Blog - Cyber Security Informer

Cybersecurity Awareness Month 2023 – What it is and why we should be aware

Thales Cloud Protection & Licensing

OCTOBER 2, 2023

Cybersecurity Awareness Month 2023 – What it is and why we should be aware madhav Tue, 10/03/2023 - 05:33 The inception of Cybersecurity Awareness Month in 2004 came at a critical juncture in our technological history. Though significant, the early days' threats vastly differed from today's sophisticated cyberattacks.

Cybersecurity

Cybersecurity Cyber threats Authentication Phishing

Multinational ICICI Bank leaks passports and credit card numbers

Security Affairs

APRIL 20, 2023

ICICI Bank leaked millions of records with sensitive data, including financial information and personal documents of the bank’s clients. A misconfiguration of the bank systems exposed millions of records with sensitive data. A misconfiguration of the bank systems exposed millions of records with sensitive data.

Banking

Banking Identity Theft Accountability Phishing

What do Cyber Threat Actors do with your information?

Zigrin Security

OCTOBER 11, 2023

In today’s digital age, the threat of data breaches is a constant concern. Therefore, it is crucial to understand what hackers are planning to do with your data and take proactive measures to protect it. There are some other ways to make money from data described further in the article.

Cyber threats

Cyber threats Penetration Testing Passwords Backups

Cloud Compliance Frameworks: Ensuring Data Security and Regulatory Adherence in the Digital Age

Centraleyes

MARCH 11, 2024

The Apollo 13 Odyssey and Cloud Security: Ensuring a Safe Return in the Digital Frontier The Apollo 13 mission stands out as a testament to human resilience and the critical importance of meticulous planning. Security: Emphasizes implementing robust security measures, including data protection and identity management.

Architecture

Architecture Government Encryption Risk

Understanding the Key Updates in NIST Cybersecurity Framework 2.0

Centraleyes

MARCH 18, 2024

When the guys at the National Institute of Standards and Technology (NIST) released the inaugural Cybersecurity Framework in February 2014, it did not include a batch of questions that were almost certainly on their minds but not in the framework. Would the critical infrastructure industry embrace it? of the CSF.

Cybersecurity

Cybersecurity Government Risk Technology

The Art of (Cyber) War

Approachable Cyber Threats

AUGUST 10, 2022

In the modern age, nation states are expanding the battlefield with targeted cyber attacks on their adversaries. Nation states have always sought advantages to increase their geopolitical power and secure their interests both domestically and abroad. Category Awareness, Case Study, Vulnerability. Risk Level. Are you at risk?

DDOS

DDOS Cyber Attacks Government Hacking

IRISSCON 2023: OT, AI, and human empathy

BH Consulting

NOVEMBER 22, 2023

In front of its largest ever attendance, the annual Irish cybersecurity conference IRISSCON tackled some big themes. Among them were: attacks against critical infrastructure, increasing regulation, the need for empathy from security pros, and – naturally – AI.

Cybercrime

Cybercrime Technology Cybersecurity Engineering

Cybersecurity in 2022, Predictions for digital ecosystem facing more challenges and sophisticated threats

CyberSecurity Insiders

DECEMBER 7, 2021

This blog was written by an independent guest blogger. In fact, “the number of publicly reported data compromises in the U.S. through September of 2021 has already surpassed the total number of compromises in 2020 by 17%, according to the Identity Theft Resource Center (ITRC).” forbes.com). OT/IT and IoT convergence.

Cybersecurity

Cybersecurity IoT Artificial Intelligence Cyber threats

Advancing Trust in a Digital World

Thales Cloud Protection & Licensing

JUNE 16, 2022

Considering the increased cybersecurity risks introduced by digital technologies, what should society do to prevent cyber-attacks, reduce damage, and strengthen trust? Furthermore, effective security necessitates skilled personnel, which is now impeded by a cybersecurity skillset deficit. Strengthen Trust with Sensible Controls.

Encryption

Encryption Artificial Intelligence Architecture Digital transformation

6 Best Threat Intelligence Feeds to Use in 2023

eSecurity Planet

AUGUST 10, 2023

Threat intelligence feeds are continually updated streams of data that inform users of different cybersecurity threats, their sources, and any infrastructure impacted or at risk of being impacted by those threats.

Internet

Internet Internet Cybersecurity Malware

DOJ Indictment Links Russian Nationals to Supply Chain Attacks

Security Boulevard

MARCH 30, 2022

DOJ Indictment Links Russian Nationals to Supply Chain Attacks. In this phase, referred to as “Dragonfly” or “Havex,” the conspirators launched a supply chain attack that compromised the computer networks of ICS (Industrial Control Systems) and SCADA (Supervisory Control and Data Acquisition) system manufacturers and software providers.

Software

Software Government InfoSec Malware

Nation-State Attackers, Ransomware Groups Take Aim at Apache Log4j Flaw

eSecurity Planet

DECEMBER 15, 2021

Nation-state cyber threat groups and ransomware attackers are moving in to exploit a critical flaw found in the seemingly ubiquitous Apache Log4j open-source logging tool, as attacks spread just days after the vulnerability that could affect hundreds of millions of devices was made public late last week. Expanding Log4j Attacks.

Ransomware

Ransomware Software DNS Internet

Did the Cloud Provide Safe Haven in the Ukraine-Russia Cyber War? [Microsoft Perspective]

Security Boulevard

JULY 6, 2022

Microsoft’s Threat Intelligence Center (MSTIC) detected the launch against 19 government and critical infrastructure entities across Ukraine. Russia not surprisingly targeted Ukraine’s governmental data center in an early cruise missile attack,” the report said. Cloud as haven but concern about future attacks.

