Today Salt Security have released the findings from their latest Salt Labs State of API Security Report, Q1 2023, which found that there has been a 400% increase in unique attackers (over 4800) in the last six months. The report…
Category: IT SECURITY GURU
Cato Networks Recognised as Leader in Single-Vendor SASE Quadrant Analysis
Today, Cato Networks has been named the Leader in the Single-Vendor SASE Quadrant Analysis published in TechTarget. “We’re honoured to be identified as the Leader in single-vendor SASE market,” says Shlomo Kramer, CEO and co-founder of Cato Networks. “Cato introduced the…
Back and Bigger Than Ever! The Inside Man Season 5 Takes a Stab at Power Hungry Adversaries
As important as it is, cybersecurity awareness training might not seem like the most exciting thing in the world, but when it involves plots to rival your favourite network crime dramas, expertly crafted cinematography, and characters to root for? Naturally,…
New Research Examines Traffers and the Business of Stolen Credentials
Today, Outpost24 released a new report revealing the underground operation of Traffers, cybercriminal organisations reshaping the business of stolen credentials. The Rising Threat of Traffers report, compiled by Outpost24’s Threat Intelligence team, KrakenLabs, provides a deep dive into the credential…
How to Succeed As a New Chief Information Security Officer (CISO)
As cyber threats increase in frequency and complexity, organizations recognize the importance of having a Chief Information Security Officer (CISO) to protect their sensitive data and infrastructure. To succeed as a new CISO, it’s essential to clearly understand the…
The Importance of Data Security and Privacy for Individuals and Businesses in the Digital Age
The Covid-19 pandemic has changed the world significantly. Businesses have now realized that the world needs to be digitized. It is mainly why the trend of brick-and-mortar stores is nearly over and businesses are now switching to digital modes, creating…
Cymulate’s 2022 Cybersecurity Effectiveness Report reveals that organizations are leaving common attack paths exposed
Cymulate, the leader in cybersecurity risk validation and exposure management, today released the company’s “2022 Cybersecurity Effectiveness Report” which analyzed the results of over a million security posture validation assessments, including 1.7 million hours of offensive cybersecurity testing within Cymulate’s production environments. The report…
Synopsys discover new vulnerability in Pluck Content Management System
Software security company Synopsys have discovered a new remote code execution vulnerability (RCE) in the Pluck CMS system. Pluck is a content management system (CMS) implemented in PHP designed for setting up and managing your own website. Devised with ease…
Dole confirms employee data was breached following February ransomware attack
This week, Dole Food Company revealed that hackers behind a February ransomware attack have accessed the data of an undisclosed number of employees. “In February of 2023, we were the victim of a sophisticated ransomware attack involving unauthorized access to…
MyCena Improves Customer Data Access Protection in Call Centers and BPOs
MyCena Security Solutions today announced the addition of a new feature to its MyCena Desk Center (MDC) platform, designed to stop credentials theft, fraud and social engineering in call centers, Business Process Outsourcing (BPOs) and customer service centers. Customer service…
Fortune 500 Company Names Found in Compromised Password Data
New research released by Specops Software outlines the most common Fortune 500 company names that show up in compromised password data. The Specops research team analysed an 800 million password subset of the larger Breached Password Protection database to obtain these…
Ferrari Data Breach: The Industry has its say
Apparently, the team at Ferrari may not have been up to speed with the latest ways to ensure your security is top priority. It was announced on Monday via a statement uploaded to their website that Ferrari was “recently contacted…
What Is Observability, And Why Is It Crucial To Your Business?
