Author Archives: Jonathan Reed

Zero Trust Data Security: It’s Time To Make the Shift

Posted on by

How do you secure something that no longer exists? With the rapid expansion of hybrid-remote work, IoT, APIs and applications, any notion of a network perimeter has effectively been eliminated. Plus, any risk inherent to your tech stack components becomes your risk whether you like it or not.  Organizations of all sizes are increasingly vulnerable […]

The post Zero Trust Data Security: It’s Time To Make the Shift appeared first on Security Intelligence.

Continue reading Zero Trust Data Security: It’s Time To Make the Shift

Triple Extortion and Erased Data are the New Ransomware Norm

Posted on by

The old days of “honest” ransomware gangs are long gone. In the past, ransomware groups pressured each other to honor file decryption promises after the ransom was paid. However, their motives were far from altruistic. They thought victims would be less willing to pay if word got out that their files would never be recovered. […]

The post Triple Extortion and Erased Data are the New Ransomware Norm appeared first on Security Intelligence.

Continue reading Triple Extortion and Erased Data are the New Ransomware Norm

How Zero Trust Changed the Course of Cybersecurity

Posted on by

For decades, the IT industry relied on perimeter security to safeguard critical digital assets. Firewalls and other network-based tools monitored and validated network access. However, the shift towards digital transformation and hybrid cloud infrastructure has made these traditional security methods inadequate. Clearly, the perimeter no longer exists. Then the pandemic turned the gradual digital transition […]

The post How Zero Trust Changed the Course of Cybersecurity appeared first on Security Intelligence.

Continue reading How Zero Trust Changed the Course of Cybersecurity

How LockBit Changed Cybersecurity Forever

Posted on by

In every industry, visionaries drive progress and innovation. Some call these pioneers “crazy”. The same rule applies to the world of cyber gangs. Most threat groups try to maintain a low profile. They don’t seem to trust anyone and want tight control over money flow.  Then along came LockBit. Not only does the group maintain […]

The post How LockBit Changed Cybersecurity Forever appeared first on Security Intelligence.

Continue reading How LockBit Changed Cybersecurity Forever

New Generation of Phishing Hides Behind Trusted Services

Posted on by

The days when email was the main vector for phishing attacks are long gone. Now, phishing attacks occur on SMS, voice, social media and messaging apps. They also hide behind trusted services like Azure and AWS. And with the expansion of cloud computing, even more Software-as-a-Service (SaaS) based phishing schemes are possible.  Phishing tactics have […]

The post New Generation of Phishing Hides Behind Trusted Services appeared first on Security Intelligence.

Continue reading New Generation of Phishing Hides Behind Trusted Services

The One Place IT Budget Cuts Can’t Touch: Cybersecurity

Posted on by

If IT spending is slowing, will business leaders follow a similar approach for cybersecurity budgets? Probably not. Gartner predicts that end-user spending on both security technology and services will see an annual growth rate of 11% over the next four years. And the market is anticipated to reach $267.3 billion in 2026.  Many security professionals […]

The post The One Place IT Budget Cuts Can’t Touch: Cybersecurity appeared first on Security Intelligence.

Continue reading The One Place IT Budget Cuts Can’t Touch: Cybersecurity

How to Spot a Nefarious Cryptocurrency Platform

Posted on by

Do you ever wonder if your cryptocurrency platform cashes in ransomware payments? Maybe not, but it might be worth investigating. Bitcoin-associated ransomware continues to plague companies, government agencies and individuals with no signs of letting up. And if your platform gets sanctioned, you may instantly lose access to all your funds. What exchanges or platforms […]

The post How to Spot a Nefarious Cryptocurrency Platform appeared first on Security Intelligence.

Continue reading How to Spot a Nefarious Cryptocurrency Platform

Too Much Caffeine? Phishing-as-a-Service Makes Us Jittery

Posted on by

Recently, investigators at Mandiant discovered a new software platform with an intuitive interface. The service has tools to orchestrate and automate core campaign elements. Some of the platform’s features enable self-service customization and campaign tracking.  Sounds like a typical Software-as-a-Service (SaaS) operation, right? Well, this time, it’s Caffeine, the latest Phishing-as-a-Service (PhaaS) platform. A basic […]

The post Too Much Caffeine? Phishing-as-a-Service Makes Us Jittery appeared first on Security Intelligence.

Continue reading Too Much Caffeine? Phishing-as-a-Service Makes Us Jittery

Log4j Forever Changed What (Some) Cyber Pros Think About OSS

Posted on by

In late 2021, the Apache Software Foundation disclosed a vulnerability that set off a panic across the global tech industry. The bug, known as Log4Shell, was found in the ubiquitous open-source logging library Log4j, and it exposed a huge swath of applications and services.  Nearly anything from popular consumer and enterprise platforms to critical infrastructure […]

The post Log4j Forever Changed What (Some) Cyber Pros Think About OSS appeared first on Security Intelligence.

Continue reading Log4j Forever Changed What (Some) Cyber Pros Think About OSS

DNSChanger and the Global Scope of Cybersecurity

Posted on by

In November 2011, the FBI-led Operation Ghost Click raided malicious servers run by the Rove Digital cyber group. This was only after the group had leveraged the DNSChanger Trojan to infect over four million computers and generate over $14 million in illicit profits. At the time, the operation was billed as the biggest cyber criminal […]

The post DNSChanger and the Global Scope of Cybersecurity appeared first on Security Intelligence.

Continue reading DNSChanger and the Global Scope of Cybersecurity