Category: Cybersecurity Insiders

Can a cyber-attack induce societal panic in the United States? According to Jen Easterly, the Director of the Cybersecurity and Infrastructure Agency (CISA), the answer is yes. Easterly suggests that China has the capability to execute such attacks, potentially causing…

Read more →

The growth of our digital footprints has resulted in concerns about online identity security. Traditional passwords systems have become outdated, creating fertile ground for increasingly sophisticated cyber threats. On this Change Your Password Day, we should not only change our…

Read more →

Orange España, the second-largest mobile operator in Spain, fell victim to a cyber-attack earlier this month, resulting in a disruption of mobile services lasting over three hours. Subsequent investigations by a group of security researchers unveiled that the assailants, identified…

Read more →

In response to the surge in ransomware attacks over the last couple of years, the Australian government introduced legislation in 2022 prohibiting companies from making ransom payments. Despite this prohibition, a recent survey conducted by Cohesity, a firm specializing in…

Read more →

In an era dominated by digital connectivity, the importance of robust cybersecurity cannot be overstated. As organizations navigate the complex landscape of cyber threats, having a precise and effective response plan for handling cybersecurity incidents is crucial. This article provides…

Read more →

Schneider Electric, a French-based company specializing in automation and energy management, recently fell victim to a Cactus Ransomware attack, resulting in the unauthorized access and theft of corporate data. The breach targeted Schneider Electric’s Electric Resource Advisor Cloud Platform, leading…

Read more →

[By Dan Benjamin, CEO and Co-Founder of Dig Security (acquired by Palo Alto Networks)] Large Language Models (LLMs) and generative AI were undoubtedly the biggest tech story of 2023. While the ever-changing nature of AI makes it difficult to predict…

Read more →

With the current threats to cyber stability around the world, there’s never been a greater urgency for cybersecurity professionals than now. Organizations are investing more time, money and talent to detecting and mitigating cyberattacks. The result is a boom in…

Read more →

Memcyco Inc, the real-time digital impersonation detection and prevention solution provider, and Deloitte, the leading consulting, advisory, and audit services firm, today announced their strategic partnership in the cybersecurity sector. The partnership enables Deloitte to extend this range of solutions…

Read more →

Aembit, the Workload Identity and Access Management (IAM) platform that enables DevOps and security teams to discover, manage, enforce and audit access between workloads, today announced the availability of a new integration with the industry-leading CrowdStrike Falcon® platform to give…

Read more →

Elon Musk’s company, Neuralink, has achieved a remarkable feat in replacing human brains with computer chips, allowing individuals to control electronic devices through neural signals, eliminating the need for physical movement. This breakthrough holds significant promise for those with permanent…

Read more →

Welcome to the world of data privacy, where safeguarding your digital life takes center stage! Every year, on the 28th of January, we celebrate Data Privacy Day – a global initiative dedicated to spreading awareness and championing best practices in…

Read more →

A hacking group affiliated with the Ukrainian government, known as BO Team, has asserted responsibility for the erasure of data from more than 280 servers connected to Planeta, a Russian meteorological and satellite service provider. Security experts’ preliminary analysis indicates…

Read more →

The Biden Administration, responding to requests from various think tanks, has implemented a ban on the utilization of resources from U.S. Cloud Companies by China for AI training purposes. This mirrors a similar move made by China under the leadership…

Read more →

In an era dominated by mobile technology, ensuring the security of consumer mobile devices has become paramount. Various certifications play a crucial role in establishing the trustworthiness of these devices, assuring users that their personal data and digital interactions are…

Read more →

Generative AI has gained widespread adoption globally, finding application in customer service support and supply chain advisory roles. However, a study presented in the Cisco 2024 Data Privacy Benchmark reveals that approximately 27% of organizations have implemented a ban on…

Read more →

Citizens residing in the European Union are facing challenges in settling fines sent by Transport for London (TFL), with penalties ranging from £1000 to £6000 or more. The concern lies not only in the imposed fines but also in the…