The software of your business – and its protection – is crucial if you want to succeed in the business landscape. Around the world, as many as 30,000 businesses are hacked every day, with 64% of companies also experiencing a…
How Emerging Trends in Virtual Reality Impact Cybersecurity
As information technology continues to evolve, more and more people are penetrating cyberspace. Most organizations, companies, individuals, and even governments are now doing their activities in the digital world. This allows them to enjoy great benefits such as instant access…
Nominations are Open for 2023’s European Cybersecurity Blogger Awards
If you can believe it, it’s been a decade since the annual European Cybersecurity Blogger Awards initially launched in 2013! That’s ten years of celebrating the bloggers, vloggers, podcasters and social media influencers who have played a fundamental role in…
TikTok to be banned from UK Government Phones
The UK has announced a ban on TikTok on government phones, becoming the latest country to have banned the Chinese-owned video app over raised security concerns. The microscope has been on TikTok in recent months and has come under increased…
Should Your Organization Be Worried About Insider Threats?
When you think of cybersecurity threats, what comes to mind? If you pictured faceless criminals (or a team of them) in a dimly-lit headquarters working tirelessly to steal your most precious digital assets, you’re not alone. Yet, cybercrime doesn’t always…
Guild Education controls API abuse with Salt Security
Salt Security, the API security company, is working with Guild Education, the leader in opportunity creation for America’s workforce, to implement the Salt Security API Protection Platform to secure its growing application programming interface (API) ecosystem. Guild relies on APIs…
Rise of Ransomware Attacks Main Focus for SOCs, research finds
A new global study has looked into how SOC’s go about protecting organisations from threats, where they focus the most attention and what is driving modernisation plans. Cybereason’s latest report Ransomware and the Modern SOC: How Ransomware is Driving the…
MyCena Strengthens Payment Cards Storage And Access Security In Card Processing Businesses To Reduce Fraud
Access Segmentation and Encryption Management (ASEM) specialists, MyCena Security Solutions, has announced new features to its MyCena Desk Center (MDC) platform, designed to reduce payment card fraud at organizations processing financial transactions on behalf of customers. Organizations like retailers, travel…
SnapDragon Monitoring eyes international growth after sharp increase in turnover
Brand protection specialists SnapDragon Monitoring has announced new plans today to grow its international reach by 25% in 2023 after it experienced one of its most successful years to date in 2022, with its annual turnover increasing by 29% and…
Fans of Last Of Us warned of rising phishing and malware scams
Security experts are warning consumers of two new scams that are circulating in the wild which are taking advantage of the buzz and hype surrounding HBO’s new adaption of the popular video game franchise The Last Of US. Technology expert…
Almost half of IT leaders consider security as an afterthought, research reveals
New research reveals that security is an afterthought for almost half of UK IT leaders (45%) when deploying new tools. The research commissioned by IT infrastructure solutions provider CAE Technology Services Ltd (CAE) of 200 IT leaders and professionals working in the…
Nine In 10 £5m+ Businesses Hit By Cyber Attacks
Almost nine in 10 UK businesses turning over more than £5 million annually have experienced a cyberattack, according to new research from Forbes Advisor. The study questioned senior decision makers across a range of UK small and medium-sized enterprises (SMEs), finding…
Gearing up for UK Cyber Week: Helping businesses fight back against cyber crime
Over 100 world-class speakers, hackers and disruptors will come together to bridge knowledge gap between cyber and business communities during UK Cyber Security Week event on 4th and 5th April at the Business Design Centre, London arranged by ROAR B2B.…
International Women’s Day: Only One Fifth of Cybersecurity Leadership Roles filled by Women
Two years after conducting research into the state of equality in leadership roles across the cybersecurity industry, Eskenzi PR, an award-winning PR and Marketing agency specialising in cybersecurity, looked into how the dynamics have changed. The new research revealed that…
Research Reveals ‘Password’ Still the Most Common Term Used by Hackers to Breach Enterprise Networks
Password management and user authentication solutions provider Specops Software has today announced the release of its annual Weak Password Report which analysed over 800 million breached passwords and suggests that passwords continue to be a weak spot in an organisation’s…
Transparent Tribe APT weaponising Android messaging apps to target officials in India and Pakistan with romance scams
