In 2019, Business Email Compromise (BEC) attacks – a long-standing cybersecurity threat – accounted for $1.7 billion in losses, with cybercriminals using new tactics and techniques to carry out existing attacks. As cybercrime spikes in the wake of COVID-19, BEC’s toll is expected to rise this year. The Federal Bureau of Investigation (FBI) recently issued a warning to businesses on the growing threat of BEC attacks using the pandemic as a backdrop for unusual requests like payments to a “new” vendor or a change of account information.
Application programming interfaces (APIs) make everything a bit easier - from data sharing to system connectivity to delivery of critical features and functionality - but they also make it much easier for the bad actors (and the bad bots they deploy). Here are the top 5 API vulnerabilities that get exploited by hackers, including some tips to help close those gaps.
Beginning this fall, the Washington Metropolitan Area Transit Authority (Metro) will partner with Georgetown’s School of Continuing Studies in its efforts to examine and solve some of the cybersecurity issues facing critical infrastructure today.
Public and private sector partner to start reducing the cybersecurity talent gap and provide participants with up to $75,000 in student loan assistance.
Android smartphones are some of the most popular handheld devices around the world. However, if you have an Android smartphone, a new report may urge you to reconsider which apps you have installed on your phone. Researchers from Pradeo have warned about six dangerous apps that can swindle you out of thousands. The apps are loaded with a dangerous malware dubbed Joker, according to Pradeo.
Security professionals who are considering the potential direction for their private sector career often overlook certain functional areas. While considered part of a security leader’s portfolio, many of these less obvious choices offer a broad diversity of challenges. One of these areas found in almost every industry sector is investigations.
How did we get here? Long, unstable fault lines in the bedrock that undergirds U.S. society have become active, sending seismic waves that have shaken the social contract. Citizens can’t agree on basic facts. People question whether COVID-19 is real amid shifting medical advice and conflicting data on case and death rates. The footing keeps getting less stable. Economic freefall. Surging unemployment. White supremacists, fascists and anarchists boldly emerging from the shadows. Loss of faith in law enforcement by swaths of the populace after black citizens perished in police custody. Rampant misinformation campaigns by anonymous groups and nations. The result is a bitterly split populace that has retreated to their respective echo chambers.
Flashback to 2004 and the genesis of National Cybersecurity Awareness Month (NCSAM), an initiative created to raise awareness in the U.S. around the importance of cybersecurity. Founded by the National Cyber Security Division within the Department of Homeland Security and the nonprofit National Cyber Security Alliance, NCSAM has taken place each October, since its mid-aughts inception, in efforts to ensure all Americans have knowledge of the resources and tools they need to be safer and more secure online.
Close to 40% of business are preparing for a second wave of the COVID-19 pandemic in Ireland, a new survey by the Association of Compliance Officers of Ireland (ACOI) has found. The survey also found that 37% of businesses were working on a revised business continuity plans, while a further 28% have already done so.
While the burgeoning world of IoT has transformed the ways in which we live and work, the world of IoT has also caught the attention of cybercriminals. As IoT devices become increasingly more advanced, hackers have simultaneously become more sophisticated in their attacks, often targeting pre-existing security loopholes to gain access to company systems.
RSS
