiguration is biggest threat

A new survey highlights that security professionals view misconfiguration of cloud platforms or improper setup ranks as the most significant security threat.

from Cybersecurity News https://ift.tt/wLAiHOS

81% of organizations have implemented policies around generative AI

Despite security concerns about generative artificial intelligence, businesses are looking to implement the technology within their organizations.

from Cybersecurity News https://ift.tt/rGpTuv9

Ransomware attacks affect consumer behaviors

Forty percent of consumers are skeptical of organizations' ability to protect their data adequately according to a report by Object First. 

from Cybersecurity News https://ift.tt/is23V1f

Top 10 risky behaviors of employees uncovered

A new infographic reveals the top 10 risky behaviors that employees have engaged in on their work devices.

from Cybersecurity News https://ift.tt/1pPGw23

52% of reported breaches came through third-party partners

According to a report by ForgeRock, identity theft and fraud remains a top concern for security leaders as it leads to large data breaches.

from Cybersecurity News https://ift.tt/2D8IWmQ

Survey shows disconnect in cloud security perception vs. readiness

While many security professionals leverage high-risk practices and behaviors in their cloud environments, they are confident security tools will protect against attacks. 

from Cybersecurity News https://ift.tt/obtSAY7

John Hopkins University suffers data breach

Johns Hopkins University and Johns Hopkins Health System suffered a cyberattack that may have impacted sensitive personal and financial information.

from Cybersecurity News https://ift.tt/mrwKFGX

40% of IT workers admit to working 50 hour weeks consecutively

IT leaders were surveyed by Kaseya about IT operations and management. Forty-five percent of respondents prioritize the improvement of IT security.

from Cybersecurity News https://ift.tt/3NXsKBO

87% of web-based businesses faced two or more threats at the same time

According to a report, 45.127 billion web application attacks were detected and blocked throughout 2022, an increase of 96.35% compared to 2021.

from Cybersecurity News https://ift.tt/N2BZYGU

Report: 15% of law firms feel they have security gaps

Recent research reveals that around 15% of law firms felt they had security gaps, while more than double that number have endured some form of breach. 

from Cybersecurity News https://ift.tt/cBGKj3t

14% of CISOs have desired traits for cyber expert board positions

New research has revealed that 14% of CISOs have the desired traits for cyber expert board positions. 

from Cybersecurity News https://ift.tt/xB7URtK

DOJ announces new cyber unit to prosecute nation-state threat actors

The Justice Department recently announced the creation of the new National Security Cyber Section — known as NatSec Cyber — within its National Security Division. 

from Cybersecurity News https://ift.tt/2UFLgDw

63% of IT leaders measure IT success by reduced risk

A recent survey looks at the biggest challenges facing IT leaders of large organizations and their approach to modernizing their IT department. 

from Cybersecurity News https://ift.tt/fR9G1vt

92% of survey respondents are concerned about compromised credentials

IT and cybersecurity professionals were surveyed on passwordless authentication and how it would impact their organizations' credential security.

from Cybersecurity News https://ift.tt/EKws2xm

36% of government IT does not have a documented disaster recovery plan

The experience and habits of IT departments when it comes to ransomware and data recovery were analyzed in a recent report by Arcserve. 

from Cybersecurity News https://ift.tt/pJnIbAm

Digital-first economy introduces unforeseen risks for 89% of CISOs

A new survey shows CISOs struggle to cost justify security investments despite known security gaps, face increasing personal risks, and worry about the rapid adoption of AI.

from Cybersecurity News https://ift.tt/gs23XEC

Philadelphia healthcare facility suffers ransomware attack

Philadelphia healthcare facility Vincera has issued a notice following a ransomware attack in April of 2023 that compromised patient data.

from Cybersecurity News https://ift.tt/IxqSTpd

Untrained users are biggest flaw in organizations cyber defense layer

A recent report reveals that 33.1% of employees are likely to click on a suspicious link or comply with a fraudulent request. 

from Cybersecurity News https://ift.tt/M6qvFo8

Vulnerable information is discovered within minutes by cybercriminals

Cybercriminal habits were analyzed in a recent report by Orca Security that reveals that attackers typically find exposed secrets in two minutes.

from Cybersecurity News https://ift.tt/QS6bW4t

Illinois hospital attributes closure to ransomware attack

In what seems to be the first announcement of its kind, two rural healthcare facilities closed last week citing a ransomware attack as part of the reasons why.

from Cybersecurity News https://ift.tt/qp5KUmS

Security leaders discuss the spread of MOVEIt vulnerability

It has been several weeks since the MOVEit vulnerability began making headlines, but the span of organizations and governmental entities being affected by related data breaches have continued to grow. 

from Cybersecurity News https://ift.tt/mPyWzHT

Louisiana Office of Motor Vehicles suffers data breach

The Office of Motor Vehicles (OMV) in Louisiana suffered a MOVEit data breach. MOVEit is a third party data transfer service used to send large files.

from Cybersecurity News https://ift.tt/xnUsVcu

Howell named Georgia Tech interim VP for Information Technology CIO

Leo Howell, CISO at Georgia Tech, has been selected interim Vice President for Information Technology and Chief Information Officer for the Institute. 

