28 Oct 2019

Improving Endpoint Security Needs To Be A Top Goal In 2020

A mere 29.6% of enterprises across the world say that endpoint security is a significant part of their cybersecurity program, a recent survey by IDC indicates. However, firms that are considered “leaders” in terms of their cybersecurity posture, are twice as likely to prioritize endpoint security than other firms. About

Read More
28 Oct 2019

IaaS cloud vulnerabilities expected to increase 50% over 2018 figures

New research Skybox shows that vulnerabilities impacting cloud infrastructure as a service (IaaS) solutions are rising rapidly. While the total number of flaws is still quite small, the expected growth rate for 2019 is 50%, while cloud container flaws have already surged by 82% so far this year. The most

Read More
24 Oct 2019

FBI issues warning about e-skimming (Magecart) attacks

A recent article by the Federal Bureau of Investigation (FBI) highlights the threat of e-skimming attacks. This threat is also known as Magecart, an umbrella term for various criminal groups that attack websites with the aim of injecting them with “skimming” malware designed to steal the payment card information of

Read More
24 Oct 2019

FTC Issues Guidance On Protecting Against SIM Swap Attacks

The US Federal Trade Commission (FTC) is warning people about SIM swapping attacks that aim to assign the phone number of a victim to a SIM card controlled by the attacker. The threat actor can subsequently use this phone number to obtain access to email and other user accounts of

Read More
22 Oct 2019

Most Effective Phishing Tactic Is to Make People Think They’ve Been Hacked

People are most likely to fall for a phishing scam when it involves a fake message warning that their account has been hacked, a new report by KnowBe4 shows. In phishing simulations and actual phishing campaigns, the email headlines that were most successful in getting victim’s to click on malicious

Read More
22 Oct 2019

How the under 30s expect new approaches to cybersecurity

A new report by NTT shows that employees under 30 pose a bigger risk security risk to companies than older workers because they are less inclined to follow cybersecurity best practices. When compared to employees aged 30-45 and 46-60, under-30s tend to be less concerned about the security implications of

Read More
17 Oct 2019

Executives are not actively engaged in ensuring the effectiveness of cybersecurity strategy

A recent survey by AttackIQ and Ponemon Institute found that in most companies, the board of directors and the C-suite is not actively involved in the firm’s cybersecurity efforts. 63% of the questioned IT and IT security professionals indicated that the IT security decision makers in their organization do not regularly

Read More
16 Oct 2019

On-Board ‘Mystery Boxes’ Threaten Global Shipping Vessels

A study by Pen Test Partners shows that shipping vessels across the globe are often vulnerable to cyberattacks, with one of the most common issues being the presence of vulnerable “mystery boxes” that are unknown to most of the crew members and understood by no one. The researchers found at

Read More
14 Oct 2019

Consumers concerned about connected home privacy, still few implement safety practices

35% of US citizens are worried that threat actors may be able to obtain authorized access to their home network by hacking into smart devices, a new ESET survey found. Despite these concerns, just 20% of respondents try to find out how data is collected, stored and shared by smart

Read More
14 Oct 2019

Planes, gates, and bags: How hackers can hijack your local airport

New research by Pen Test Partners sheds light on the many ways airport security systems can be compromised by hackers. Potential avenues for attack include: Crew passes: threat actors can use various techniques to steal or copy RF cards that provide airport personnel with access to restricted areas. Building management

Read More