Read more →

In the ever-evolving landscape of digital threats, cybersecurity mis-configurations have emerged as a significant vulnerability that can expose organizations to serious risks. Ensuring the security of your systems and networks requires proactive measures to prevent misconfigurations. Here are the top…

Read more →

Kansas City Area Transportation Authority Faces Ransomware Attack on IT Infrastructure The Kansas City Area Transportation Authority (KCATA) has fallen victim to a digital attack on its IT infrastructure, suspected to be the work of a ransomware spreading gang, according…

Read more →

As companies increasingly embrace digital transformation, the cybersecurity threat environment constantly evolves. However, there is a notable shortage of skilled cybersecurity leaders. This is where the CISSP certification from ISC2 plays a crucial role in bridging this gap. Achieving this…

Read more →

Retail ERP systems are typically integrated with other key business systems, including eсommerce platforms, procurement and HR software, CRM, and POS tools. This turns them into centralized hubs for retail information, including customer information, payment data, purchase histories, customer preferences,…

Read more →

In today’s digital age, nearly one in ten individuals possesses a Facebook account, and a comparable user base is anticipated for Instagram, now under the ownership of Meta, the parent company of Facebook. However, the revelation that these platforms extensively…

Read more →

The UK’s GCHQ cyber arm, the National Cyber Security Centre (NCSC), is warning of an imminent surge in AI-based ransomware threats over the next two years. The intelligence and security agency of the United Kingdom emphasizes the critical need for…

Read more →

Global Sanctions Imposed on Russian-Linked REVIL Ransomware Operator Governments of Australia, UK, and the United States have jointly sanctioned Alexander Gennadievich, a hacker associated with the Russian-linked REVIL Ransomware group. Gennadievich’s involvement in the Medibank data breach has raised international…

Read more →

In the ever-evolving landscape of cybersecurity, organizations face a multitude of threats that can compromise their sensitive data and operations. While external threats from hackers and cyber criminals are well-recognized, there’s an often-underestimated risk that originates from within – the…

Read more →

In the face of escalating global cyberthreats, the demand for cybersecurity professionals has skyrocketed. Research highlights a need for 3.4 million additional experts in this field. The ISC2 Certified in Cybersecurity (CC) certification, offered by the globally renowned ISC2, is…

Read more →

Amazon France Logistique, a subsidiary of the American retail behemoth Amazon Inc., has been hit with a substantial fine of $35 million or €32 million by the Commission Nationale Informatique & Libertes (CNIL), the French data protection authority. The penalty…

Read more →

OpenAI’s ChatGPT, renowned for its conversational capabilities and vast knowledge, has recently taken a proactive stance in light of the upcoming general elections in various nations, including India and the United States. In a move to prevent potential misuse, the…

Read more →

In recent times, the landscape of cyber threats has taken a disconcerting turn, deviating from the conventional approach of hackers encrypting computers for ransom. The latest trend involves cyber attackers directly reaching out to impact patients, demanding a ransom ranging…

Read more →

Microsoft revealed on Friday that its corporate email servers were breached by the hacking group Midnight Blizzard, which is believed to be funded by the Russian-sponsored online crime group Nobelium. The cyberattack, which occurred on January 12th, targeted customer data…

Read more →

Network Security protocols are designed to safeguard computer networks from unauthorized access, data breaches, and other cyber threats. And here are some common types of network security protocols:  Secure Sockets Layer (SSL) / Transport Layer Security (TLS): SSL and its…

Read more →

The Importance Of Cloud Security Cloud migration is one of the hottest industry topics right now. Many organizations are rapidly making the transformation to the cloud, and industry professionals are rapidly working to hone their cloud skills. Within all cloud…

Read more →

Unusual but True! According to a recent survey conducted by the Royal United Services Institute (RUSI), ransomware attacks have been found to induce suicidal tendencies in some cybersecurity professionals. The intense psychological and physical stress experienced during the recovery and…