ESET researchers have analysed a cyberespionage campaign run by the Transparent Tribe APT group distributing CapraRAT backdoors through trojanised and supposedly “secure” Android messaging apps that exfiltrate sensitive information of mostly Indian and Pakistani Android users — presumably with a…
Why API Security is a Growing Concern for UK Companies
APIs are everywhere. They power the web applications that connect today’s digital world, and their use will only continue to grow as more organisations adopt digital transformation initiatives and shift towards cloud-based solutions. This API sprawl presents major security…
New Managed Detection and Response (MDR) offering based on Microsoft’s XDR technology launched by Adarma
Earlier this week, Adarma released a new service within its Managed Detection & Response (MDR) suite of offerings based on Microsoft XDR (Extended Detection & Response) technology. This turnkey service is aimed at customers who require coverage against the UK’s most prevalent threats and who do not have the…
WH Smith personnel details targeted in cyberattack
High street stationery and book retailer WH Smith disclosed it has been the target of a cyberattack affecting employee and personnel data. It stresses that customer accounts and databases were not affected by the attack as they are stored on…
Serious API security flaws now fixed in Booking.com could affect many more websites
Salt Security, the API security company, has released new threat research from Salt Labs highlighting several critical security flaws in Booking.com. The now remediated flaws were found in the implementation of the Open Authorization (OAuth) social-login functionality utilised by Booking.com,…
UK sees 35% increase in mobile phishing exposures – Global State of Mobile Phishing Report
Mobile phishing is an issue plaguing the masses and a growing concern for enterprises, particularly as 2022 had the highest percentage of mobile phishing encounter rates ever, according to Lookout‘s Global State of Mobile Phishing report. On average, more than…
Industry Embraces Single-Vendor SASE as Cato Reports Record Growth
Cato Networks, provider of the world’s leading single-vendor SASE platform, reported today its 2022 business results. Highlights include ARR exceeding $100M in record-breaking time, enterprise customers increasing by 45%, and more than 3,000 updates being made to Cato SASE Cloud…
The future of cyber insurance
Cyber insurers are losing money. Their loss ratios – total claims plus the insurer’s costs, divided by total premiums earned – are now consistently above 60%, which presents something of an existential threat to the insurance industry, making cyber risk…
How to address growing API security vulnerabilities in 2023
In many ways, considered the “new battleground for cybersecurity” in 2023, APIs can make – or break – a business in the coming year. The fact that they’re connectors, that they underpin and pull together the majority of digital services…
Synopsys report reveals dramatic growth in open source use
Now in its 8th edition, the Synopsys “Open Source Security and Risk Analysis” (OSSRA) report launched earlier this week. The 2023 OSSRA report examines the results of more than 1,700 audits of commercial and proprietary codebases involved in merger and acquisition transactions…
CyberSmart Raises £12.75m in Series B Funding Round
CyberSmart has announced the completion of its Series B funding round, raising an additional £12.75 million following its initial Series A investment of over £8 million. Oxx led the oversubscribed round, with participation from British Patient Capital, Legal & General Capital and Solano…
Salt Security Thrives in the Channel
Salt Security has increased signed partners and deal registrations as global enterprises accelerate adoption of dedicated API security to protect their critical digital innovation initiatives. The API security company announced it has experienced strong worldwide channel growth, expanded coverage globally…
Armis appoints Brian Gumbel as President
Armis, the asset visibility and security company that recently became cybersecurity’s newest centaur, has announced the promotion of Brian Gumbel to President with immediate effect. The company says Gumbel will provide enhanced go-to-market (GTM) strategic guidance across the entire business,…
Digital Transformation EXPO Manchester (DTX)
Digital Transformation EXPO Manchester (DTX) is the North’s biggest enterprise IT and technology event, covering the latest in cloud, infrastructure, data, DevOps and cyber security. This will be co-located with Unified Communications EXPO (UCX), the leading event on modern workplace…
Scottish cyber start-up HighGround.io launches to help IT teams to measure, manage & communicate on cybersecurity
A new Scottish cyber start-up call HighGround.io has launched today bringing to the security world a new user-centric cyber platform to help organisations better understand their cyber risk profile, meet compliance requirements, build out Incident Response plans and produce reports…
