24 Jun 2019

TripAdvisor Invalidates Member Passwords Found in Data Breaches

TripAdvisor is taking a proactive approach to prevent its users from falling victim to credential stuffing attacks by invalidating member passwords if the password and corresponding email address were found in publicly leaked data breach databases. Credential stuffing attacks, in which a threat actor uses leaked or stolen login credentials

Read More
24 Jun 2019

Pledges to Not Pay Ransomware Hit Reality

Last week, the City Council of Riviera Beach stated that its decision to pay $600,000 in ransom to threat actors that infected the city network with ransomware, was made based on the advice of external security consultants. This move was criticized by many in the cybersecurity industry, because paying up

Read More
21 Jun 2019

Small Businesses May Not Be Security’s Weak Link

A new report by (ISC)² indicates that the poor reputation of small businesses when it comes to security isn’t entirely justified. Small firms are often considered to be a supply-chain risk for larger corporations, but (ISC)² found that security breaches resulting from cooperation with a large company are slightly more

Read More
20 Jun 2019

CISOs Struggling With 50+ Separate Security Tools

A new study by Panaseer found that 87% of enterprise CISOs are having a hard time keeping track of sensitive data, with 31% of respondents worrying that this complicates their firm’s compliance efforts. A common problem seems to be reliance on a great number of different security tools. The average

Read More
19 Jun 2019

Security breaches: 4 business impacts

The average cyberattack results in damages of $4.6 million, and organizations can expect losses of $10 million as a result of cyberattacks each year, new research by Radware shows. The four major business impacts of cyberattacks are customer loss (45%), brand reputation loss (44%), revenue loss (32%) and operational loss

Read More
19 Jun 2019

Insecure password memory aids: A passwordless future could be the solution

A new survey by Okta shows that many employees are open to passwordless authentication. For example, 70% of employees think that the adoption of biometrics would benefit their organization. According to Dr. Maria Bada of Cambridge University, the research indicates that many employees dislike passwords because they “can experience negative emotions

Read More
19 Jun 2019

Cyber Weaknesses That Led to Breaches at NASA’s JPL Persist, Says IG

A new report[pdf] by the NASA inspector general exposes major shortcomings in the cybersecurity posture of the NASA Jet Propulsion Laboratory, as a result of which the research center “has experienced several notable cybersecurity incidents that have compromised major segments of its IT network,” over the past decade. Glaring security weaknesses

Read More
18 Jun 2019

Business travelers, beware: Hackers looking over your shoulder can cause data breaches

A new 3M survey underlines the threat of visual hacking, which is when a threat actor obtains sensitive personal or company data by simply looking over someone’s shoulder. Visual hacking is a major risk to business travelers, 80% of which consider it to be a threat. But despite the high

Read More
14 Jun 2019

DNS Firewalls Could Save Companies Billions

New research by the Global Cyber Alliance (GCA) shows that almost one-third of all cybercrime-related losses could be prevented if companies invested more in DNS protection. In the US, the use of DNS firewalls could allow organizations to reduce losses resulting from cyberattacks by between $19 billion and $37 billion.

Read More
13 Jun 2019

Organizations Investing More in ICS Cyber Security: SANS Study

New figures released by SANS indicate that cybersecurity investments aimed to protect industrial control systems (ICS) and operational technology (OT) are increasing. A little over half of organizations currently rate their risk profile as critical or high. This represents a significant decrease from the last report that was published in

Read More