Archive
Attacks on Mid-Market Organizations Soar
Cyber-attacks on middle-market organizations have risen significantly since the outbreak of COVID-19 reached pandemic proportions. According to global data gathered by specialist insurer Beazley Group, middle-market organizations have been especially hard hit by online social engineering attacks. In the report
Organizations must become agile to respond effectively to the changing threat landscape, particularly in light of the turbulent events of 2020, according to Jonathan Care, senior director analyst at Gartner, speaking during the Gartner Security and Risk Virtual Summit. He
The current top trends in security and risk management for threat-facing, disruption and the organization have been detailed at the Gartner Security and Risk Virtual Summit. Speaking at the event, research VP Peter Firstbrook pointed at “mega trends that are
IT leaders have suffered significantly higher numbers of data breaches as a result of outbound email in the last 12 months. According to research by Egress, 93% of 538 IT leaders surveyed reported a breach in the past year due
Over half (56%) of UK businesses plan to increase their digital skills training budgets for staff next year, suggesting changes to working practices as a result of the COVID-19 pandemic will be sustained. This is according to a survey of
New data from FICO has revealed that UK banks achieved the largest reduction in card fraud losses in 2019 compared to other countries across Europe. That’s according to the updated FICO European Fraud Map, which discovered that UK banks have
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) released a malware analysis report (MAR) that includes technical details about web shells employed by Iranian hackers. A web shell is a code, often written in typical web development programming languages (e.g.,
Speaking during the Gartner Security and Risk Virtual Summit, research director David Gregory said the COVID-19 pandemic could be “considerable, in terms of the number of people who might be available” to fill security job roles. Despite this, he said
St. Louis County Fends Off Cyber-Attack
An attempt to infect a Missouri county’s website with malware has been foiled. Threat actors deployed Trojan horse malware in an attempt to gain access to the website of St. Louis County earlier this month. Staff in the IT department
CISA Issues Chinese Hacking Groups Warning
US government agencies and private-sector companies have been warned to be on high alert for cyber-attacks by threat actors affiliated with the Chinese Ministry of State Security (MSS). A joint security advisory on the cyber-threat was issued yesterday by the
Passwordless authentication “is an aspiration and not necessarily a destination,” said David Mahdi, senior director analyst at Gartner during the Gartner Security and Risk Virtual Summit. This is because many organizations are still reliant on legacy technology that does not
The impact of the COVID-19 pandemic has led to uncertainly and anxiety in society, but also sweeping changes in the way businesses operate and plan for the future. Speaking during the Gartner Security and Risk Virtual Summit, research VP Roberta
CISA warns that Chinese Hackers Using Open-source Exploitation Tools to Target U.S. Agencies
CISA warns that Chinese nation-state actors using publicly available information sources and common, well-known tactics, techniques, and procedures (TTPs) to target U.S. Government agencies. These threat actors varying degrees of skills using open-source information to plan and execute cyber operations.
The UK’s National Cyber Security Centre (NCSC) has released a new Vulnerability Reporting Toolkit, designed to help organizations manage vulnerability disclosure in a streamlined, process-driven manner. The government-backed GCHQ unit explained in a blog post yesterday that the new toolkit
Security professionals are still making a poor job of getting business leaders to understand strategies. Speaking during the Gartner Security and Risk Virtual Summit, VP analyst Jeffrey Wheatman claimed security professionals are “fighting a battle with ourselves and our business
Data Breach Hits 46,000 US Veterans
Tens of thousands of US veterans have had their personal information illegally accessed in a data breach incident announced on Monday. The US Department of Veterans Affairs (VA) Office of Management revealed that 46,000 veterans had been affected by the