Read more →

In an age where technological advancements are rapidly reshaping our world, the fusion of artificial intelligence (AI) and cyber threats has emerged as a formidable challenge. The weaponization of AI, a technology initially designed to enhance efficiency and innovation, has…

Read more →

In a recent cybersecurity incident, hackers managed to pilfer millions of dollars from the US Department of Health and Human Services through a sophisticated spoofing attack. The cyber-criminals assumed the identities of legitimate fund recipients, skillfully engaging with health department…

Read more →

Lorem Ipsum is simply dummy text of the printing and typesetting industry. Lorem Ipsum has been the industry’s standard dummy text ever since the 1500s, when an unknown printer took a galley of type and scrambled it to make a…

Read more →

In recent times, educational institutions have frequently fallen victim to cyber-attacks, with universities, schools, and other facilities being targeted. However, amidst the usual narrative of cyber vulnerabilities, a recent incident stands out as students and staff collaborated to thwart a…

Read more →

Fujitsu, a Japanese multinational company specializing in software and technology services, has issued an apology in response to the IT scandal that unfolded within the UK Post Office. The company is currently facing allegations that its IT staff, tasked with…

Read more →

The upcoming United States Presidential Elections in November 2024 have prompted Microsoft to take decisive action against the spread of misinformation and deepfakes. Leveraging the power of its AI chatbot, ChatGPT, the tech giant aims to play a pivotal role…

Read more →

In the contemporary business landscape, companies worldwide are increasingly adopting a strategic approach to store and analyze user data within their respective countries, eliminating the necessity to transfer it to foreign servers. Across China, America, Europe, India, Canada, and Australia,…

Read more →

5G technology presents several features and advancements that contribute to creating a more secure and resilient network infrastructure. Here are key aspects highlighting how 5G offers a secure network: 1. Encryption and Authentication: Enhanced Encryption Standards: 5G networks employ advanced…

Read more →

A recently identified hacking group, known as ‘Dawnofdevil,’ has surfaced, claiming responsibility for breaching the web portal of the Indian Income Tax Department. This emerging group entered the hacking scene in December 2023 and gained attention after previously hacking into…

Read more →

The conclusion of the year 2023 witnessed an alarming 55% surge in ransomware attacks, as reported by Cyberint, a company specializing in threat intelligence services. In comparison to the preceding year’s 2034 victims, ransomware gangs targeted approximately 4356 victims in…

Read more →

Quantum Radiology, a diagnostics firm based in Sydney, recently fell victim to a cyber attack orchestrated by a criminal group. The breach, which occurred on November 22nd, 2023, involved the theft of sensitive content followed by the encryption of information.…

Read more →

[By Jaye Tillson, Field CTO at Axis Security] In the vast expanse of cyberspace, few threats cast a darker shadow more than ransomware. This digital desperado wreaks havoc on individuals and businesses alike, holding precious data hostage for a hefty…

Read more →

[By Rahul Kannan, President and Chief Operating Officer, Securin] Critical infrastructure is facing a wave of cyberattacks, posing a severe threat to essential services across the United States and globally. The scale and frequency of these attacks have elevated defending…

Read more →

In the ever-evolving landscape of cyber threats, Medusa Ransomware has taken a bold step by launching a dedicated blog to publish victim details, offering a chilling one-click data sale for $10,000. This notorious group, distinct from Medusa Locker malware, has…

Read more →

As organizations increasingly migrate their operations to public cloud environments, the need for robust security measures has never been more critical. Cloud penetration testing emerges as a crucial component in ensuring the integrity and resilience of systems hosted in public…

Read more →

[By John Spiegel, Director of Strategy & Field CTO, Axis Security] In 2022, 66% of businesses worldwide were impacted by Ransomware in some form.  This may be breach, a 3rd party they depend on was hacked or sensitive data was…

Read more →

Mandiant, a threat intelligence company affiliated with Google Cloud, recently made headlines as it fell victim to a hacking group orchestrating crypto-related phishing campaigns. On January 3rd, 2024, the company faced a significant setback when its official Twitter account, now…

