Accreditations may seem like promotional mechanisms that appear on a vendor’s marketing material. Think again and take a closer look. As data compliance impacts organizations, enterprise leaders need to take vendors more seriously when standardizing on video conferencing solutions. It’s time to start conducting some thorough checks. ISO what? Data protection is the bastion of…
Container technology makes it possible to independently package and run software across computing environments, improving software development efficiency and IT operations. Recent advances make it easier than ever to use, but security can’t be overlooked. Similar to the adoption of DevOps and cloud technologies, the introduction of containers expands an organization’s attack surface. Attackers are…
This season millions of students will graduate from a college or university with a degree in their chosen field. This is a great milestone, and each and every one of them is to be congratulated for the fortitude and focus it took to earn their degrees. So, we congratulate the cyber graduates in finance and…
The modern threat landscape is almost incomprehensibly complex. Each day, security and operations teams fend off attacks via spear phishing, viruses, worms, and ransomware. Keeping on top of the hundreds of thousands of new pieces of malware created daily only adds to the difficulty of defense. But even though there’s a never-ending stream of new…
CEOs and board members are increasingly under the microscope when it comes to managing cyber risk. The financial, legal, and regulatory impact that cyber incidents can have upon organizations have transformed what was once an “IT problem” into a whole of company challenge. But in a world where cyber incidents and breaches have become so…
Tried-and-true security solutions like URL filtering, anti-phishing software, firewalls, and other detection and signature-based solutions are able to mitigate most cybersecurity attacks. But they operate on the erroneous assumption that anyone and anything already inside of an organization network perimeter is safe and can be trusted. This line of thinking has long been proven incorrect,…
A lot of people are scared automation will eliminate their jobs. That’s going to be true in some industries, but ours is not one of them. Cybersecurity professionals who are accustomed to dealing with existential threats need to flip their mindsets and think of automation as an existential opportunity. There are millions of unfilled jobs…
The arms race between cybercriminals and cybersecurity professionals continues to escalate. And anyone watching the trajectory of this perpetual game of one-upmanship can see that this is a race towards implementing AI in the service of each side’s goals. For instance, a report by Nokia revealed that AI-powered botnets look for vulnerabilities in Android devices,…
In August 2018, security researchers announced that cybercriminals were successfully bypassing Office 365’s Advanced Threat Protection via a new evolution of phishing – inserting malware links into SharePoint documents. Analysts at the cloud security firm Avanan discovered this vulnerability – reporting that SharePoint invitations containing malicious links were being sent from Microsoft to some users.…
TThe proliferation of BYOD and portable media devices is increasing the cybercrime attack surface exponentially. TechAdvisory.org reports that 25 percent of malware is spread today through USB devices alone. Transient cyber assets — or devices not connected to the network all the time (which includes USB devices) — are proving to be an acute vulnerability…
