Just how in the heck does a cybersecurity professional stay on top of the rapidly evolving threat landscape, the ever changing attacks and exploits, and new security solutions? I can assure you it involves a lot of reading.
Last month the Twin Cities chapter of (ISC)2 held a meeting on the topic of trusted sources for threat intelligence. It seemed like a great topic idea, so I decided to share my list ...
Continue Reading →
Which anti-malware product is the best? Test results from companies like AV-Test and AV-Comparatives are great places to find that answer, and we outline that below. OPSWAT recently released their 2019 Windows Anti-Malware Market Share Report, which takes a look at the most popular anti-malware products, or at least the most frequently installed. OPSWAT did not include Windows ...
Here’s a contribution from Orla Forrest at Irish cloud services provider Paradyn.
In this guide, we examine some emerging innovations that are helping organisations to bolster their security in 2019.
In 2019, organisations are facing an ever-growing range of cyber-threats. In fact, according to a 2018 study from Bromium, the cybercrime economy was estimated to be worth $1.5 trillion. ...
Continue Reading →
Thanks again to Siege Media for this post.
Smart homes, or homes outfitted with technology innovations such as smart speakers, smart TVs, smart lights, and more, are growing in popularity. In fact, over 66.4 million Americans own a smart speaker, such as the Google Home or the Amazon echo, in their home.
Smart home devices collect data on ...
Continue Reading →
The most dangerous person to your network security may be sitting in the next cubicle, or working for a trusted vendor. This is called the Insider Threat. It is more likely that your computer incident will come from the inside of your organization than from a cyber-criminal gang in the Russian Federation. A couple of email newsletters dropped into my inbox with new examples of insiders who became threats.
A quick Saturday digest of cybersecurity news articles from other sources.From the desk of Thomas F. Duffy, MS-ISAC Chair
It’s that time of year again, holiday shopping has begun! Everyone is looking for those unique gifts, hot toys and cool electronics. Whether it is a hard-to-find toy for kids or the latest 4K ...
Continue Reading →
There has been a lot in the press about ransomware this year. Crypto-ransomware attacks are becoming more targeted and sophisticated, resulting in bigger extortion amounts and other financial losses to the victims.
But last year’s most frequent and expensive cyber-crime is still email account compromise, or what the FBI calls Business Email Compromise (BEC) is still with us. The attackers using this exploit have also become more ...
Continue Reading →
Recently there were a couple of notable fails in biometric authentication. The fingerprint reader in Samsung’s Galaxy S10 and Note10 smartphones will allow any finger to open the phone if the user has installed a cheap screen protector film. In security parlance, this is a “fail-open” or “false positive” scenario. An update is pending. And Google’s new Pixel 4 phone’s facial recognition ...
What is a “zero-day,” exactly? In information security, occasionally there is a brand new cybersecurity vulnerability or exploit in the news, and the reporter calls it a “zero-day” exploit. What are they talking about. This is a concept similar to “patient zero” in medical epidemiology. This is where the bad thing started to happen.
A zero-day vulnerability is a ...
Continue Reading →
Your Personally Identifiable Information (PII) is one of the top targets of cyber-criminals. This information is valuable because it can be used for identity, fraud, tax refund fraud, loans and credit card applications, money transfers, phishing and spam campaigns, blackmail and extortion, fraudulent medical insurance claims, online shopping, and so much more. This information is packaged and sold on the Dark Web, ...