The Last Watchdog

NOVEMBER 15, 2021

Such a transformation however, comes with its own set of risks. Misleading information has emerged as one of the leading cyber risks in our society, affecting political leaders, nations, and people’s lives, with the COVID-19 pandemic having only made it worse. So, how do organizations prepare against such threats?

Cyber Risk 268

Cyber Risk Risk Artificial Intelligence Cyber threats 268

Tech Republic Security

APRIL 14, 2021

There were more than 10 million DDoS attacks in 2020, driven by new attack vectors and new threat actors; most of the industries targeted were vital to life during the COVID-19 pandemic.

DDOS 165

DDOS Risk 165

The Last Watchdog

AUGUST 29, 2023

Here’s what you should know about the risks, what aviation is doing to address those risks, and how to overcome them. It is difficult to deny that cyberthreats are a risk to planes. Risks delineated Still, there have been many other incidents since. Fortunately, there are ways to address the risks.

Software 264

Software Risk Artificial Intelligence Cyber Attacks 264

Tech Republic Security

FEBRUARY 24, 2020

Google's reCAPTCHA Enterprise and Web Risk API get a general release; Chronicle Security gets boosts from new threat detection and timelining features.

Threat Detection 217

Threat Detection Risk 217

Tech Republic Security

FEBRUARY 4, 2020

Get ready for consolidation risk, microbreaches, and other cybersecurity hazards, warn experts from Mimecast, the Cyber Resilience Think Tank.

Cybersecurity 218

Cybersecurity Risk 218

Security Affairs

FEBRUARY 6, 2025

The vulnerability CVE-2020-15069 (CVSS score of 9.8) According to Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities , FCEB agencies have to address the identified vulnerabilities by the due date to protect their networks against attacks exploiting the flaws in the catalog.

Firewall 121

Firewall Hacking Cybersecurity Risk 121

Malwarebytes

JANUARY 6, 2025

A US chain of dental offices known as Westend Dental LLC denied a 2020 ransomware attack and its associated data breach, instead telling their customers that data was lost due to an accidentally formatted hard drive. In October 2020, Westend Dental was attacked by the Medusa Locker ransomware group.

Data breaches 145

Data breaches Ransomware Passwords Insurance 145

Tech Republic Security

JANUARY 21, 2021

The number of breaches may have fallen, but the number of exposed records hit a high not seen since 2005, says Risk Based Security.

Data breaches 205

Data breaches Risk 205

Adam Shostack

JANUARY 2, 2025

Gary McGraw joins the IriusRisk Technical Advisory Board I'm very excited that Gary McGraw is joining the Irius Risk Technical Advisory Board as board chair. Gary's a pioneer in software security, and his work in machine learning was my choice to kick off blogging 2020.

Risk 130

Risk Software 130

The Last Watchdog

MAY 5, 2022

Well, the stats are even scarier with over 50% increase in ransomware attacks in 2021, compared to 2020. You’ll significantly reduce your risk if you enforce a minimum security bar for all devices accessing your data. Ransomware? I think you may have heard of it, isn’t the news full of it? Related: Make it costly for cybercriminals.

Ransomware 247

Ransomware Risk Internet Internet 247

Security Affairs

OCTOBER 23, 2024

“According to the SEC’s orders, Unisys, Avaya, and Check Point learned in 2020, and Mimecast learned in 2021, that the threat actor likely behind the SolarWinds Orion hack had accessed their systems without authorization, but each negligently minimized its cybersecurity incident in its public disclosures.”

Hacking 114

Hacking Risk Cybersecurity Government 114

Security Affairs

JANUARY 4, 2025

The botnet has been active since at least May 2020, reaching its peak with 60,000 compromised devices in June 2023. Violators risk penalties, with sanctions aimed at encouraging behavioral change rather than punishment. The experts believe the botnet is controlled by a Chine-linked APT group Flax Typhoon.

Cybersecurity 121

Cybersecurity IoT Hacking Technology 121

Adam Levin

MAY 19, 2021

Experian, 2020: A data breach impacted 24 million Experian customers, plus almost 800,000 businesses in South Africa. Follow the three Ms: Minimize your risk: Don’t provide any more information than necessary to third-parties; be especially careful with sensitive data such as your Social Security number.

Risk 218

Risk Identity Theft Data breaches VPN 218

Security Affairs

FEBRUARY 17, 2024

CISA warns that the Akira Ransomware gang is exploiting the Cisco ASA/FTD vulnerability CVE-2020-3259 (CVSS score: 7.5) Cybersecurity and Infrastructure Security Agency (CISA) added a Cisco ASA and FTD bug, tracked as CVE-2020-3259 (CVSS score: 7.5), to its Known Exploited Vulnerabilities catalog. in attacks in the wild.

Ransomware 141

Ransomware VPN Education Hacking 141

The Last Watchdog

MAY 24, 2021

In 2020, it saw 193 billion credential stuffing attacks globally, with 3.4 Meanwhile, threat actors’ siege on web applications surged 62 percent in 2020 vs. 2019: Akamai observed nearly 6.3 Q: The scale of ‘attacks’ in 2020 is astronomical: 6.3 I’ve known Ragan for a long time and greatly respect his work. It is astronomical.

Financial Services 178

Financial Services Passwords Media Accountability 178

Schneier on Security

JUNE 15, 2021

Really interesting two part analysis of the audit conducted after the 2020 election in Windham, New Hampshire. Clean the dust out of optical-scan read heads regularly; pay attention to the calibration of the optical-scan machines.

