New research shows cyber-security incidents that exposed 5 billion records cost an estimated $45 billion last year. In 2018, over 2 million cyber incidents racked up a minimum of $45 billion in losses, according to a recently released report based on statistics gathered from organizations that track data breaches. Jeff Wilbur, technical director of the … Read more
More than a third of organizations report a cyber attack on the cloud environment due to a lack of basic cloud security hygiene. Despite 42% of organisations saying they are concerned about cloud security, many are failing to carry out security testing or follow best practices, a study shows. The potentially devastating effects of poor … Read more
A study shows that most fintech startups, like most banks, are failing to address vulnerabilities in the web and mobile applications, underlining the scale of the challenge. Some 98% of the world’s top 100 financial technology (fintech) startups are vulnerable to web and mobile application attacks, despite being well-funded, research reveals. In addition, 100% have security, privacy and compliance issues relating … Read more
Security researchers have demonstrated how simple flaws in building controllers could allow malicious actors to manipulate control systems with devastating effect, highlighting the importance of operational technology security. McAfee researchers have demonstrated how a vulnerability in a commonly used industrial control system from Delta Controls could allow malicious actors to take complete control of the operating system. Successful exploitation … Read more
Businesses are increasingly becoming the most popular targets for ransomware, which remains a top cyber threat around the world, especially in the US, a report reveals. Business ransomware detections increased by 365% in the past year, dominated by Ryuk and Phobos which increased 88% and 940% respectively, a report on cyber crime trends reveals. GandCrab and Rapid ransomware attacks … Read more
Microsoft says default passwords, unpatched devices, poor inventory of IoT gear led to exploits against companies by Russia’s STRONTIUM hacking group. The STRONTIUM hacking group, which has been strongly linked by security researchers to Russia’s GRU military intelligence agency, was responsible for an IoT-based attack on unnamed Microsoft customers, according to the company. a blog post … Read more
Cisco will pay $2.6 million to the federal government and up to $6 million to 15 states in a settlement over video security software it stopped selling in 2014. Cisco has agreed to pay $8.6 million to settle claims it sold video security software that had a vulnerability that could have opened federal, state and … Read more
Cisco adds support for its cloud-based security gateway Umbrella to SD-WAN software. SAN DIEGO— As many companies look to SD-WAN technology to reduce costs, improve connectivity and streamline branch office access, one of the key requirements will be solid security technologies to protect corporate resources. At its Cisco Live customer event here this week, the company took … Read more
DNS threats, including DNS hijacking, tunneling, phishing, cache poisoning and DDoS attacks, are all on the rise. The Domain Name System remains under constant attack, and there seems to be no end in sight as threats grow increasingly sophisticated. DNS, known as the internet’s phonebook, is part of the global internet infrastructure that translates between … Read more
UN’s Human Rights Council adopts resolution to explore the impact of new and emerging digital technologies on human rights, but the text ignores a damning report by the council’s own expert on freedom of expression. UN member states have sidestepped calls for a moratorium on the sale and transfer of surveillance equipment between governments and … Read more
