Author: Admin

With the rising threat of ransomware and other attacks that originate from outside organizations’ networks, it’s easy to forget the damage that an insider threat—whether it’s employee carelessness or something more malicious—can cause in both money and resources. Two recent reports on insider threats detail how these incidents have changed over the past two years, especially in the wake of COVID-19, and how other issues such as work-from-home, greater reliance on cloud-based applications, and the Great Resignation have added…

Credit Suisse has hit back at allegations of severe due diligence failures exposed by a major new leak of customer account information. Details of 18,000 accounts linked to 30,000 clients containing an estimated £80bn ($100bn) were shared by an anonymous whistleblower with various media outlets, including The Guardian. “I believe that Swiss banking secrecy laws are immoral,” they said in a reported statement. “The pretext of protecting financial privacy is merely a fig leaf covering the shameful…

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of February 14, 2022. I’ve also included some comments on these stories. Microsoft Using New Security Rule to Prevent Windows Credential Theft On February 13, Bleeping Computer reported that Microsoft is enabling a Microsoft Defender ‘Attack Surface Reduction’ (ASR) security…

Companies including Anheuser Busch (parent company of Budweiser) and Adidas have leaped headlong into the world of NFTs, with seemingly enormous success. Within 19 hours of launching in January, Budweiser’s 11,000-strong NFT collection sold out, netting the company $4.8 million. One analysis of the NFT market, which doesn’t track all sales, still indicates how huge the business opportunity is: More than $77 million of NFT sales are brokered every 24 hours—making it an obvious opportunity…

With more than four decades of IT experience and multiple executive roles, Greg Taffet has both seen and held a wide range of job titles. So he was surprised when a new one cropped up, and even more surprised when it was used to describe his work. The title? Gig CIO. After his initial reaction, Taffet realized that the term made sense. He knows some IT executives who, with more available time thanks to reduced…

The UK and US governments quickly attributed DDoS attacks on Ukrainian organizations last week to Russian intelligence. A National Cyber Security Centre (NCSC) missive on Friday said it is “almost certain” that the attacks which took place on February 15 and 16 were the work of the Russian Main Intelligence Directorate (GRU). “The attack showed a continued disregard for Ukrainian sovereignty. This activity is yet another example of Russia’s aggressive acts against Ukraine,” a Foreign Office spokesperson said. “This…