Identity and access management company Okta is investigating a possible data breach after ransomware group Lapsus$ claimed to have hacked the company.

Ransomware as a service (RaaS) affiliate group AvosLocker has targeted a number of victims across multiple critical infrastructure sectors. Here are a few mitigation strategies organizations can implement. 

Ian Thornton-Trump, Chief Information Security Officer (CISO) at Cyjax, and Philip Ingram, CEO of Grey Hare Media, take a closer look at the Russian invasion of Ukraine through the lens of conflict in the Middle East in the tenth episode of The Cybersecurity and Geopolitical Podcast.

Retail security leaders play an important role regarding business continuity. Incorporating SASE and SD-WAN can help businesses stay resilient in a changing retail environment.

There isn’t a silver bullet to consumer data privacy; different organizations are at different stages of privacy maturity. However, there are four steps organizations can take to advance their data privacy program maturity.  

K-12 school administrators and cybersecurity leaders outlined their top four challenges to securing their educational institutions in the "Creating a Common Culture of Action Around Cybersecurity: 2021 National K-12 Education Cybersecurity Report" from iboss.

A new Cequence Security API Security Threat Report: Bots and Automated Attacks Explode revealed three attack trends in API security.

When it comes to building a security-first culture, a layered approach that takes physical security, security solutions and training into consideration is best. 

Russian state-sponsored cyberattackers gained network access to a non-governmental organization by exploiting default multi-factor authentication (MFA) protocols and PrintNightmare, a known security vulnerability. 

For teams looking to respond to evolving mobile security threats, the Zimperium 2022 Global Mobile Threat Report offers some insights.