eSecurity Planet

JANUARY 6, 2022

About the only consensus on cybersecurity in 2022 is that things will get uglier, but in what ways? Here are some of the more interesting predictions for 2022 we’ve seen from cybersecurity researchers. Here are some of the more interesting predictions for 2022 we’ve seen from cybersecurity researchers.

Ransomware 135

Ransomware Cybersecurity Artificial Intelligence CISO 135

eSecurity Planet

MAY 30, 2024

Table of Contents Toggle Recent Healthcare Attacks & Breaches 5 Key Cybersecurity Management Lessons to Learn Bottom Line: Learn Healthcare’s Lessons Before Suffering Pain Recent Healthcare Attacks & Breaches Large breaches affected over 88 million individuals in the USA in 2023, a 60% increase from 2022.

Healthcare 73

Healthcare Cybersecurity Backups Ransomware 73

eSecurity Planet

OCTOBER 5, 2021

Passwords are the most common authentication tool used by enterprises, yet they are notoriously insecure and easily hackable. At this point, multi-factor authentication (MFA) has permeated most applications, becoming a minimum safeguard against attacks. Jump to: What is multi-factor authentication? MFA can be hacked.

Authentication 103

Authentication Passwords Mobile Accountability 103

CyberSecurity Insiders

JANUARY 28, 2022

Health care data has become a focus for many recent cybersecurity efforts. Here are five steps to preserve health care data security in 2022. Some of the best cybersecurity measures aren’t technical but a matter of management. Social engineering avoidance should be part of all workers’ onboarding processes.

Penetration Testing 105

Penetration Testing Encryption Social Engineering Phishing 105

eSecurity Planet

DECEMBER 7, 2022

Despite all this, there is one tech category that has held up fairly well: Cybersecurity. Just look at a report from M&A advisory firm Houlihan Lokey , which found that private cybersecurity company funding grew by 9.4% billion between September 2021 and September 2022. See our picks for the Top Cybersecurity Startups.

Cybersecurity 145

Cybersecurity Risk Technology Ransomware 145

Krebs on Security

APRIL 6, 2022

Many organizations are already struggling to combat cybersecurity threats from ransomware purveyors and state-sponsored hacking groups, both of which tend to take days or weeks to pivot from an opportunistic malware infection to a full blown data breach. “These guys were not leet , just damn persistent.” “vishing”).

Social Engineering 251

Social Engineering Phishing Engineering Accountability 251

CyberSecurity Insiders

DECEMBER 21, 2022

With the cybersecurity landscape more unpredictable than ever, it can be difficult to predict what’s going to happen tomorrow, let alone in the next 12 months. Based on recent cybercriminal activity, businesses should expect increased social engineering and train employees to recognize the signs of such attacks.

Social Engineering 134

Social Engineering Passwords Password Management Engineering 134

The Last Watchdog

OCTOBER 5, 2023

5, 2023 – Today, the Healey-Driscoll Administration kicked off Cybersecurity Month in Massachusetts with the announcement of $1,136,911 in funding to develop a new cybersecurity training center at MassBay Community College and support the existing center at Bridgewater State University. Worcester, Mass.,

Cybersecurity 113

Cybersecurity Education Small Business Government 113

eSecurity Planet

DECEMBER 19, 2023

As 2023 draws to an end and cybersecurity budgeting is nearly complete, it helps to consider the year’s events and try to predict next year’s trends. After receiving input from industry experts and doing my own analysis of the year’s driving forces, I identified five major cybersecurity trends. Bottom line: Prepare now based on risk.

Cybersecurity 140

Cybersecurity CISO Government Technology 140

Duo's Security Blog

DECEMBER 12, 2022

The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) just released the 2022 Holiday Season Cyber Threat Trends report that reveals the most prevalent malware tools leveraged by cyber criminals this year, with phishing and fraud dominating the list.

Retail 79

Retail Cyber threats Social Engineering Phishing 79

Thales Cloud Protection & Licensing

MAY 2, 2022

5 Lessons Star Wars Can Teach Us About Cybersecurity. Mon, 05/02/2022 - 07:29. So, on the occasion of Star Wars Day - May the 4th be with you – and also World Password Day on May 5th, here are some cybersecurity lessons we can all learn from Star Wars. Do or do not – There is No Try.

Cybersecurity 71

Cybersecurity Social Engineering Passwords Engineering 71

Krebs on Security

MARCH 23, 2022

Microsoft says LAPSUS$ — which it boringly calls “ DEV-0537 ” — mostly gains illicit access to targets via “social engineering.” Allison Nixon is chief research officer at Unit 221B , a cybersecurity consultancy based in New York that closely tracks cybercriminals involved in SIM-swapping.

