Author: Asad Yaseen

Russian internet giant Yandex has revealed that thousands of its customers had their accounts accessed due to a malicious insider working at the firm. The Moscow-headquartered multi-national provides search, email, e-commerce and even ride-hailing services, and claims to have tens of millions of unique monthly users. However, on Friday it noted in a brief statement that an employee had been selling access to users’ email accounts for personal gain. “The employee was one of three…

French and Ukrainian police have been in action disrupting the Egregor ransomware group with several arrests last week, according to reports. The suspects were traced via analysis of Blockchain records after victims of the ransomware paid their extorters in Bitcoin, according to public radio channel, France Inter. Those arrested in Ukraine are thought to have been hackers as well as individuals providing logistical and financial support to the ransomware-a-service (RaaS) group. The Paris Tribunal de Grande…

The Canadian Centre for Cyber Security performs evaluations on common IT products and releases a report called “Common Criteria Certification.” This process allows for organizations to review an evaluation without needing to set up and configure an IT product that they would like to test. Tripwire Enterprise v8.8.2.2 was recently evaluated and passed the certification. How the Certification Process Works The Canadian Common Criteria Scheme provides a third-party commercial Common Criteria Evaluation Facility (CCEF) for…

Social media is no stranger to scams. However, recent trends show scammers have started to show more aggression toward businesses since the beginning of the pandemic. Being able to recognize these scams can help you prevent injury to your business. Scammers go where the people are. Today, more than half of the world’s population uses some type of social media, according to the Digital 2020: July Global Snapshot. The Pew Research Center’s Social Media Fact…

When it comes to securing networks in today’s business environment, the single biggest challenge firms must contend with is that of the insider threat. While the term is typically associated with corporate espionage or perhaps disgruntled workers, this threat is mostly not caused by malicious actors. The insider threat simply refers to the damage caused by individuals who are granted legitimate access to an organization’s digital infrastructure. Most commonly, the threat of insiders takes the…