Risk management - Articles - Page 236

Improving situational awareness via video content analytics is the key to business safety and compliance for COVID-19

Driving business resilience and risk management

October 15, 2020

One thing has become clear; to abide by the “new normal” restrictions, organizations need to be constantly aware of their environments’ compliance, in real-time. To do that, they need to improve their security and situational awareness, so they can quickly assess evolving situations and respond when violations occur.

Protect your hospitals, office buildings, schools and manufacturing facilities

Dr. Biplab Pal

October 15, 2020

With the emergence and continuation of the pandemic, organizations are looking for viable answers to help mitigate the immersion of remote working structures by providing real solutions that will allow organizations to get their hospitals, workforce, manufacturing and educational environments back to some sense of normal.

Education & Training

Compelling insights into career hackers

In 39 seconds, there will be another web application attack.

Ashish Gupta

October 14, 2020

It is well known that today we live in an unprecedented time with rampant cybercrime. And now that the COVID-19 pandemic has created unparalleled challenges including worldwide unemployment and a massive financial crisis, ironically one of the industries that has flourished is the $5.2 trillion economy of cybercrime.

Security researcher details exploitation of common misconfigurations in Salesforce Lightning

October 14, 2020

A security researcher published a blog outlining the details of common misconfigurations in Salesforce that can result in guest users, or hackers leveraging guest user access, gaining access to sensitive data in Salesforce.

NJOHSP promotes cyber safety for cybersecurity awareness month

October 14, 2020

The New Jersey Office of Homeland Security and Preparedness (NJOHSP) reaffirmed its commitment to keep the State cyber safe after Governor Phil Murphy proclaimed October as Cybersecurity Awareness Month on October 2. NJOHSP and its cyber division, the New Jersey Cybersecurity and Communications Integration Cell (NJCCIC), are also participating in National Cybersecurity Awareness Month (NCSAM).

How cyberattackers use Microsoft Office 365 tools against organizations to steal data

October 13, 2020

Vectra released its 2020 Spotlight Report on Microsoft Office 365, which highlights the use of Office 365 in enterprise cyberattacks. The report explains how cybercriminals use built-in Office 365 services in their attacks.

Microsoft takes down massive hacking operation

October 13, 2020

Microsoft has taken action to disrupt a botnet called Trickbot, one of the world’s most infamous botnets and prolific distributors of ransomware. Trickbot has infected over a million computing devices around the world since late 2016.

Average ransomware demand increases 100% from 2019 through Q1 2020

Data from 25,000 small-to-midsize organizations reveals ransomware as the top cyber insurance incident in the first half of the year, with the average ransomware demand increasing 100% from 2019 through Q1 2020

October 13, 2020

Coalition announced the results of its H1 2020 Cyber Insurance Claims Report. The report explores top cybersecurity trends and threats facing organizations today, in addition to data showing the impact of COVID-19 on cyber insurance claims. The report garners insights from the incidents reported across 25,000 small and midsize organizations.

BlackBerry uncovers massive hack-for-hire group BAHAMUT

October 12, 2020

BlackBerry released new research highlighting the true reach and sophistication of one of the most elusive, patient, and effective publicly known threat actors – BAHAMUT. In the report, BlackBerry researchers link the cyberespionage threat group to a staggering number of ongoing attacks against government officials and industry titans, while also unveiling the group’s vast network of disinformation assets aimed at furthering particular political causes and hampering NGOs.

Threat actors, TA505 and MERCURY, exploiting ZeroLogon to attack and gain account control privileges

October 12, 2020

Microsoft recently warned that more cybercriminals have started to incorporate exploit code for the ZeroLogon vulnerability in their attacks. Threat actor TA505, a financially motivated threat group that has been active since at least 2014, is now exploiting this vulnerability.