Digital transformation

Digital transformation Government Artificial Intelligence Malware

Own Your Cloud Security

Thales Cloud Protection & Licensing

OCTOBER 10, 2019

Along with autumn, comes National Cybersecurity Awareness Month (NCSAM). Protect IT.’ theme will help to encourage personal accountability and proactive behavior in digital privacy, security best practices, common cyber threats and cybersecurity careers. The NCSAM 2019 focuses on personal accountability.

Cloud Migration

Cloud Migration Encryption Digital transformation Firewall

The cyber skills gap & the diversity debate

Thales Cloud Protection & Licensing

JUNE 25, 2019

Scarcity in talent means there is a critical deficit in developer security training. Organisations across the globe are suffering a cybersecurity workforce “gap” of around 2.9 million employees today, according to the latest estimates from (ISC)², the world’s leading cybersecurity and IT security professional organisation.

Technology

Technology Small Business Cybersecurity InfoSec

How to Mitigate Ransomware Attacks with MFA

Duo's Security Blog

FEBRUARY 13, 2023

And for more information on protecting against ransomware, be sure to check out our ebook: Protecting Against Ransomware: Zero Trust Security for a Modern Workforce. Once the malware has been installed and spread, hackers can gain access to sensitive data and backup data, which they encrypt to hold the information hostage.

Ransomware

Ransomware Insurance Authentication Passwords

‘Unpacking’ technical attribution and challenges for ensuring stability in cyberspace

SecureList

JUNE 20, 2022

The rest of the world, including the victims of the attack, must often engage in some degree of speculation to explain the events and devise ways to protect themselves accordingly. However, the only actors that deliver the entire narrative of a cyberattack – discussing accountability and international law – are nation states.

Energy and Utilities

Energy and Utilities Data collection Malware Cybersecurity

Think Zero Trust Applies Only to Federal Agencies? Think Again!

Thales Cloud Protection & Licensing

JULY 6, 2022

In my last blog post, I explained how Federal Civilian Executive Branch (FCEB) agencies can use Thales Cyber Packs to comply with The White House Executive Order (E.O.) Danna Bethlehem, Director of Product Marketing Identity & Access Management (IAM) at Thales, said she doesn’t think that federal agencies will be the only ones to use the E.O

Government

Government Encryption Authentication Firewall

Will Presidential Executive Order Drive Private Critical Infrastructure Providers to Get Serious about Cybersecurity?

Thales Cloud Protection & Licensing

MAY 19, 2021

Will Presidential Executive Order Drive Private Critical Infrastructure Providers to Get Serious about Cybersecurity? If the Colonial Pipeline ransomware attack taught us anything, it’s that our critical infrastructure will continue to be a top target for cybercriminals. Thu, 05/20/2021 - 05:54.

Cybersecurity

Cybersecurity Encryption Government Authentication

SolarWinds Attackers Targeting Resellers, Service Providers: Microsoft

eSecurity Planet

OCTOBER 26, 2021

In a blog post , Tom Burt, corporate vice president of customer security and trust at Microsoft, wrote that the hacker group Nobelium is looking to use the same pathways that it leveraged in its attack on SolarWinds and its customers by compromising a set of companies to gain access to their customers. Supply Chain Attacks Won’t Stop.

Government

Government Cybercrime Accountability Software

ENISA 2023 Threat Landscape Report: Key Findings and Recommendations

Thales Cloud Protection & Licensing

DECEMBER 4, 2023

ENISA 2023 Threat Landscape Report: Key Findings and Recommendations madhav Tue, 12/05/2023 - 05:36 The European Union Agency for Cybersecurity (ENISA) recently released its annual Threat Landscape Report for 2023. DDoS attacks continue to be a persistent threat. They are the second most prevalent EU threat.

Social Engineering

Social Engineering Backups Manufacturing DDOS

MY TAKE: How state-backed cyber ops have placed the world in a constant-state ‘Cyber Pearl Harbor’

The Last Watchdog

JULY 25, 2019

The Obama sanctions ultimately linked both Bogachev and Belan to the hack of the Democratic National Committee and several other organizations at the center of the 2016 U.S. The assumption is that they both reside in Russia under the protection of the Russian government. “We presidential elections.

IoT

IoT Hacking Banking Government

Cyber Security Informer

Cybersecurity Awareness Month 2023 – What it is and why we should be aware

Multinational ICICI Bank leaks passports and credit card numbers

Trending Sources

What do Cyber Threat Actors do with your information?

Cloud Compliance Frameworks: Ensuring Data Security and Regulatory Adherence in the Digital Age

Understanding the Key Updates in NIST Cybersecurity Framework 2.0

The Art of (Cyber) War

IRISSCON 2023: OT, AI, and human empathy

Cybersecurity in 2022, Predictions for digital ecosystem facing more challenges and sophisticated threats

Advancing Trust in a Digital World

6 Best Threat Intelligence Feeds to Use in 2023

DOJ Indictment Links Russian Nationals to Supply Chain Attacks

Nation-State Attackers, Ransomware Groups Take Aim at Apache Log4j Flaw

Did the Cloud Provide Safe Haven in the Ukraine-Russia Cyber War? [Microsoft Perspective]

Own Your Cloud Security

The cyber skills gap & the diversity debate

How to Mitigate Ransomware Attacks with MFA

‘Unpacking’ technical attribution and challenges for ensuring stability in cyberspace

Think Zero Trust Applies Only to Federal Agencies? Think Again!

Will Presidential Executive Order Drive Private Critical Infrastructure Providers to Get Serious about Cybersecurity?

SolarWinds Attackers Targeting Resellers, Service Providers: Microsoft

ENISA 2023 Threat Landscape Report: Key Findings and Recommendations

MY TAKE: How state-backed cyber ops have placed the world in a constant-state ‘Cyber Pearl Harbor’

Stay Connected