Read more →

Finland’s National Cyber Security Centre (NCSC) has issued a warning concerning a new wave of cyber threats, with hackers now deploying ransomware on Network Attached Storage (NAS) appliances and tape storage media, aiming to obliterate stored information. The Akira Ransomware…

Read more →

Endpoint Security means securing the endpoints connected to/in a network. And here’s a general guide on how to implement endpoint security in true meaning: 1. Assessment and Planning: Assess your organization’s security needs, considering the types of devices used and…

Read more →

In the era of social media, users freely share a plethora of information with their connections and followers, often overlooking the potential threat to their privacy. Opportunistic hackers seize on these vulnerabilities, infiltrating or impersonating accounts and causing significant trouble…

Read more →

Network-connected wrenches used globally are now at risk of exposure to ransomware hackers, who can manipulate their functionalities and gain unauthorized access to the connected networks, according to experts. Research conducted by Nozomi reveals that the Bosch Rexroth Handheld Nutrunner,…

Read more →

As cybersecurity threats continue to evolve at an unprecedented pace, organizations are in desperate need of advanced solutions that can keep up. Cybersecurity vendor MixMode has redefined the art and science of threat detection and response with its groundbreaking MixMode…

Read more →

Hackers have ventured into a novel business tactic that pledges to delete data stolen by ransomware attackers, offering a dubious assurance to victims in exchange for a modest fee, typically ranging from 1-2 BTC. The modus operandi involves certain ransomware…

Read more →

When Vodafone users in the UK found themselves grappling with network downtime on their mobile phones, a segment of them turned to various social media platforms to express their frustration. While many were eager to learn when normal network services…

Read more →

In the age of digital inter-connectedness, social media has become an integral part of our daily lives, enabling us to connect, share, and communicate globally. However, with the convenience and benefits come potential risks to our cybersecurity. As cyber threats…

Read more →

The evolution of network environments towards distributed, cloud-centric architectures in the work-from-anywhere era has brought unique challenges to network security. The industry’s shift to comprehensive cloud-based services like Secure Access Service Edge (SASE), Security Service Edge (SSE), and Secure SD-WAN…

Read more →

[By Gal Helemski, co-founder and CTO at PlainID] There has been a substantial trend toward improvement of authorization capabilities and controls. Policy Based Access Control (PBAC) provided by advanced authorization and access control system is progressively displacing more basic and traditional…

Read more →

In a survey conducted by TrueCaller Insights, it was revealed that over 68,000 Americans fell victim to financial fraud through phone scams in 2022. Voice phishing attacks are an escalating threat and this alarming statistic highlights a pervasive lack of…

Read more →

In 2023, the BlackCat, also known as ALPHV ransomware group, achieved remarkable success by nearly accumulating $700 million through the encryption of databases. Among its victims were three Fortune 500 companies, numerous financial institutions, and businesses in the hospitality sector,…

Read more →

[By Daniel Barber, CEO and founder, DataGrail] Data privacy is a volatile market. While consumers continue to demand stronger personal data protections, companies are scrambling to keep track of an ever-evolving patchwork of applicable laws and regulations. In this environment, cybersecurity professionals…

Read more →

The Certified Cloud Security Professional (CCSP) is a highly respected cybersecurity certification that addresses the needs of professionals and employers for robust and adaptable cloud security expertise. As cyber threats continue to escalate, the demand for skilled cloud security professionals…

Read more →

In recent times, cybercriminals have shifted their tactics, moving beyond the traditional ransomware attacks on corporate and government networks. Previously, their focus involved encrypting files and demanding ransoms. However, a new and alarming trend has emerged, wherein criminals are now…

Read more →

Accessing an online account typically requires a username and password, but cybersecurity researchers at CloudSEK have uncovered a disturbing trend where hackers can gain unauthorized entry into Google accounts without the need for a password. This illicit method exploits malware,…