New report reveals Britons are ‘phishing’ bait for online criminals
Millions of Britons (1) have now fallen victim to an online scam, losing life savings, their identity, passwords, photos or vital personal data. Yet, despite contributing to the billions of pounds (2) lost annually to cybercrime in the UK, Britons…
Over confidence is putting children at risk online says Kaspersky research
Research into the online safety of children has found that 65% of young people are unable to identify a phishing attack and cannot tell the difference between a scam and a legitimate email. Additionally, 48% of children (11-15) who say…
Dragos Report Identifies Two New Threat Groups
Dragos have released the findings from their annual Year in Review report for 2022. The report covers the state of the industrial sectors and the threats against them. Significantly, the report disclosed the identification of two new threat groups: CHERNOVITE…
Gilad Gruber Appointed as Senior Vice President of Engineering at Salt Security
Salt Security, the leading API security company, today announced the addition of Gilad Gruber to the Salt executive team as senior vice president of engineering. A technology veteran with more than 20 years of experience, Gruber brings deep expertise in…
Overwhelm impacts 90% of payment compliance teams as they combat record levels of fraud
Payment company compliance teams are being pushed to their limit as new research from regulatory intelligence specialists VIXIO reveals 90 percent are frequently overwhelmed. The impact of Russia’s invasion of Ukraine, paired with poor economic conditions in the wake of…
Guest Blog: 5 Key Takeaways from One Identity’s Identity Security Survey
Identity management is reaching a tipping point. In 2022, we commissioned a survey of over 1,000 top IT security professionals for our 2022 Identity and Security Survey. This exploration into the state of the identity security market revealed that: More than 89% of…
Milestone reached for Asset Visibility and Intelligence company, Armis
Armis, the asset visibility and security provider, announced today that it has surpassed the 100m USD mark in annual recurring revenue (ARR) growing from 1m USD to 100m USD in less than 5 years. This, it says, makes the company…
Gilad Gruber Appointed as Senior Vice President of Engineering at Salt Security
Salt Security, the leading API security company, today announced the addition of Gilad Gruber to the Salt executive team as senior vice president of engineering. A technology veteran with more than 20 years of experience, Gruber brings deep expertise in…
Dragos Report Identifies Two New Threat Groups
Dragos have released the findings from their annual Year in Review report for 2022. The report covers the state of the industrial sectors and the threats against them. Significantly, the report disclosed the identification of two new threat groups: CHERNOVITE…
Dodge online banking fraudsters with these 12 cybersecurity tips
A recent Which? study tested the security of 13 of the UK’s most popular online banking sites between September and November 2022. The study found that Virgin Money, TSB and Nationwide were the worst at protecting their customers from online…
Cybercriminals target fans of The Last of Us with recent malware and phishing scams
Hackers and scammers have recently been taking advantage of the excitement surrounding HBO’s new adaption of the popular video game franchise The Last of Us. Technology expert Prateek Jha from VPNOverview.com warns fans of the franchise of the two scams circulating…
UK second most targeted nation behind America for Ransomware
After closely monitoring the most active ransomware groups in 2022, the KrakenLabs team at Outpost24 are sharing their latest report that delves deep into the significant ransomware trends, threat groups, victim profiles, and motives behind these attacks from the past year.…
Phyron partners with konversable to provide WhatsApp in video
Leading AI car video technology supplier, Phyron AI and chat technology provider, konversable have announced a new partnership designed to maximise sales of used cars for retailers. The partnership allows for a WhatsApp Enquiry option to be embedded into Phyron’s…
Cato SASE Cloud Named “Leader” and “Outperformer” in GigaOm Radar Report for SD-WAN
Cato Networks today announced that it was named as a “Leader” and “Outperformer” by GigaOm in the analyst firm’s Radar for SD-WAN Report. This is the first year that Cato was included in the report, alongside 19 other notable vendors…
UK second most targeted nation behind America for Ransomware
After closely monitoring the most active ransomware groups in 2022, the KrakenLabs team at Outpost24 are sharing their latest report that delves deep into the significant ransomware trends, threat groups, victim profiles, and motives behind these attacks from the past year.…
Will Emphasising App Security Lead to More App Installs?
