The CISO Mantra: Get Ready to Do More With Less
For the foreseeable future, with the spigots closing shut, CISOs will need to find ways to do more with less.
Cyber News, Cyber Threat Trends
- March 29, 2023
Security Vulnerabilities in Snipping Tools
Both Google’s Pixel’s Markup Tool and the Windows Snipping Tool have vulnerabilities that allow people to partially recover content that was edited out of images.
Cyber News, Cyber Threat Trends
- March 28, 2023
Breaking the Mold: Pen Testing Solutions That Challenge the Status Quo
Malicious actors are constantly adapting their tactics, techniques, and procedures (TTPs) to adapt to political, technological, and regulatory changes quickly. A few emerging threats that organizations of all sizes should be aware of include the following: Increased use of Artificial Intelligence and Machine Learning: Malicious actors are increasingly leveraging AI and machine learning to
Cyber News, Cyber Threat Trends
- March 28, 2023
IcedID Malware Shifts Focus from Banking Fraud to Ransomware Delivery
Multiple threat actors have been observed using two new variants of the IcedID malware in the wild with more limited functionality that removes functionality related to online banking fraud. IcedID, also known as BokBot, started off as a banking trojan in 2017. It’s also capable of delivering additional malware, including ransomware. “The well-known IcedID version consists of […]
Cyber News, Cyber Threat Trends
- March 28, 2023
Pakistan-Origin SideCopy Linked to New Cyberattack on India’s Ministry of Defence
An advanced persistent threat (APT) group that has a track record of targeting India and Afghanistan has been linked to a new phishing campaign that delivers Action RAT. According to Cyble, which attributed the operation to SideCopy, the activity cluster is designed to target the Defence Research and Development Organization (DRDO), the research and development wing of India’s […]
Cyber News, Cyber Threat Trends
- March 28, 2023
Data loss from insider events increase despite IRM programs: Report
A vast majority of companies are struggling with data losses from insider events despite having dedicated insider risk management (IRM) programs in place, according to a data exposure report commissioned by Code 42. The study conducted by Vanson Bourne, an independent research firm for technology companies, interviewed 700 cybersecurity professionals, managers, and leaders in the US […]
Cyber News, Cyber Threat Trends
- March 28, 2023
Spend on Safety Measures & Call Out Insecure Practices for Safer IoT
IoT risk and security must get more attention from vendors and support from the marketplace.
Cyber News, Cyber Threat TrendsCan zero trust be saved?
Graham Cluley Security News is sponsored this week by the folks at Kolide. Thanks to the great team there for their support! Right now, “Zero Trust” is in serious danger of becoming an empty buzzword. The problem isn’t just that marketers have slapped the Zero Trust label on everything short of breakfast cereal–it’s that for […]
Cyber News, Cyber Threat Trends
- March 27, 2023
Cybersecurity vs. Everyone: From Conflict to Collaboration
Don’t assume stakeholders outside security understand your goals and priorities, but consider how you’ll communicate with them to gain their support.
Cyber News, Cyber Threat Trends