SC Magazine

MARCH 9, 2021

Organizations that boosted security budgets in response to the SolarWinds hack invested the most in threat hunting. ( “SolarWinds letters” by sfoskett is licensed under CC BY-NC-SA 2.0 ). Now, a new survey from security company DomainTools fleshes out how businesses are reacting to the campaign from a security perspective.

Hacking 72

Hacking Software Media Risk 72

SecureWorld News

JANUARY 28, 2021

2020 was a wake-up call for more than healthcare pandemic preparedness. It also exposed some huge security and privacy vulnerabilities, which many cybercrooks have exploited thousands of times throughout 2020 for remote workers. Will cybersecurity and privacy professionals heed the lessons learned from the awakening?

IoT 53

IoT Phishing Mobile Passwords 53

SC Magazine

JUNE 1, 2021

Organizations respond to tangible losses with efforts to centralize security and ramp up partner collaboration. Large businesses experienced significant damage from breaches in the first quarter of the year, including data losses and system outages, which in turn spurred investment in centralized security strategies and?improved

Risk 61

Risk Cyber threats Cybersecurity Phishing 61

eSecurity Planet

DECEMBER 15, 2021

Security researchers at Check Point Software in a blog post said that after the first weaponized proof-of-concepts (POCs) illustrating the vulnerability hit the internet on Dec. Three days after the outbreak, we are summing up what we see until now, which is clearly a cyber pandemic that hasn’t seen its peak yet,” they wrote.

Ransomware 128

Ransomware Software DNS Internet 128

SC Magazine

FEBRUARY 2, 2021

25 stole millions of unemployment applicants’ data from the Washington State Auditor’s Office (SAO) via a zero-day vulnerability in a 20-year-old file transfer service from Accellion, Inc. Malicious actors last Dec. In a Monday announcement that updated its original Jan. 12 bug notification, and it was “not until the week of Jan.

Government 96

Government CISO Media Encryption 96

SC Magazine

MARCH 11, 2021

In response, the non-profit has offered a glimpse into its work-in-progress “Accountability Framework,” designed to help relevant health care stakeholders take responsibility for keeping cyberspace secure by enforcing behavioral norms and also by understanding and rooting out the underlying causes when attacks do happen.

Accountability 59

Accountability Healthcare Government CISO 59

eSecurity Planet

DECEMBER 23, 2021

Now one security researcher – Moshe Zioni, vice president of security research for application risk management startup Apiiro – is predicting that supply chain attacks will likely peak in 2022 as organizations leverage new products that will help them better detect these attacks. This is more than a cat-and-mouse game.

Cyber Risk 140

Cyber Risk Risk Software Marketing 140

eSecurity Planet

MARCH 9, 2023

GFI Languard: Low-Cost Endpoint Vulnerability Scanner GFI Software’s Languard vulnerability scanning tool discovers and scans devices for missing patches in OS and third-party software. The tool also can perform security and compliance audits, generate reports, track changes to the network, and locate common gaps in security.

Software 126

Software Small Business Engineering Penetration Testing 126

Malwarebytes

OCTOBER 1, 2023

But ransomware attacks have been ramping up in 2023 and reinfections are occurring all over the globe, forcing lean IT teams to prepare. And with fewer resources, smaller budgets, and lower levels of security maturity, remediation mistakes are far more common for smaller IT-constrained organizations than most enterprises.

Ransomware 100

Ransomware Small Business Passwords Malware 100

eSecurity Planet

APRIL 13, 2022

In an age of strong data privacy laws like GDPR and CCPA , data loss prevention (DLP) technology is becoming a critically important IT security tool. Sensitive data also includes payment and financial information that could lead to identity theft and fraud if the data is lost or stolen and winds up in the wrong hands.

Backups 125

Backups Encryption Risk Data privacy 125

Spinone

JULY 8, 2020

However, HIPAA Title II , part of the Administrative Simplification defines how electronically protected health information (PHI) should be protected and secured. Security rule – HIPAA PHI data should be secured at all times. This includes security across administrative , physical , and technical systems.

Encryption 52

Encryption Backups Accountability Ransomware 52

Security Boulevard

APRIL 25, 2023

Often, functionality gaps lead to security gaps when identities become the last remaining enforcement point. Imagine distributing thousands of firewalls and leaving them open to consume and be consumed by third-party applications with nothing but a sign-up form to make the arrangement. Does that seem safe?

Architecture 57

Architecture Firewall Authentication Technology 57

SecureWorld News

AUGUST 5, 2021

However, this is not just another nameless, faceless piece of litigation; this one specifically names the company's Chief Information Security Officer. However, this is not just another nameless, faceless piece of litigation; this one specifically names the company's Chief Information Security Officer. The takeaway message?

CISO 98

CISO Passwords Software Cybersecurity 98

SC Magazine

JULY 8, 2021

The settlement was the third legal action tied to a health care data breach this week, shedding light on the rise in breach-related lawsuit trends in the sector in the last few years. The regulation carves out requirements for privacy and security programs, for which the majority of providers comply. PRNewsfoto/The Kroger Co.).

Data breaches 111

Data breaches Insurance Risk Ransomware 111

eSecurity Planet

JUNE 4, 2021

Patch management has been one of those essential security features – much like backup – that typically doesn’t get the attention it deserves. Shockingly, security holes in software from vendors such as Fortinet, Microsoft, and Adobe are being exploited over and over again by hackers. But somehow, never installed. Key Differentiators.

Software 88

Software Antivirus Risk Backups 88

SC Magazine

MAY 18, 2021

The primary focuses are on practices that enhance the security of the software supply chain, a software bill of materials (SBOM), that defines critical software, IoT security, and consumer software labeling. The phrase “hurry up and wait” seems appropriate. So why should the average security pro pay attention?

B2B 98

B2B Government Software Digital transformation 98

SC Magazine

MARCH 29, 2021

The Biden administration is reportedly preparing a raft of software-related security measures designed to prevent breaches like the one that hit SolarWinds and its customers. Indeed, evidence shows that the attack surface around applications is getting larger. Official White House Photo by Adam Schultz). A complex picture.

Software 120

Software Hacking Government Cyber Insurance 120

Security Boulevard

JULY 11, 2021

In the wake of the ransomware success, Ransomware-as-a-Service (RaaS) is being offered as a franchise model that allows people without programming skills to become active attackers and take part in the ransomware economy. What led to the inception of RaaS ? Is there an underpinning supply-chain that benefits a RaaS provider?

Ransomware 117

Ransomware Software Encryption Risk 117