from Cybersecurity News https://ift.tt/9lStB5o

FTC charges genetic testing organization for privacy concerns

Genetic testing firm 1Health has been charged by the Federal Trade Commission (FTC) for leaving personal genetic and health data unsecured. 

from Cybersecurity News https://ift.tt/mS5uQO2

75% of OT organizations had at least 1 intrusion in the last year

A new report shows three-fourths of operational technology organizations reported at least one intrusion in the last year, with 56% from malware and 49% from phishing.

from Cybersecurity News https://ift.tt/XfcQhYm

Public sector application flaws increased in last 12 months

According to research by Veracode, public sector applications tend to have more flaws and vulnerabilities than private sector applications. 

from Cybersecurity News https://ift.tt/zDhgyPZ

Josh Lemos appointed as GitLab Chief Information Security Officer

GitLab Inc., has recently announced the appointment of Josh Lemos as Chief Information Security Officer (CISO).

from Cybersecurity News https://ift.tt/tlhB1yM

42% if IT professionals aren't fully prepared for AI

According to a survey, 42% if IT leaders believe existing IT infrastructure is not fully prepared for the demands of AI, despite widespread adoption.

from Cybersecurity News https://ift.tt/ld65fGv

Lack of trust reported as top security challenge

Security leader's trust in an organization and their employees' ability to prevent a cyberattack was analyzed in a recent report by Kroll. 

from Cybersecurity News https://ift.tt/wLSJ2d4

Managing MDM threats to protect an organization

This episode of The Security Podcasts focuses on MDM threats and features AJ Nash, VP and Distinguished Fellow of Intelligence at ZeroFox.  

from Cybersecurity News https://ift.tt/VKzbhv5

Hoxhunt names Petri Kuivala as Chief Information Security Officer Advisor

Hoxhunt has announced the appointment of Petri Kuivala as Chief Information Security Officer (CISO) Advisor. 

from Cybersecurity News https://ift.tt/m8ZfMHT

Matt Hillary hired as VP, Security and CISO at Drata

Matt Hillary has been hired as VP, Security and Chief Information Security Officer at Drata. Hillary brings more than 15 years of security experience.

from Cybersecurity News https://ift.tt/3hjPTqO

Report highlights key threats disrupting businesses

A new report highlights the top threats observed in the first half of 2023, and emerging cybersecurity trends impacting the healthcare and financial services industries. 

from Cybersecurity News https://ift.tt/NLy4mtU

47% of organizations struggle with detecting and mitigating threats

A new study reveals 70% of IT leaders in financial services reported a significant increase in data breaches compared to previous years.

from Cybersecurity News https://ift.tt/b5PMVUO

68% of organizations expect employee churn-driven cyber issues in 2023

A new report shows how the tension between difficult economic conditions and the pace of technology innovation influences the growth of identity-led cybersecurity exposure.

from Cybersecurity News https://ift.tt/oAcmDeB

Bank fraud warnings are the most common text scam

According to research by the Federal Trade Commission, the most common form of text message scam reported to the FTC were false bank fraud warnings.

from Cybersecurity News https://ift.tt/cbJ6N7f

Use of multi-factor authentication nearly doubles since 2020

A new report reveals the use of MFA has nearly doubled since 2020 and that phishing-resistant authenticators represent the best choice in terms of security for users.

from Cybersecurity News https://ift.tt/cviVDdG

10% of CISOs and IT professionals manage cybersecurity in-house

Security spending trends and priorities of Chief Information Security Officers (CISOs) and IT professionals were analyzed in a report by Nuspire. 

from Cybersecurity News https://ift.tt/V48dhvm

Brown & Brown, Inc. appoints Barry Hensley as CSO and Rob Burch as CISO

Brown & Brown, Inc. has announced the appointment of Barry Hensley as Chief Security Officer and Rob Burch as Chief Information Security Officer.

from Cybersecurity News https://ift.tt/DGXHK7f

Report: 55% of organizations have experienced a SaaS security incident

A new survey found while the use of cloud services is increasing, the pace of adoption is dependent on the speed of meeting security and operational expectations.

from Cybersecurity News https://ift.tt/n5Oeq9s

48% of security leaders say distributed workforce influences spending

The quick development of artificial intelligence and new technologies has led security leaders to consider how to implement them in cybersecurity.

from Cybersecurity News https://ift.tt/jRub0oy

37% of IT professionals report experiencing a data loss event

Best practices for data protection were analyzed in a report finding that 25% of IT professionals follow industry best practices for backing up data.

from Cybersecurity News https://ift.tt/InAc8St

FTC charges Amazon for keeping children's voice recordings

Amazon will be required to overhaul how it deletes data and implement new privacy guidelines following FTC and Department of Justice charges.

from Cybersecurity News https://ift.tt/ZQq3GTR

BBC and other organizations targeted in recent MOVEit vulnerability

Organizations from around the world, including the BBC and British Airways, have been warned that stolen data will be published if demands aren’t met in a recent hack.