Read more →

When a company’s website falls victim to hacking, conventional practice dictates that its IT staff or business leaders seek the assistance of forensic experts in cybersecurity to navigate negotiations with hackers and mitigate the situation. However, the Philippines has taken…

Read more →

In the ever-evolving landscape of cybersecurity, the threat of ransomware looms large. As we step into 2024, the sophistication and frequency of ransomware attacks continue to rise, making it imperative for individuals and organizations to adopt proactive measures to defend…

Read more →

[By Neal Humphrey, VP Market Strategy at Deepwatch] Anyone following the deployment of self-driving cars knows the technology is proving far from foolproof. In the most recent development, the New York Times found that employees at the General Motors-owned autonomous…

Read more →

23andMe, renowned for its DNA testing and analysis services, has issued a statement placing blame on its users for a data breach that occurred last year. The genomics company openly admitted that its users were not adequately securing their accounts…

Read more →

Over the recent days, the FBI and various law enforcement agencies have been inundated with emails claiming bomb threats targeting Capitol buildings throughout the United States. Authorities express their frustration in attempting to trace the culprits behind these threats, as…

Read more →

Becoming a cybersecurity analyst typically requires a combination of education, skills, and practical experience. Here’s a general guide to the qualifications needed for this role: 1. Educational Background: Bachelor’s Degree: Many employers prefer candidates with a bachelor’s degree in a…

Read more →

SentinelOne, a leading provider of AI-based enterprise security solutions, has recently revealed its plans to acquire PingSafe, a specialized application security firm, in an undisclosed cash and stock deal. The primary goal behind this strategic move is the seamless integration…

Read more →

In recent months, a staggering 29 malware families have been discovered targeting approximately 1800 banking applications worldwide. This revelation, based on a comprehensive survey conducted by security firm Zimperium, involved insights from over 2000 respondents spanning 61 countries. Outlined in…

Read more →

Attention to all Chinese-origin students currently participating in exchange programs in the United States: Be aware that there is a growing threat of ‘Cyber Kidnapping’ targeting individuals who are not vigilant. Hackers have been contacting parents in China, pressuring them…

Read more →

[By Andrew Hural, Director of Managed Detection and Response, UnderDefense] Through the rise of Artificial Intelligence (AI), increased cyberwarfare and new emerging technologies, the security landscape has evolved significantly, with new threats emerging and existing ones growing in sophistication. Cybersecurity…

Read more →

Securing virtual machines (VMs) in cloud computing environments is crucial to ensure the confidentiality, integrity, and availability of your data and applications. Here are some general guidelines to help you secure VMs in the cloud: 1.Update and Patch Regularly: Keep…

Read more →

[By Adam Goldfeld – Technology Team Lead at Classiq] Today’s media narrative around quantum computing’s role in cybersecurity is overwhelmingly negative, because quantum computers will render today’s encryption standards redundant, leaving much of our data at risk of being decoded.…

Read more →

Over the recent Christmas weekend, a thought-provoking discussion emerged among tech enthusiasts on Reddit, sparking concerns about the Tesla AI Robots designed for manufacturing. The conversation, initially initiated in November, gained momentum when an engineer was reportedly attacked by a…

Read more →

Effective cybersecurity leadership is vital for organizations worldwide. It requires a combination of technical expertise, strategic vision and effective communication to create a security-conscious culture that withstands the challenges of today’s digital world. Cybersecurity leaders embed security across operations, rapidly…

Read more →

Recently, the court systems of Victoria State in Australia fell victim to a cyberattack, and suspicions point towards a Russian ransomware gang. The IT staff of the court systems reported a fraudulent infiltration on December 21, 2023, revealing that audio…

Read more →

Hackers have recently intensified their efforts to pilfer digital information pertaining to students, encompassing a wide array of sensitive data such as health records, attendance information, homework, grades, medical details, photos, disciplinary records, educational records, home communication information, assignments, and…

Read more →

In an era dominated by digital advancements, businesses and organizations face an ever-growing threat from cyber attacks. The importance of having a robust cyber attack response plan cannot be overstated. A well-crafted plan not only helps mitigate potential damage but…

