Cyber escape room locks in employees’ security awareness. But can SC Media beat the clock?
The plot: identify and capture an insider threat within your organization before he or she is able to divert payroll funds.
About SC Media
Most recent articles by Bradley Barth
Supreme Court scrutinizes Computer Fraud and Abuse Act in case closely watched by hackers
Cybersecurity experts and digital rights organizations say that the high court’s future ruling will determine whether bug hunters and pen testers could be charged if their research into systems is deemed excessive, even if the actions are intended to be ethical.
GoDaddy scam shows how voice phishing can be more deceptive than email schemes
Unlike with an email-based phish where an employee might be observant enough spot a telltale red flag, such as multiple typos or the wrong sender address, there’s little time to key in on suspicious circumstances in the midst of a dialogue.
Ransomware gangs hunt for tax software to ratchet up pressure on victims
The tactics seek out highly sensitive data as leverage, targeting small businesses whose efforts to be tax-compliant could be seriously disrupted.
Websites requiring security software downloads opened door to supply chain attack
Does requiring users to download software as a precursor to being able to use one’s website or online services – even if it’s security software – introduce more risk than reward?
Threats without borders: Brazilian banking trojans go global
This burgeoning trend shows that no cyber threat stays localized forever, placing pressure upon security professionals to stay current on global threat intelligence and assume threats relegated to one corner of the globe will one day migrate.
Cybercriminals use Facebook ads to shame companies, confuse messaging to customers
The tactic, used in a recent incident involving Italian liquor company Campari, attempts to counter a company’s own efforts at damage control.
‘Appender’ tool sneakily implants malicious emails into inboxes using legacy protocol
Because the attacker never actually sends an email over the internet, the email essentially bypasses certain email security solutions that would ordinarily detect and filter out the malicious message while en route.
Attackers target gaming as the latest ‘always on’ industry impacted by ransomware
Much like hospitals and government, video game developers can’t afford to go dark, nor can they easily overcome exposure of their secret sauce. That makes them an attractive target.
‘Bad move, plain and simple’: Microsoft’s new bug reporting format draws criticism
While a well-informed security professional might look at a bug entry in Microsoft’s revised approach and quickly understand how the standard-based table translates to overall risk assessment, not everyone in an organization is equipped to do so.
Next post in Vulnerabilities
