The U.S. Department of Treasure released an advisory today highlighting that ransomware payments could violate their Office of Foreign Assets Control (OFAC) sanction controls. This advisory drastically changes the dynamic for how companies are managing ransomware response including the payment of ransoms directly or through third party negotiators.
This is an advisory that every CISO, corporate executive, and board of directors member needs to read and understand to prevent criminal liability.
A majority (57%) of IT security decision makers across the globe think that cybersecurity solutions are reasonably priced considering the value they provide, a new survey by FireEye indicates. In addition, a quarter (25%) of respondents said cybersecurity is inexpensive, while only 18% consider it to be expensive. In the
A new report by the National Cyber Security Alliance and Zogby Analytics sheds light on the state of cybersecurity in small businesses. 88% of small firms in the survey said they were a somewhat likely or likely target for cyber campaigns, yet only 62% considered security to be among their
In the past 12 months, two-thirds (66%) of small to mid-sized businesses (SMBs) have suffered a cyberattack, according to a new report by the Ponemon Institute and Keeper Security. The finding underscores a broader trend of growing cyber incidents at SMBs over the last 3 years. Last year, 63% of
The United States Senate recently approved the “DHS Cyber Hunt and Incident Response Teams Act,” which aims to help local governments and private companies fight ransomware infections and other cyberattacks by enabling the Department of Homeland Security (DHS) to set up “incident response teams” that can assist organizations under attack.
Companies need 212 minutes on average to remediate a single email-based cyberattack, and 11% of firms need more than 6 hours to achieve this, a recent study by Barracuda Networks found. Since the average firm responds to about five email attacks every day, security teams spend over 17 hours each
A new report by AttackIQ shows that a majority of organizations (53%) are not sure to what extend the security tools they use actually work, and an ever bigger number of firms (63%) have noticed security tools falsely reporting that they stopped an attack. While most firms plan to increase security
A new Exabeam study found that organizations are increasingly performing incident response (IR) and threat hunting. Currently, 86% of companies are engaged in IR, compared to 65% last year. Threat hunting happens in two out of three (67%) firms, while this was true for only about half (51%) last year.
A new study by IBM Security and the Ponemon Institute exposes major shortcomings in cyber resilience among organizations. The report found that more than 3 out of 4 (77%) companies lack a properly and consistently implemented cybersecurity incident response strategy. A majority of firms (54%) do not regularly test their
A new report by BakerHostetler provides information on various threats and security trends based on 750 potential security incidents that occurred in 2018. The study points to phishing as the most common cause for security incident, which is unsurprising. A more striking finding is that about one in four security