Cybersecurity News, Awards, Webinars, eSummits, Research

Today’s columnist, Bipul Sinha of Rubrik, writes that Verizon’s 2022 DBIR research found that last year’s 13% increase in ransomware attacks was higher than the past five years combined. Sinha offers five insights into what companies continue to get wrong about ransomware. (Photo by Andrew Burton/Getty Images)

Ransomware attacks have room to grow, Verizon data breach report shows

Derek B. JohnsonJune 6, 2023

After steady growth since 2019, reported ransomware activity has plateaued over the past two years, according to Verizon's annual data breach report.

WHITEPAPER

Wanted: A Few Good Threat Hunters

PODCASTS

RESOURCES

FEATURED

White silhouette of key made from zeros and ones

New milestones prove passkeys are ‘ready for prime time,’ says FIDO Alliance leader

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Perspectives

In Brief

More Resources

Compliance

How CISOs and cybersecurity execs can get board ready

SC StaffJune 6, 2023

New research sheds light on five key traits and skills a CISO should possess to excel as a board director

Identity and access

Kroger elevates fraud measures after online account creation explodes

Bradley BarthJune 6, 2023

The grocer invested in SaaS-based CIAM to free up its developers for other projects, Engineering Manager Karthik Kotha told an Identiverse crowd.

MOVEit victims emerge: British Airways, BBC and Province of Nova Scotia

Malware

MOVEit victims emerge: British Airways, BBC and Nova Scotia

Simon HenderyJune 6, 2023

Users of MoveIT Transfer 'should assume compromise, not just patch', say experts.

Cloud computing technology and online data storage for business network concept.

Cloud security

Data leaks top SaaS security incidents, IT pros say

Stephen WeigandJune 5, 2023

Over 55% of security executives said they experienced a security incident in the SaaS environment.

A man's hand transferring files in virtual screen for Send of document on internet.

Ransomware

Group behind Clop ransomware exploiting MOVEit zero-day, says Microsoft

Steve ZurierJune 5, 2023

Microsoft said Lace Tempest, the group behind the ransomware variant, have used similar vulnerabilities in the past to steal data and extort victims.

Email security

Gmail spoofing vulnerability sparks Google ‘Priority 1’ probe

Simon HenderyJune 5, 2023

Investigation began days after the company dismissed initial concerns about a vulnerability within an authentication feature rolled out to all Gmail and Google Workspace accounts.

Ghost Sites: Stealing Data From Deactivated Salesforce Communities

Cloud security

Inactive Salesforce Communities could leak sensitive data

Stephen WeigandJune 2, 2023

Threat actors could gain access to improperly deactivated or unmaintained Salesforce Sites by changing the host header, thereby gaining access to sensitive personal and business data.

Ransomware attacks have room to grow, Verizon data breach report shows

WHITEPAPER

Wanted: A Few Good Threat Hunters

PODCASTS

RESOURCES

FEATURED

New milestones prove passkeys are ‘ready for prime time,’ says FIDO Alliance leader

Get daily email updates

Perspectives

The Volt Typhoon wake-up call

Three tips for leaders grappling with the cybersecurity workforce challenge

Five ways to prevent the risks from hardcoding secrets in code generated by LLMs

We need to refine and secure AI, not turn our backs on the technology

How ‘quick wins’ can boost cyber agility and resilience

In Brief

Crowdstrikes Charlotte AI cybersecurity chatbot launches

Google launches secure multi-cloud networking services

Blink Ops releases AI-based security tool Blink Copilot

Passkey feature for Google Cloud, Workspace enters open beta

KSOC reveals top Kubernetes vulnerabilities

More Resources

In focus: MDR for finance

The 2023 Identiverse Trends Report: An overview

Growth, acceleration, and safety: Top trends in the digital identity industry

In focus: MDR for healthcare

Security professionals rank the most important people skills for incident response

How CISOs and cybersecurity execs can get board ready

Kroger elevates fraud measures after online account creation explodes

MOVEit victims emerge: British Airways, BBC and Nova Scotia

Data leaks top SaaS security incidents, IT pros say

Group behind Clop ransomware exploiting MOVEit zero-day, says Microsoft

Gmail spoofing vulnerability sparks Google ‘Priority 1’ probe

Inactive Salesforce Communities could leak sensitive data

EVENTS

Rising tensions, heightened stakes: A crash course in the latest observations from the cyber threat landscape

Reducing silos between Developers and AppSec in your Software Supply Chain with Snyk and ServiceNow

Prioritizing Blue Team Success Over Red Team Wins

Vulnerability management: Finding and fixing your fatal flaws

Revolutionizing the essentials: Friction-minimizing approaches to overcoming advanced account takeover (ATO).