04 Sep 2019

A look into the frequency and success of phishing attacks on SMBs

In the last 12 months, threat actors targeted 43% of small to mid-sized businesses (SMBs) in the UK with a phishing attack in which they masqueraded as one or more employees, a new CybSafe report found. It is rather worrisome that two-thirds (66%) of targeted SMBs were actually compromised as

Read More
04 Sep 2019

What prevents companies from achieving effective security performance management?

38% of companies have lost business as the result of real or perceived shortcomings in their cybersecurity program, a new BitSight study reveals. According to almost three in four C-level respondents, security performance can boost financial performance, while over 8 in ten believe it can strengthen the reputation of a

Read More
29 Aug 2019

SOCs still overwhelmed by alert overload, struggle with false-positives

A new survey by Critical Start shows that Security Operations Center (SOCs) are increasingly overwhelmed with alerts, and that false-positives remain a major contributor to alert fatigue. 70% of SOC analysts said they face 10 or more alerts every day, compared to 45% in last year’s report, while 78% of

Read More
28 Aug 2019

Low Budgets, Limited Expertise Plague SMB Cybersecurity

Four in five (80%) small business owners consider IT security a priority for their undertaking, a new Untangle report found. However, almost half (48%) of small firms have a yearly cybersecurity budget of under 5,000, and 29% spend less than $1,000 on security per year. The survey also shows that

Read More
28 Aug 2019

Nearly Half of SMBs, Enterprises Still Using Windows 7: Kaspersky

Almost half of small to mid-sized businesses (SMBs) still use Windows 7, even though Microsoft will stop extended support for this operating system in January of next year (regular support ended in 2015.) In addition, 5% use Windows 8.1, which is receiving extended support until 2023, and 0.4% use Windows

Read More
23 Aug 2019

Cyber attackers exploiting poor cloud security

A new report by Outpost24 indicates that even though 42% of organizations are worried about cloud security, many are not doing enough to protect their cloud environment. For example, 11% of firms never perform cloud security tests and 19% do so only once a year. This is worrisome, for cyberattacks

Read More
21 Aug 2019

Making Tough Choices: How CISOs Manage Resources To Protect Their Brand’s Most Valuable Assets

84% of CISOs think that cyberattacks are a growing threat and 21% believe that threat campaigns are evolving faster than the defensive capabilities of organizations, a new study by Forbes and Fortinet shows. The survey, which sheds light on the views and decision making strategies of CISOs, identifies efforts to protecting

Read More
21 Aug 2019

Should Companies Block Newly Registered Domains?

Companies can significantly improve their cybersecurity by blocking access to newly registered domains (NRDs) because 70% of these are “malicious,” “suspicious” or “not safe for work,” a new report by Palo Alto Networks suggests. These findings confirm earlier reports indicating that threat actors frequently use NRDs for malicious purposes including “C2

Read More
19 Aug 2019

Feds never faced a ‘major’ cybersecurity attack in 2018

In fiscal year 2018, US federal government departments experienced a total of 31,000 cybersecurity incidents, according to the Office of Management and Budget’s annual report on the state of cybersecurity in the government. The number represents a 12% decrease from the 35,000 incidents reported in the previous fiscal year. In

Read More
16 Aug 2019

Huge Survey of Firmware Finds No Security Gains in 15 Years

A study by Cyber Independent Testing Lab (CITL) found that even though cyber attacks on Internet of things (IoT) devices have skyrocketed in the last 15 years, vendors have hardly done anything to make the firmware of these devices more secure. The research covered 6,000 firmware images of 18 vendors

Read More