The Last Watchdog

JANUARY 29, 2023

The cybersecurity profession can be very rewarding, but at the same time quite taxing. Related: Equipping SOCs for the long haul In fact, stress factors have risen to where some 45 percent of the security professionals polled in Deep Instinct’s third annual Voice of SecOps report said they’ve considered leaving the industry altogether. Ransomware is at an all-time high; attackers are as elusive as ever.

Digital transformation 157

Digital transformation Cybersecurity Manufacturing Ransomware 157

KnowBe4

JANUARY 31, 2023

Threat actors are using malicious attachments in OneNote in order to distribute malware, BleepingComputer reports. The attackers attach VBS files that instruct the user to double-click on the file. Most of the phishing lures pose as shipping notifications, invoices, or mechanical drawings. Phishing

Phishing 92

Phishing 92

Schneier on Security

FEBRUARY 2, 2023

Hacker “Capture the Flag” has been a mainstay at hacker gatherings since the mid-1990s. It’s like the outdoor game, but played on computer networks. Teams of hackers defend their own computers while attacking other teams’.

Security 115

Security Military Artificial Intelligence Cybersecurity 115

Dark Reading

FEBRUARY 1, 2023

Two security holes — one particularly gnarly — could allow hackers the freedom to do as they wish with the popular edge equipment

Security 145

Security 145

Speaker: Ryan McInerny, CAMS, FRM, MSBA - Principal, Product Strategy

This exclusive webinar with Ryan McInerny will teach you all about cryptocurrency and NFTs! Register to learn more about identifying crypto transactions, crypto asset market trends, managing risk and compliance, and supporting customers and partners using crypto-based payments.

Risk

Data Breach Today

FEBRUARY 2, 2023

Why COVID-19 Made Leaders Realize Just How Connected OT Networks Really Are Executives underestimated the security risk associated with operational technology based on the erroneous belief that OT networks are highly segmented or air gapped.

Data breaches 208

Data breaches Risk Security 208

KnowBe4

JANUARY 30, 2023

The UK’s National Cyber Security Centre (NCSC) has described two separate spear phishing campaigns launched by Russia’s SEABORGIUM threat actor and Iran’s TA453 (also known as Charming Kitten).

Phishing 113

Phishing Security 113

Dark Reading

FEBRUARY 1, 2023

Killnet is building its profile, inspiring jewelry sales and rap anthems. But the impact of its DDoS attacks, like the ones that targeted 14 major US hospitals this week, remain largely questionable

Sales 145

Sales IT 145

Data Breach Today

FEBRUARY 2, 2023

Extortionists Dump Private and Corporate Customer Data From European Car Giant Christmastime was bleak for a number of organizations in Britain that got hit with ransomware, including car dealership giant Arnold Clark, which originally reported that no customer data had been stolen.

Ransomware 262

Ransomware Data breaches IT 262

IT Governance

FEBRUARY 1, 2023

Welcome to our January 2023 list of data breaches and cyber attacks. The new year comes with the promise of fresh beginnings and the promise to revolve the bad habits of our past, but we’ve had no such luck in the cyber security sector.

Data breaches 112

Data breaches Government IT Ransomware 112

Advertisement

Intent signal data comes in two types: either companies or individuals signaling interest in products like yours. Which kind of data delivers more advantages to B2B marketers? It depends. Get this infographic to learn about the advantages of intent-based leads and how you can most effectively use both types of data.

Marketing

eSecurity Planet

JANUARY 30, 2023

Two venture investors have launched an index to track the most popular open source security projects. Chenxi Wang of Rain Capital and Andrew Smyth of Atlantic Bridge unveiled the Open Source Security Index last month.

Security 110

Security Cloud IT Cybersecurity 110

Dark Reading

FEBRUARY 1, 2023

A new supply chain risk management office aims to help public and private sectors implement recent CISA policies and guidance

Risk 145

Risk 145

Data Breach Today

FEBRUARY 3, 2023

Spoofed Polish Police Websites Also Found Ukrainian and Polish cyber defenders are warning against a slew of phishing websites that mimic official sites, in particular a page that mimics the Ministry of Foreign Affairs of Ukraine.

Phishing 244

Phishing Data breaches 244

Schneier on Security

JANUARY 31, 2023

Chainalysis reports that worldwide ransomware payments were down in 2022. Ransomware attackers extorted at least $456.8 million from victims in 2022, down from $765.6 million the year before.

Ransomware 109

Ransomware Blockchain Security 109

Speaker: Alex Jiménez, Managing Principal, Financial Service Consulting for EPAM

The largest banks have increased reserves for protection against deteriorating economic conditions. Should banks delay their digital transformation investments and focus on cost reductions? In this webinar, Alex Jiménez will walk us through that question and examine the prudent course of action.

