Collaborate Disseminate
The PCI Security Standards Council (PCI SSC) and the National Cybersecurity Alliance issued a joint bulletin on the increasing threat of ransomware attacks. What is the threat? Ransomware attacks have been front and center in the news over the past yea… Continue reading PCI SSC and the National Cybersecurity Alliance issue bulletin to highlight ransomware threat
When the Log4Shell vulnerability (CVE-2021-44228) was publicly revealed in December 2021, CISA Director Jen Easterly said that it is the “most serious” vulnerability she has seen in her decades-long career and it could take years to address. It’s… Continue reading Log4j exploitation risk is not as high as first thought, cyber MGA says
Panorays has identified the top five most common cyber gaps among third-party organizations over 2021. Analyzing data gathered from cyber posture evaluations of tens of thousands of vendors across various industries, Panorays pinpointed compromised cre… Continue reading The most common cyber gaps threatening supply chain security
Quantum computing is poised to transform the industry over the next decade. With its promise of breakthrough speed and power, it’s easy to understand why there is so much hype around this new technology. But we must also consider the new cybersecurity … Continue reading Tips to mitigate public-key cryptography risk in a quantum computing world
Trend Micro has published a research revealing that persistently low IT/C-suite engagement may imperil investments and expose organizations to increased cyber risk. Over 90% of the IT and business decision makers surveyed expressed particular concern a… Continue reading Why the C-suite should focus on understanding cybersecurity and investing appropriately
After a stream of ransomware campaigns, data leaks, and attacks on critical infrastructure, businesses understand their digitization strategy needs to be complemented by a well-designed cybersecurity strategy. But, confronted with a complex and confusi… Continue reading Why security strategies need a new perspective
Menlo Security announced it has identified a surge in cyberthreats, termed Highly Evasive Adaptive Threats (HEAT), that bypass traditional security defenses. HEAT attacks are a class of cyber threats targeting web browsers as the attack vector and empl… Continue reading Highly Evasive Adaptive Threats (HEAT) bypassing traditional security defenses
71% of IT leaders have said that the ‘Great Resignation’ has increased security risks in their organizations, according to a survey of 2,000 employees in UK and US businesses, from Tessian. Data also revealed that 45% of IT leaders have already seen in… Continue reading Enterprise data safety during the Great Resignation
In the wake of the SolarWinds and Kaseya attacks, third-party cybersecurity risks remain top of mind for security leaders. Nonetheless, CISOs continue to experience significant friction with third-party risk management (TPRM). According to the latest C… Continue reading Contextualizing supply chain risks in a SaaS environment
Trellix released a report, examining cybercriminal behavior and activity related to cyber threats in the third quarter (Q3) of 2021. Among its findings, the research reports that despite a community reckoning to ban ransomware activity from online foru… Continue reading Ransomware groups and APT actors laser-focused on financial services