from Cybersecurity News https://ift.tt/1Pw7Hye

82% of security leaders believe cloud automation critical

A recent survey from NetApp looks at how IT decision makers feel about the ways their organizations are working to optimize their environments.

from Cybersecurity News https://ift.tt/tdTKBcD

Security leaders expected to expand threat management budgets

To better navigate emerging risks and the current threat landscape, security leaders are expanding cybersecurity budgets to protect organizations. 

from Cybersecurity News https://ift.tt/Qdn1uXz

Verizon 2023 Data Breach Report shows rising cost of ransomware

A new report reveals ransomware remains one of the top cyberattack methods making up 24% of all breaches.

from Cybersecurity News https://ift.tt/J8S4Fud

57% of financial organizations use multiple cloud service providers

Cloud adoption continues to increase within the financial services sector with the majority reporting that they're using some form of cloud computing.

from Cybersecurity News https://ift.tt/7q0xYbG

What security leaders can learn from Smashing Pumpkins hacker attack

While stealing music from a band might not be equal to obtaining and releasing customer personal information, there are still lessons to learn from this incident.

from Cybersecurity News https://ift.tt/ZAWtFCj

Security leaders plan for changing IT roles

IT professionals find themselves in hybrid roles that combine traditional development with tasks formerly associated with operations professionals.

from Cybersecurity News https://ift.tt/1X4DoFE

66% of organizations have increased their investment in SaaS apps

According to a survey, 58% of organizations estimate their current SaaS security solutions only cover 50% or less of their SaaS applications.

from Cybersecurity News https://ift.tt/DT2NeEn

90% of CISOs say certifications improved security confidence

According to a report focusing on Chief Information Security Officer (CISO) perspectives, 50% identified cloud security as their top concern. 

from Cybersecurity News https://ift.tt/5EANdP9

Report: Advanced phishing attacks grew 356% in 2022

A new report analyzed the most prevalent cyberattack trends and identified an 87% increase in the total number of attacks over the course of last year.

from Cybersecurity News https://ift.tt/SwmIgjv

Maria Milosavljevic named next CISO at ANZ

ANZ announced Maria Milosavljevic has been appointed CISO, replacing Lynwen Connick, who will retire in October after six years as ANZ’s CISO.

from Cybersecurity News https://ift.tt/JwFu9Vy

FTC: Ring failed to stop hackers from accessing users' cameras

Under the proposed FTC order, Ring is prohibited from profiting from unlawfully accessing consumers videos and must pay $5.8 million in consumer refunds.

from Cybersecurity News https://ift.tt/PdDwO61

7,500 fraudulent pharmaceutical listings were taken down in 2022

Pharmaceutical fraud targeting patients and organizations was targeted in a recent report by BrandShield and the Pharmaceutical Security Institute. 

from Cybersecurity News https://ift.tt/1uwvS9m

How organizations can protect against phishing campaigns

With cybersecurity threats on the rise, there are two crucial steps an organization can take to avoid falling victim to a credential phishing attack.

from Cybersecurity News https://ift.tt/wxtkCWA

52% of consumers confident in detecting deepfake videos

 According to a recent artificial intelligence (AI) and technology report, consumers appear to overestimate their ability to spot deepfakes.

from Cybersecurity News https://ift.tt/ahcrlbd

89% of businesses report concern over new privacy regulations

Organizations must ensure only the right people have access to the right data and that malicious actors don't gain access to sensitive information.

from Cybersecurity News https://ift.tt/6bg9rHX

68% of organizations suffered a cyberattack in past year

A new report reveals that 68% of organizations suffered a cyberattack within the last 12 months.

from Cybersecurity News https://ift.tt/Abr4f0C

New York Attorney General seeks fine over Sport Warehouse data breach

Online sporting goods retailer Sports Warehouse must pay the state of New York 300,000 in penalties for a data breach affecting 2.5 million consumers.

from Cybersecurity News https://ift.tt/Y3ieAx0

Advisory warning issued for PRC state-sponsored cyber activity

The NSA and Central Security Service released a threat advisory which highlights a cluster of activity being attributed to a China state-sponsored threat group.

from Cybersecurity News https://ift.tt/ynQ5z8f

93% of organizations have database management tools in place

A survey indicates that most organizations are not planning to make changes to their database strategies over the course of the next three years.

from Cybersecurity News https://ift.tt/6yFnj4V

CISA releases updated #StopRansomware guide

The updated #StopRansomware Guide provides best practices and resources to help organizations reduce the risk of ransomware incidents.

from Cybersecurity News https://ift.tt/N8gZcnL

Ransomware is being excluded from cyber insurance policies

According to a recent report, some cyber insurance policies aren't covering ransomware attacks as the volume of attacks continues to rise.

from Cybersecurity News https://ift.tt/K6m8W7Y

79% of organizations expect ransomware attacks this year

A new report reveals that a majority of organizations believe that a ransomware attack is moderately to extremely likely to occur within the next 12 months.

from Cybersecurity News https://ift.tt/I0wuLCv

Online pharmacy PillPack suffers data breach

An unauthorized user accessed online prescription company PillPack's customer email addresses and passwords to log into their online accounts.

from Cybersecurity News https://ift.tt/OJrE2cs