On May 13, Verizon released its Data Breach Investigations Report (DBIR) 2021. This annual publication serves many purposes. It yields context into what security analysts are seeing, for instance. But it also affects organizations’ security postures at an even higher level. Here’s Anthony Israel-Davis, research and development manager at Tripwire, with more: One thing that the DBIR does is it takes the things that are going on in the cybersecurity space, particularly with breaches and…

Data breaches are now part of doing business, with many companies having been affected. Data is very valuable to criminals because it is often used to commit fraudulent activities as well as to enhance the credibility of scams. Data that is stolen ranges from Social Security Numbers (SSNs) to other identification documents and payment details. Scammers can do a great deal with just one or two pieces of personal information. A talented scammer in possession…

Understanding and implementing MFA and strong password protocol. By Jeff Severino, CyberLock Defense, Lockton Affinity The importance of multi-factor authentication and password security is critical. Often, it is your best line of defense for protecting all your data, devices and systems from unauthorized access. Unfortunately, many don’t take password security seriously, which makes them especially vulnerable to hackers. Good password security can help protect you from data breaches, network intrusions, malware and viruses. It can…

By Joseph Carson, Advisory CISO, ThycoticCentrify Many organizations are coming to the harsh realization that it’s only a matter of when, not if, they will fall victim to a cyberattack. These attacks can range from data breaches to ransomware to Distributed Denial of Service (DDoS) attacks and are often a result of malicious actions by cybercriminals or nation-state actors operating from different parts of the globe. There is no shortage of technology designed to defend…

Cybersecurity training is not the same across all companies; SMB training programs must be tailored according to size and security awareness. Here are an expert’s cybersecurity training tips. Image: Jaiz Anuar/Shutterstock Who better to give advice about how small- or medium-sized businesses should handle cybersecurity than an organization and expert with currency in helping SMBs survive? Anete Poriete, UX researcher at CyberSmart, in her Real Business article, The Best Practises for Cybersecurity Training in SMEs…

You open your laptop and see an email from a healthcare organization that you don’t recognize. The subject line reads “URGENT – PROOF OF VACCINATION NEEDED.” Impulsively, you open the email and click on the link. You’re redirected to a website that asks you to enter your name, date of birth, Social Security Number, and a photo of your vaccine card. Scrambling, you enter the information and click “Submit.”   As you continue to adapt your lifestyle to the…

You open your laptop and see an email from a healthcare organization that you don’t recognize. The subject line reads “URGENT – PROOF OF VACCINATION NEEDED.” Impulsively, you open the email and click on the link. You’re redirected to a website that asks you to enter your name, date of birth, Social Security Number, and a photo of your vaccine card. Scrambling, you enter the information and click “Submit.”   As you continue to adapt your lifestyle to the…

Authored by ChanUng Pak   McAfee’s Mobile Research team recently found a new Android malware, Elibomi, targeting taxpayers in India. The malware steals sensitive financial and private information via phishing by pretending to be a tax-filing application. We have identified two main campaigns that used different fake app themes to lure in taxpayers. The first campaign from November 2020 pretended to be a fake IT certificate application while the second campaign, first seen in May 2021, used the fake tax-filing theme. With this discovery, the McAfee Mobile Research team has been able to update McAfee Mobile Security so that it detects this threat as Android/Elibomi and alerts mobile users if this malware…

Two new senior cybersecurity appointments have been announced by the United States Department of Homeland Security. Former lead solution engineer at Salesforce, David Larrimore, has been named as the Department’s chief technology officer. Between 2016 and 2019, Larrimore occupied the same position at the Immigration and Customs Enforcement (ICE) component. Other roles held by Larrimore include an IT manager position at the General Services Administration and a job as a cloud strategist at the United States Department…

VMworld 2021 is here with lot of exciting sessions, demos and much more. As Raghu Raghuram, CEO, VMware said- “Attending VMworld is key to understanding not only VMware’s current roadmap but also our broader strategy and forward-looking innovations. On behalf of the entire VMware team, I look forward to sharing more with you at VMworld 2021.”, this is your chance to learn more about lot of innovations VMware is bringing to the market to help you accelerate…