cybersecurity

One in Three IT Organizations Have No Cyberattack Incident Response Plan

Despite increases in ransomware attacks, ransom amounts and how often payments are made, new data shows organizations aren’t responding in kind and putting response plans in place. As expected, we’re continuing to see data corroboration around the rise in ransomware attacks this
Read More

The Digital Workplace is a Cybersecurity Disaster

New data reviewing how the 2020 shift to a remote workforce impacted organizational security shows all too well that since the pandemic onset, cybersecurity has become critically worse. We all know IT’s focus during the pandemic was to primarily get the business running remotely.
Read More

New Phishing Scam Uses Fake PPP Loans to Trick Victims into Giving Up Personal Information

Taking advantage of people’s need for financial assistance, these scammers pose as a bank offering “forgivable business loans to individuals impacted by the pandemic.” Nothing says lowlife more than someone who purposely targets those who are already down and out. Those
Read More

Health Care Sees Double the Increase in the Amount of Ransomware Attacks Since November

With an average of 626 ransomware attacks weekly on health care organizations, it’s evident that the bad guys are stepping up their tactics and focus where they believe the money to be. Health care as a target industry has always been somewhere in the top 10 or even top five
Read More

Report: 85% Of Employees More Likely to Leak Files Now Than Pre-Pandemic

According to research released by Code42, 85% of employees are more likely to leak files today than before the COVID-19 pandemic. “By malicious insiders, we are not talking about terrible people who are criminals,” said Joe Payne, Code42’s president and CEO. “More often
Read More

The Most Effective Attacks Are Often the Simplest

The recent Twitter hack shows that devastating security breaches don’t always involve sophisticated actors or methods, according to Rachel Tobac, CEO of SocialProof Security. On the CyberWire’s Hacking Humans podcast, Tobac explained that social engineering only requires an
Read More

Don’t Overlook Policy When Designing Security

There’s no single defense against phishing and other social engineering attacks, according to Kevin O’Brien, CEO and co-founder of email security company GreatHorn. On the CyberWire’s Daily Podcast, O’Brien explained that the social engineering tactics used in phishing attacks
Read More

60% of Organizations are Hit by Cyberattacks Spread by Their Own Employees

The unwitting participant appears to be alive and well, based on new data from security vendor Mimecast. With employees being the source of attack surface expansion, what’s an organization to do? When you think of cyberattacks, the assumption is that it’s a simple matter of “the
Read More

Microsoft: Ransomware Gangs That Don’t Threaten to Leak Your Data Steal it, Anyway

That means you can from now on count a ransomware infection as a data breach with all the consequences that this brings. Moreover, the so-called “human-operated” ransomware gangs have stepped up their attacks amid the pandemic to maximize their ill-gotten profits. In
Read More

Verizon: More Than Half of Users Click on Multiple Phishing Links; Social Engineering, Innovation are Responsible

The latest data from Verizon’s 2020 Mobile Security Index report shows that both consumer and business users make it all too easy for cyberattackers to fool them into becoming a victim. Think about the layered security you have in place today – each solution (whether hardware or
Read More

New DoppelPaymer Ransomware Makes Money Off of You Whether You Pay the Ransom or Not

Taking a page from the Maze ransomware playbook, the creators of DoppelPaymer don’t just encrypt your data; they have found channels to sell it if you don’t pay up. Back in November, Maze ransomware became the first to publish a victim’s data if they didn’t pay the ransom,
Read More

Data Breaches Devastate Small Businesses in 2019 with 10 Percent Closing Their Doors

A new report from the National Cyber Security Alliance sheds some light on how prepared small- and medium-size businesses are and what the aftermath of a data breach really looks like. When 1,000 small business owners open up to talk about cybersecurity, it’s probably a good idea
Read More

Is Cyberinsurance a Reason for the Rise in Ransomware Attacks?

Are cybercriminals counting on the victim’s simple cost-to-benefit decision to have their cyber-insurer pay the ransom? And, if so, are they targeting companies with cyberinsurance? We’ve discussed the rising uptick of ransomware attacks in frequency, sophistication, and
Read More

Corporate Email Creates Unavoidable Risk

It’s impossible to avoid the risk of phishing attacks entirely, since employees still need to do their jobs, as Kelly Sheridan at Dark Reading puts it. Sheridan points to a recent report from Cisco which shows that phishing attacks are increasing in number while getting harder to
Read More

Continuum Report: When it Comes to Cybersecurity, SMBs Put Managed Service Providers on Notice

Think you have your SMB customers on lockdown when it comes to providing cybersecurity solutions? A research report conducted by Continuum and Vanson Bourne indicates that might not be the case…by a longshot. The study, titled “Underserved and Unprepared: The State of SMB Cyber
Read More
12