The app industry is incredibly competitive. There are millions of apps available today, with many more being released all of the time. As a developer, making a fantastic app is one thing; ensuring it gets lots of downloads is another.…
$400,000 Fine for Stalkerware App Developer
A fine of over $400,000 has been handed to the developer of several stalkerware apps, alongside an order to modify the software. A consortium of 16 companies owned by Patrick Hinchy produced apps that snooped users, including DDI Utilities, PhoneSpector,…
Ransomware attack halts London trading
Ion Markets, a financial data group crucial to the financial plumbing underlying the derivatives trading industry, has fallen prey to the cybercrime group Lockbit. The company has revealed that 42 clients have been affected by the attack, which has caused…
Ransomware conversations: Why the CFO is pivotal to discussing and preparing for risk
With the proliferation of cyber attacks in all industries, organizations are beginning to grasp the growing significance of cyber risk and how this is an integral part of protecting and maintaining an efficient business. Ransomware is the single biggest cyber…
Ransomware attack halts London trading
Ion Markets, a financial data group crucial to the financial plumbing underlying the derivatives trading industry, has fallen prey to the cybercrime group Lockbit. The company has revealed that 42 clients have been affected by the attack, which has caused…
Ransomware conversations: Why the CFO is pivotal to discussing and preparing for risk
With the proliferation of cyber attacks in all industries, organizations are beginning to grasp the growing significance of cyber risk and how this is an integral part of protecting and maintaining an efficient business. Ransomware is the single biggest cyber…
JD Sports admits data breach
JD Sports has warned customers that bought items on its website, as well as those of Size?, Blacks and Millets, between November 2018 and October 2020 may have been impacted in the breach. The company has urged customers to be…
Acronis seals cyber protection partnership with Fulham FC
Acronis, a global and visionary cyber protection company, today announced a three-year partnership with London´s oldest professional football club, Fulham FC. EveryCloud.co.uk will support Acronis as its ‘Strategic #Cyberfit’ delivery partner providing its cutting-edge cyber protection solutions and cloud backup…
Data Privacy Day: Securing your data with a password manager
This year’s annual Data Privacy Day falls on January 28th. Each year, the day provides an opportunity to educate consumers and organisations alike on the importance of privacy and staying safe online. Since the awareness around data privacy is still…
#MIWIC2022: Carole Embling, Metro Bank
Organised by Eskenzi PR in media partnership with the IT Security Guru, the Most Inspiring Women in Cyber Awards aim to shed light on the remarkable women in our industry. The following is a feature on one of 2022’s Top…
Lupovis eliminates false positive security alerts for security analysts and MSSPs
Strathclyde University’s cyber spin-out Lupovis has launched a new service designed to help security analysts and Managed Security Service Providers (MSSPs) identify false positive security alerts from genuine threats. False positives are flagged by security products that identify an innocent…
Threat actors launch one malicious attack every minute
BlackBerry’s inaugural Quarterly Threat Intelligence Report highlights the volume and model of treats across a range of organisations and regions, including industry-specific attacks targeting the automotive and manufacturing, healthcare and financial sectors. In the 90 day period between September 1…
The Salt Security API Protection Platform is Now Available on Google Cloud Marketplace
Salt Security, the leading API security company, today announced that it has joined the Google Cloud Partner Advantage Program as a Build Partner. With the partnership, users can now access the Salt Security API Protection Platform directly from the Google…
Highlights from Armis State of Cyberwarfare and Trends Report: 2022-2023
Armis, the asset visibility and security company, has divulged findings from the Armis State of Cyberwarfare and Trends Report: 2022-2023, which measured global IT and security professionals’ perceptions of cyberwarfare. It found that while 84% of UK organisations claimed they…