Read more →

Microsoft-owned ChatGPT, developed by OpenAI, remains officially inaccessible in China. However, an intriguing turn of events reveals that hackers within the country have managed to exploit the service through VPNs. These cyber criminals successfully deployed ransomware, encrypting servers within a…

Read more →

In today’s modern era, the concept of privacy in our daily lives seems elusive, given the widespread sharing of personal details on various social media platforms. From Facebook and Instagram to WhatsApp, Twitter, and even the notorious Telegram, users often…

Read more →

In the era of digital transformation, businesses are increasingly leveraging cloud computing services to enhance agility, scalability, and efficiency. However, the paramount concern for organizations considering a move to the cloud is the security of their data and operations. This…

Read more →

During the holiday season of Christmas 2023, a ransomware attack targeted the Ohio Lottery, causing disruptions to its operations. The gaming company is currently in the process of recovering its encrypted data and is consulting with security experts to expedite…

Read more →

The Telegram messaging app has emerged as a hub for criminal activities, serving as a platform for data exchange among various illicit networks. Criminals, ranging from drug and child traffickers to cybercriminals, are increasingly utilizing Telegram to facilitate their nefarious…

Read more →

In recent times, we’ve been inundated with countless stories about ransomware attacks and the extortion demands posed by cyber-criminals. However, a new facet of cyber-crime has emerged, taking the form of a twist in the aftermath of a ransomware assault…

Read more →

In an increasingly digital world, the threat of identity theft looms large, making it imperative for individuals to be proactive in detecting potential breaches and implementing effective mitigation measures. This article delves into key strategies for identifying identity theft and…

Read more →

As per a report featured in the Wall Street Journal, there has been a notable surge in China’s illicit acquisition of extensive datasets designated for training Artificial Intelligence (AI) tools in the United States. The apparent objective behind this activity…

Read more →

The month of November 2023 witnessed a surge in ransomware victims, with criminal gangs taking advantage of the holiday season. The combination of a thin IT staff and the Christmas holidays created an opportune environment for companies to fall prey…

Read more →

Britain is poised to conduct facial recognition checks on its 50 million drivers in the upcoming year, with the aim of leveraging this initiative to apprehend criminals based on images captured in the CCTV surveillance database. The Home Office and…

Read more →

Ubisoft, the France-based video game publisher, recently announced that its in-house threat monitoring software successfully thwarted a ransomware attack that occurred on December 20th of this year. Despite this security success, the company is actively investigating a potential data breach…

Read more →

In today’s digital age, the security of personal and sensitive information is of utmost importance. Cyber Threats, such as information stealers, pose a significant risk to individuals and businesses alike. Information stealers are malicious software designed to surreptitiously gather and…

Read more →

[By Andy Grolnick, CEO, Graylog] In the past couple of years, there has been explosive growth in API usage as API-related solutions have enabled seamless connectivity and interoperability between systems. From facilitating data exchange to cross-platform functionality, companies with an…

Read more →

BSNL, or Bharat Sanchar Nigam Limited, a government-funded telecommunications service provider operating nationwide in India, has recently fallen victim to a cyber attack resulting in the exposure of records belonging to more than 2.9 million users. The alleged perpetrator, a…

Read more →

As the festive season is just a couple of days ahead, the joy of giving and receiving is accompanied by an unfortunate increase in scams targeting unsuspecting holiday shoppers. Scammers are adept at exploiting the spirit of generosity and the…

Read more →

The initial American entity providing title and other insurance services recently experienced a cyber attack believed to be a variant of ransomware. While the insurance company acknowledged service disruptions on its website, it refrained from explicitly stating that the incident…

Read more →

[By Greg Hatcher, Founder & CEO — White Knight Labs] Remote work surged in popularity out of necessity during the COVID-19 pandemic but seems to be here to stay, thanks to its unique advantages. One study by Upwork estimates that…

Read more →