Digital transformation

WIRED Threat Level

FEBRUARY 2, 2023

Accidental revisions to a US Help Center page sparked confusion about the streamer's next moves. But restrictions on account sharing are still coming soon. Security Security / Security News

Passwords 108

Passwords Security 108

Dark Reading

FEBRUARY 1, 2023

Companies need to be aware of the work culture they foster. Diversity and inclusion aren't just buzzwords. Increasing female visibility and improving female mentoring to help women enter and advance within the cybersecurity industry are key steps forward

Cybersecurity 144

Cybersecurity 144

Data Breach Today

JANUARY 30, 2023

Exposed: Online Customer Details, But Not Complete Payment Card Data JD Sports, a sports fashion retailer with global operations, says personal details pertaining to about 10 million online customers of JD Sports and its Size?,

Data breaches 246

Data breaches Retail IT 246

OpenText Information Management

JANUARY 30, 2023

Businesses strive to compete in today’s market by exercising cost leadership and delivering a winning proposition. Success lies in the organizational knowledge and data locked within its people and information silos.

Customer Experience 105

Customer Experience Marketing Digital transformation IT 105

Advertisement

Intent signal data helps B2B marketers engage with buyers sooner in the sales cycle. But there are many confusing terms used to describe intent data. Read this infographic to better understand three common areas of confusion.

B2B

WIRED Threat Level

FEBRUARY 1, 2023

True Anomaly, a startup backed by US senator JD Vance's VC firm, plans to launch prototype pursuit satellites on a SpaceX flight later this year. Security Security / National Security Business / Startups

Security 105

Security 105

Dark Reading

JANUARY 31, 2023

Everyone on Twitter wants a blue check mark. But Microsoft Azure's blue badges are even more valuable to a threat actor stealing your data via malicious OAuth apps

Cloud 143

Cloud 143

Data Breach Today

JANUARY 31, 2023

Former GSA Administrator Leading Effort to Tackle Software Supply Chain Issues U.S. Federal authorities are establishing a new office to tackle supply chain security issues and help industry partners put federal guidance and policies into practice.

Data breaches 237

Data breaches Security 237

Schneier on Security

FEBRUARY 1, 2023

This is the result of a security audit: More than a fifth of the passwords protecting network accounts at the US Department of the Interior—including Password1234, Password1234!, and ChangeItN0w!—were

Passwords 101

Passwords Authentication Government Security 101

Speaker: Elizabeth "Paige" Baumann, Founder and CEO of Paige Baumann Advisory, LLC

In this session, Elizabeth “Paige” Baumann will cover the Anti-Money Laundering Act of 2020, which also includes the Corporate Transparency Act. She'll take a deep dive into the catalysts that brought on the act, the current implications of the act, and what impacts the act has on the future of banking and finance.

IT

Jamf

FEBRUARY 2, 2023

Check out the new Jamf Learning Hub to find the product technical content you need, when you need it to get the most out of Jamf products and succeed with Apple

IT 141

IT 141

Dark Reading

FEBRUARY 2, 2023

The Russia-linked LockBit ransomware group claims to be behind the attack that fouled automated transactions for dozens of clients of financial technology firm ION Group

Ransomware 139

Ransomware 139

Data Breach Today

FEBRUARY 3, 2023

Mary O'Brien on How External Attack Surface Management Finds Internet-Facing Issues Companies can be blinded by their inside-out view and often benefit from another set of eyes that see their business the same way an attacker would, says IBM's Mary O'Brien.

Data breaches 233

Data breaches Security 233

Security Affairs

JANUARY 30, 2023

A researcher disclosed technical details of a two-factor authentication bypass vulnerability affecting Instagram and Facebook. The researcher Gtm Manoz received a $27,000 bug bounty for having reported a two-factor authentication bypass vulnerability affecting Instagram and Facebook.

Authentication 98

Authentication Information Security IT Security 98

Advertisement

Aggregage Intent Signal Service helps your sales team reach more active buyers sooner. You’ll get names and contact information of specific in-market buyers plus all companies and job titles signaling intent for your product or service. Get the overview to learn more!

Sales

KnowBe4

JANUARY 31, 2023

New analysis of December and January emails shows massive spikes in attacks aimed at stealing personal information and credit cards under the guise of once-in-a-lifetime travel deals

Phishing 97

Phishing 97

Dark Reading

JANUARY 31, 2023

Five vulnerabilities in the baseboard management controller (BMC) software used by 15 major vendors could allow remote code execution if attackers gain network access

Access 138

Access 138

Data Breach Today

FEBRUARY 1, 2023

Andrew Rubin on Contrasts Among Segmenting Endpoints, Servers and Cloud Workloads Illumio has extended its segmentation capabilities from servers and workloads to endpoints to minimize damage in the event of a ransomware attack, CEO Andrew Rubin says.

Cloud 208

Cloud Data breaches Ransomware IT 208