Social Engineering 295

Social Engineering Accountability Mobile Passwords 295

Digital Shadows

NOVEMBER 10, 2022

Sporting events, like the upcoming FIFA World Cup Qatar 2022 (Qatar 2022 World Cup), attract massive attention from every corner of the world. After triaging said incidents to remove false positives, we collected the true positive incidents to analyze them and better comprehend how attackers were targeting the Qatar 2022 World Cup.

Cyber threats 52

Cyber threats Media Social Engineering Mobile 52

Security Affairs

OCTOBER 21, 2021

Threat actors are continually looking for better ways to target organizations, here are the top five attack vectors to look out for in 2022. This article focuses on the top five attack vectors organizations should look out for and defend against in 2022. Conclusion. Follow me on Twitter: @securityaffairs and Facebook.

IoT 113

IoT Phishing Passwords Scams 113

Security Boulevard

MARCH 31, 2022

In a blog post published on March 22nd, 2022, Microsoft confirmed that one of their user accounts had been compromised by the Lapsus$ (also known as DEV-0537) threat actor, though they claimed that the information accessed was limited and that “no customer code or data was involved”. The Compromises. Regular employee training.

Cybersecurity 98

Cybersecurity Social Engineering Passwords Malware 98

SecureList

NOVEMBER 18, 2022

IT threat evolution in Q3 2022. IT threat evolution in Q3 2022. IT threat evolution in Q3 2022. Nevertheless, in our APT predictions for 2022 , we noted that more attackers would reach the sophistication level required to develop such tools. The group delivers its malware using social engineering.

Malware 105

Malware Computers and Electronics Adware Cryptocurrency 105

Duo's Security Blog

JUNE 1, 2023

Cybersecurity threats have evolved, and new challenges present themselves. In Verizon’s 2022 DBIR infographic , 82% of breaches involved a human element. One recommendation is to configure policies that go beyond just multi-factor authentication (MFA) by identifying which devices are trusted in a non-intrusive manner.

Passwords 98

Passwords Social Engineering Data breaches Engineering 98

Security Boulevard

JUNE 1, 2022

There are many common perceptions about cybersecurity – but many are mis perceptions. For small and mid-sized businesses (SMBs), misinformation about cybersecurity can be confusing – and sometimes risky. Fiction: Outsourcing cybersecurity is not a realistic option for SMBs. Outsourcing cybersecurity is a great option for SMBs.

Cybersecurity 98

Cybersecurity Small Business Firewall Data breaches 98

Appknox

JUNE 23, 2022

Navigating the internet in 2022 is more dangerous than ever for Australian netizens. Australian Mobile Cybersecurity in 2022. Thus, these Australian attacks significantly contribute to the rising trend in socially engineered attacks. How Can Social Engineering Affect the Current State of Security in Australia?

Social Engineering 92

Social Engineering Mobile Scams Engineering 92

SecureList

JULY 28, 2022

This is our latest installment, focusing on activities that we observed during Q2 2022. We discovered a highly active campaign, starting in March 2022, targeting stock and cryptocurrency investors in South Korea. They are designed to highlight the significant events and findings that we feel people should be aware of.

Malware 136

Malware Firmware Phishing Cryptocurrency 136

Duo's Security Blog

APRIL 20, 2023

Riding off the warm press that covered an eventful Summer 2022, in this series we explore the general state of cybersecurity in Australia and potential problem-solving measures—kicking things off with the third most common type of breach according to the OAIC: phishing. What is phishing? This is reflected in an average of 56.7%

Phishing 64

Phishing Social Engineering Authentication Engineering 64

CyberSecurity Insiders

DECEMBER 23, 2022

In 2022, cybersecurity further became a top priority for businesses around the world following critical attacks on both the public and private sectors and of course, the use of cyber warfare as a Russian tactic in its invasion of Ukraine. By Steven Spadaccini, VP Threat Intelligence, SafeGuard Cyber.

Social Engineering 142

Social Engineering Phishing Risk Engineering 142

BH Consulting

SEPTEMBER 7, 2022

Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. A new documentary aims to shine a spotlight on female achievements in the cybersecurity field. The company sought $600,000 to cover its losses but its social engineering fraud policy had a cap of $100,000.

Insurance 40

Insurance Social Engineering Cyber Risk Cyber Insurance 40

SecureList

SEPTEMBER 6, 2022

The gaming industry went into full gear during the pandemic, as many people took up online gaming as their new hobby to escape the socially-distanced reality. According to the analytical agency Newzoo, in 2022, the global gaming market will exceed $ 200 billion , with 3 billion players globally.

Mobile 103

Mobile Passwords Software Accountability 103

Security Affairs

SEPTEMBER 15, 2022

Threat actors used employees’ publicly-available Personally Identifiable Information (PII) and social engineering techniques to impersonate victims and obtain access to files, healthcare portals, payment information, and websites. Use multi-factor authentication for all accounts and login credentials to the extent possible.

