RSS_Virtulization

Nearly a fifth of organizations hit by the Sunburst backdoor emanating from the SolarWinds supply chain attack are from the manufacturing sector, a new analysis from Kaspersky has revealed. While researchers have already uncovered technical details of the Sunburst backdoor that was embedded in the SolarWinds incident late last year, information of the full impact of the attack is still being investigated. It has been officially confirmed that around 18,000 users may have installed backdoor…

The term “data” is vague. Knowing the types of data helps companies protect themselves and better recover from a cyberattack. Image: Getty Images/iStockphoto You may know where your data is, but do you also know what the data consists of? “Imagine you’re at a party. You ask someone you’ve just met what they do for a living, and they answer: ‘I work in data,’” said Sky Cassidy, CEO of MountainTop Data, in an email interview….

Organizations must be far more focused on data privacy issues this year, according to a panel of experts speaking during the Spirion webinar Customer Data Privacy 2021: It’s No Longer Just Business, It’s Personal. The panel began by setting out the trends that have pushed data privacy issues to the fore over recent years. These include the growth and fragmentation of data privacy legislation, both in the US and across the world, which has expanded…

By Don Schleede, Information Security Officer at Digi International Throughout Cyber Security Awareness Month in October, many organizations shared their thoughts on the state of cybersecurity and reflected on the processes and steps that can improve it. However, the discussion largely focused on protecting end-users rather than building security into networks and devices from a systemic perspective. In addition, through its theme of “If You Connect It, Protect It,” however, Cybersecurity Awareness Month has also…

Two-thirds of remote workers risk potentially breaching GDPR guidelines by printing out work-related documents at home, according to a new study from Go Shred. The confidential shredding and records management company discovered that 66% of home workers have printed work-related documents since they began working from home, averaging five documents every week. Such documents include meeting notes/agendas (42%), internal documents including procedure manuals (32%), contracts and commercial documents (30%) and receipts/expense forms (27%). Furthermore, 20% of…

It’s not easy to justify cybersecurity spends based on financial gains. Read tips on how to improve the odds. anyaberkut, Getty Images/iStockphoto One of the toughest jobs that cybersecurity professionals face is convincing C-suite executives there is an actual Return On Investment (ROI) from cybersecurity spends. There are ways to eliminate the ROI disconnect between the C-suite and the IT department, says the author of the Hitachi Systems Security blog Cybersecurity Budgeting 101: How to…

Offering apprenticeships could help to encourage more young people into the cybersecurity sector, alleviating skills shortages, according to a new poll run by Infosecurity Europe. The region’s top cybersecurity event, held annually by Infosecurity publisher Reed Exhibitions, asked its Twitter followers for their thoughts on the ongoing skills crisis in the industry. Some 43% argued that apprenticeships, in which trainees learn on-the-job whilst studying for a formal qualification, would be a good fit for a…

A popular south Asian delivery company exposed 400 million records containing customers’ personal information after misconfiguring an Elasticsearch server, according to researchers. A team from reviews site Safety Detectives found the 200GB trove during a simple IP address check on specific ports. It was left wide open with no password protection or encryption, meaning anyone with the server’s IP address could have accessed the database. The team soon traced the leak back to Bykea, a…

The number of publicly reported US data breaches and leaks last year dropped 19% as attackers continued to move away from mass theft of customer data to more lucrative tactics like ransomware, according to a leading non-profit. The Identity Theft Resource Center (ITRC) compiled its annual report from company announcements, mainstream news reports, government agencies, recognized security firms and researchers, and other non-profits. In total, it recorded 1108 incidents, down by nearly a fifth on…