35,000 PayPal Accounts Hacked
A security notification released to PayPal customers this morning has revealed that up to 35,000 customers have fallen victim to a credential stuffing attack. Credential stuffing attacks involve bad actors systematically trying username and password combinations in order to break…
T-Mobile Data Breach: 37 million customers affected
Roughly 37 million T-Mobile customers have had their information stolen in a data breach, according to a statement published by the company late last night. Fortunately, T-Mobile has said that while hackers accessed names, addresses, and dates of birth, they…
Ransomware Revenue Down As More Victims Refuse to Pay
Researchers at Chainanalysis have released the ransomware section of their 2023 Crypto Crime report, revealing that ransomware payments fell from $766m in 2021 to $457m in 2022 Chainanalysis was quick to point out that this does not mean attacks are…
Ivanti and Lookout Announce Extension on Partnership To Protect Mobile Devices
The partnership between Ivanti and Lookout, Inc is to be extended in a new announcement made today which will see Lookout Mobile Endpoint Security continue to be part of the Ivanti Neurons automation platform. The combined solution, which also includes Ivanti…
New Updates for Keeper Connection Manager
Keeper Security, the provider of zero-trust and zero-knowledge cybersecurity software protecting passwords, secrets and connections, has provided an update to its Keeper Connection Manager (KCM), which gives DevOps and IT teams instant access to RDP, SSH, database and Kubernetes endpoints…
Cost of data breaches to global businesses at five-year high
Research from business insurer Hiscox shows that the cost of dealing with cyber events for businesses has more than tripled since 2018. The study, which collated data from the organisation’s previous five annual Cyber Readiness reports, has revealed that: Since…
Outpost 24’s honeypots register 42 million attacks
The Outpost24 research team have released the results of attack data gathered from a network of honeypots deployed to gather actionable threat intelligence. In total, 42 million attacks were registered between January 1st and September 30th 2022, with 20 honeypots…
KnowBe4 Integrates With CrowdStrike Aiming to Reduce Human Risk in Organisations
Two cybersecurity powerhouses, KnowBe4 and Crowdstrike, have come together to provide enhanced security for enterprises around the world. KnowBe4’s SecurityCoach product is now integrated with the CrowdStrike Falcon platform, with the collaboration designed to help reduce high risk behavior by…
2023 Predictions
2022 has been another huge year for cybersecurity. The teenage cybercriminal gang Lapsus$ wreaked havoc on some of the world’s largest corporations, the Russo-Ukrainian conflict brought the prospect of all-out cyber warfare terrifyingly close to fruition, and hackers stole an…
Cato Networks Strengthens Channel Leadership Team to Meet Growing Global Partner Demand for SASE/SSE
TEL AVIV, Israel, January 10, 2023 — Cato Networks, provider of the world’s leading single-vendor SASE platform, announced today that Frank Rauch joins Cato as Global Channel Chief. Rauch’s appointment headlines several channel leadership hirings and promotions meant to meet the…
Keeper Security Cybersecurity Census Report: Cyberattacks rife on public sector organisations
According to new research by Keeper Security, the public sector’s digital infrastructure is a key target for cyberattackers in an age of global political turmoil and increasing macroeconomic instability, particularly as digital infrastructure underpins nearly every essential public sector function…
Business Management: Using Modern Tech Solutions to Outpace Competitors
As a startup owner, it can sometimes feel impossible to get the attention of your target audience, especially in a competitive industry. When most people already have companies they trust, it’s not the easiest thing in the world to get…
Data stolen after Hackers hit 14 UK schools
Hackers have launched a successful cyberattack against schools across the UK and has left confidential information related to pupils leaked online. In total, 14 schools have been impacted, with the sensitive data stolen including passport details, which were likely needed…