Synthetic Identity Theft: When Everybody Knows Your Name
You probably have a place where everyone knows your name — and maybe your address and your birthday and your favorite drink. That place could be your favorite restaurant, your office or your grandma’s house. It doesn’t matter where...
Adopting Microsegmentation Into Your Zero Trust Model, Part 3
This is the third and final part in a series on zero trust and microsegmentation. Be sure to check out Parts 1 and 2.
The customer relationship used to be circular — you marketed your products to customers, they purchased...
Why Automation and Zero Trust Go Hand-in-Hand
Zero trust can reshape how businesses approach digital security. The idea is to distrust by default, regardless of whether the information is located inside or outside the corporate network. From there, security teams can verify devices, apps and connections...
Shedding Light on the DarkSide Ransomware Attack
It has been well over a decade since cybersecurity professionals began warning about both nation-state and financially motivated cyber-kinetic attacks. Concerned about a cybersecurity threat that would have the potential to destroy physical assets and human lives, many looked...
What Is Extended Detection and Response (XDR)?
For many decades now, emerging threats have put organizations at risk. As the IT landscape evolved and threat actors found new ways to attack, security teams needed to find new ways to detect and respond to threats.
Today, this evolving...
How a Firewall Can Foster Zero Trust
Older perimeter-based firewalls aren’t up to the task of safeguarding today’s more distributed networks. But that doesn’t mean the end of the firewall is in sight. On the contrary, businesses and other groups are turning to next-generation firewalls (NGFWs)...
3 Ways to Reduce the Cost of a Government Data Breach
As a government agency or jurisdiction, one of your goals is to build trust with the citizens you serve. You earn that trust by protecting their information from a government data breach. This also helps by making efficient use...
What is Ghimob Malware?
A new Android malware strain ‘Ghimob’ is mimicking third-party mobile (mainly banking) apps to spy and steal user data when downloaded and installed. This Trojan virus steals data from users, primarily targeting online banking and cryptocurrency.
As of the end...
Health Care Data: It’s Your Personal ‘National Security’ Information
If you wanted to put all the pieces of a person’s profile together, health care data would likely be the most important piece of the personally identifiable information (PII) puzzle. It’s powerful. A heartbeat can open a door. This...
Security by Design and NIST 800-160, Part 1: Managing Change
Building a house requires a blueprint. When it comes to building systems, National Institute of Standards and Technology’s (NIST) documents about security by design are some of the most reliable blueprints. As systems become more complex, they’re also more...
Zero Trust and Insider Threats: Was Brutus the Original Bad Actor?
Insider threats have been a problem for as long as there have been insiders. What’s changed over time? Well, for one, Brutus and his conspirators didn’t exactly leave a trail of logs and flows when they plotted against Julius...
Does Multifactor Authentication Keep Your Remote Workers Safe?
Your eight-character password can be cracked in about eight hours, using brute force attacks — even if you add in numbers, mix up the cases and throw in a special character or three. Odds are high that eight-hour window...
Improving Data Security in Schools: Remote Learning Increases Security Threats
This blog is the last in a series about improving data security in schools.
When learning moved from the classroom to the dining room, schools scrambled to ensure students had the tools they needed. A study conducted by FutureSource Consulting...
Zero Trust: Confidently Secure Your Business to Grow Fearlessly
What would your business be able to do if security risks were no longer a concern?
What sort of products would you build for your customers? What types of experiences could you enable for your employees to be more effective?...
Adopting Microsegmentation Into Your Zero Trust Model, Part 2
This is the second part in a series on zero trust and microsegmentation. Be sure to check out Part 1 here.
Organizations are increasingly using a zero trust approach combined with microsegmentation to carefully balance the needs of security and...
Ransomware Gang Leaks Metropolitan Police Data After Failed Negotiations
The cybercrime syndicate behind Babuk ransomware has leaked more personal files belonging to the Metropolitan Police Department (MPD) after negotiations with the DC Police broke down, warning that they intend to publish all data ransom demands are not met.
"The...
NSA and ODNI analyze potential risks to 5G networks
U.S. Intelligence agencies warn of weaknesses in 5G networks that could be exploited by crooks and nation-state actors for intelligence gathering.
The U.S. National Security Agency (NSA), along with the DHS Cybersecurity and Infrastructure Security Agency (CISA), and the Office...
Alert: Hackers Exploit Adobe Reader 0-Day Vulnerability in the Wild
Adobe has released Patch Tuesday updates for the month of May with fixes for multiple vulnerabilities spanning 12 different products, including a zero-day flaw affecting Adobe Reader that's actively exploited in the wild.
The list of updated applications includes Adobe Experience Manager,...
Beijing twirls ban-hammer at 84 more apps it says need to stop slurping excess data
Online lending apps and more given fifteen days to ‘rectify’ behaviour China’s Central Cyberspace Affairs Commission has named 84 apps it says breach local privacy laws and given their developers 15 days to “rectify” their code.…
SAP Patches High-Severity Flaws in Business One, NetWeaver Products
SAP has released a total of six new security notes on its May 2021 Security Patch Day, along with updates for five other security notes, including three rated Hot News.
read more