Healthcare 74

Healthcare Social Engineering Accountability Passwords 74

Security Boulevard

APRIL 18, 2023

increase in phishing attacks in 2022 compared to the previous year, a result of cybercriminals using increasingly sophisticated techniques to launch large-scale attacks. Education was the most targeted industry in 2022, with attacks increasing by 576%, while the retail and wholesale sector dropped by 67% from 2021.

Phishing 122

Phishing Social Engineering Education Retail 122

Malwarebytes

MAY 21, 2023

Upon its launch in November 2022, tech enthusiasts quickly jumped at the shiny new disruptor, and for good reason: ChatGPT has the potential to democratize AI, personalize and simplify digital research, and assist in both creative problem-solving and tackling “busywork.” Do you think your organization should embrace ChatGPT?

Cybersecurity 77

Cybersecurity Artificial Intelligence Social Engineering Engineering 77

Security Affairs

APRIL 8, 2022

The threat actors use sophisticated social engineering techniques to infect Windows and Android devices of the victims with previously undocumented backdoors. “These fake accounts have operated for months, and seem relatively authentic to the unsuspecting user. . ” reads the analysis published by Cybereason.

Social Engineering 96

Social Engineering Engineering Malware Accountability 96

BH Consulting

AUGUST 16, 2023

Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. A people problem: why tackling cybersecurity isn’t just about technology Humans, not technology, are the greatest security risk facing organisations. Links we liked Five free online cybersecurity courses, via Help Net Security.

Social Engineering 52

Social Engineering Cybercrime Data privacy Engineering 52

Security Boulevard

OCTOBER 2, 2023

Phishing Threats Are Increasing in Scale and Sophistication Phishing remains one of the most dangerous and widespread cybersecurity threats. Phishing attackers are increasingly using social engineering techniques to personalize their attacks and target specific individuals or organizations.

DNS 64

DNS Phishing Social Engineering Engineering 64

CyberSecurity Insiders

FEBRUARY 16, 2022

cybersecurity as part of the $1 trillion Infrastructure Bill, which passed in late 2021. While this is a huge milestone and an important first step in bolstering the country’s cybersecurity posture, quite simply, it’s a drop in the bucket compared to the investment that’s needed. million earmarked for cybersecurity.

Government 122

Government Cybersecurity Cybercrime Technology 122

CyberSecurity Insiders

JUNE 26, 2023

The first is CVE-2023-27350 which allows attackers to bypass the authentication required to utilize the Papercut NG 22.05 The second vulnerability, CVE-2022-47986, which affects the IBM Aspera Faspex File Exchange system allows attackers to perform remote code execution on the target devices. on affected endpoints.

Cybercrime 100

Cybercrime Social Engineering Ransomware Phishing 100

Security Boulevard

JANUARY 2, 2024

While the “prediction season” gains momentum, it's pivotal to reflect on the high impact of the 2023 cybersecurity landscape. This past year set a profound stage, from the advent of stringent cyber regulations to the convergence of generative AI, social engineering, and ransomware. The solution?

CISO 104

CISO Social Engineering Architecture Ransomware 104

Thales Cloud Protection & Licensing

JULY 26, 2022

Tue, 07/26/2022 - 05:48. The 2022 IBM X-Force Threat Intelligence Index report indicates that manufacturing was the most targeted industry in 2021. The convergence of IT and OT domains has emerged another infection vector – weak access controls to authenticate employees into a wide range of cloud-based and on-premises systems.

Manufacturing 71

Manufacturing Authentication Social Engineering Risk 71

Duo's Security Blog

MAY 23, 2023

Passwords are a weak point in modern-day secure authentication practices, with Verizon highlighting that almost 50% of breaches start with compromised credentials. Until a fully password-free environment is deployed, accepted, and adopted by all users, less secure methods of authentication will still be relied on.

Authentication 113

Authentication Passwords Data breaches Phishing 113

eSecurity Planet

SEPTEMBER 14, 2022

A major focus of cybersecurity as an industry is its efforts to detect, root out, and respond to potential fraudsters attempting to trick companies and people out of their money, data, or both. This made a lot of sense, especially in the earlier days of the Internet where cybersecurity measures were nowhere near as robust as they are today.

Social Engineering 117

Social Engineering Energy and Utilities Phishing Scams 117

Webroot

FEBRUARY 13, 2024

Understanding Romance Scams Romance scams involve fraudsters creating fake profiles on dating sites, social media platforms, or apps to establish relationships with victims, gain their trust, and eventually, scam them out of money. In 2022, nearly 70,000 people reported such scams, with losses totaling a staggering $1.3

Scams 80

Scams Cryptocurrency Media Education 80