Risk 314

Risk 314

The Last Watchdog

MARCH 2, 2020

I caught up with Faiz Shuja, SIRP cofounder, at the RSA 2020 Conference in San Francisco recently. Full automation is still some way off, but the data can be enriched based on certain automation and workflows, automating some 70 percent of the risk investigation. Shuja SOAR also speeds up investigation time. .

Risk 191

Risk Banking Technology Cybersecurity 191

SecureList

OCTOBER 6, 2022

The risk is the highest with older ATM models, as these are difficult to repair or replace and seldom use security software to avoid further degrading their already-subpar performance. We observed the threat landscape of ATM/PoS malware attacks and how it changed in 2020-2022. Methodology. Key findings.

Malware 143

Malware Banking Software Cybercrime 143

Cisco Security

NOVEMBER 18, 2022

Often security researchers and security teams focus on threats to software and the risks associated with authenticating and managing users. As the threat landscape evolves and exposure to risk changes, organizations need to review their threat exposure and consider if current mitigations are sufficient for their needs. .

Risk 145

Risk Telecommunications Internet Internet 145

Cisco Security

SEPTEMBER 26, 2022

As Technology Audit Director at Cisco, Jacob Bolotin focuses on assessing Cisco’s technology, business, and strategic risk. Risk Management and Formula One. Meanwhile, InfoSec is the designer and implementor of risk management capabilities (for instance, ensuring the latest technology is deployed and within expected specifications).

Risk 145

Risk Cybersecurity Technology InfoSec 145

Schneier on Security

FEBRUARY 14, 2020

This is a current list of where and when I am scheduled to speak: I'll be at RSA Conference 2020 in San Francisco. On Wednesday, February 26, at 2:50 PM, I'll be part of a panel on "How to Reduce Supply Chain Risk: Lessons from Efforts to Block Huawei." I'm speaking at SecIT by Heise in Hannover, Germany on March 26, 2020.

Hacking 204

Hacking Risk 204

Malwarebytes

NOVEMBER 12, 2024

In 2020, Ancestry was acquired by investment firm Blackstone for $4.7 So, even if a company has good intentions, there is still a risk of your genetic data being linked to your personally identifiable information (PII). We don’t just report on threats—we remove them Cybersecurity risks should never spread beyond a headline.

Insurance 145

Insurance Accountability Risk Data breaches 145

Malwarebytes

NOVEMBER 27, 2024

The privacy commissioners of both British Columbia and Ontario finished writing a report about the incident in 2020 but LifeLabs managed to hold that up in court for four years. We don’t just report on threats – we help safeguard your entire digital identity Cybersecurity risks should never spread beyond a headline.

Ransomware 125

Ransomware Healthcare Risk Encryption 125

Malwarebytes

NOVEMBER 14, 2024

From calendar years 2020 to 2022, there was a 27% increase in victim reports to the Internet Crime Complaint Center (IC3) of BECs with a real estate nexus. We don’t just report on threats—we remove them Cybersecurity risks should never spread beyond a headline. Keep threats off your devices by downloading Malwarebytes today.

Accountability 143

Accountability Banking Internet Internet 143

Troy Hunt

NOVEMBER 25, 2020

The vulnerability Context Security discovered meant exposing the Wi-Fi credentials of the network the device was attached to, which is significant because it demonstrates that IoT vulnerabilities can put other devices on the network at risk as well. Are these examples actually risks in IoT?

IoT 362

IoT Firmware Risk Manufacturing 362

Krebs on Security

JUNE 18, 2021

Under First American’s documented vulnerability remediation policies, the data leak was classified as a security weakness with a “level 3” severity, which placed it in the “medium risk” category and required remediation within 45 days. “The [employee] did not request a waiver or risk acceptance from the CISO.”

Insurance 330

Insurance Risk Financial Services CISO 330

Jane Frankland

JANUARY 7, 2021

Lesson 1: Gaining more freedom My first lesson came almost as soon as the clock struck January 1st, 2020, when I felt a compulsion to clean, clear, let go of, and renovate my home. I looked at the risk I’d taken. My next blog will be about the 6 Trends I Spotted When Reviewing 2020 and the Cybersecurity Skills Gap.

CISO 189

CISO Cybersecurity Education Banking 189

Adam Levin

FEBRUARY 8, 2021

A December 2020 update infected users with a Trojan-style malware that bombards users with unwanted advertising. There is always a level of risk involved with installing any app to your device. An Android app with over 10 million installations spread malware to its users in a recent update.

Mobile 303

Mobile Advertising Malware Risk 303

Joseph Steinberg

DECEMBER 2, 2022

Patent number US 11,438,334 entitled Systems and Methods for Securing Social Media for Users and Businesses and Rewarding for Enhancing Security , discloses a robust invention that addresses the risks that posts to social media may pose to businesses and individuals alike. US 10,771,464 – Granted in September 2020.

Media 269

Media Technology Artificial Intelligence Risk 269

eSecurity Planet

MARCH 12, 2025

This alarming trend highlights the persistent risks that organizations face from evolving attack methods. Attackers have been leveraging vulnerabilities such as: CVE-2020-7796 affecting the Zimbra Collaboration Suite CVE-2021-21973 and CVE-2021-22054 impacting VMware products Multiple CVEs in GitLabs CE/EE versions.

Risk 95

Risk Software Cybersecurity 95

SecureWorld News

MAY 13, 2024

National Institute of Standards and Technology (NIST) has published the Artificial Intelligence Risk Management Framework (AI RMF). NIST has been working on this framework for some time, as directed by the National Artificial Intelligence Initiative Act of 2020. Govern – Cultivating a risk management culture 2. Very likely.

Artificial Intelligence 100

Artificial Intelligence Risk Government Technology 100

Krebs on Security

MARCH 28, 2023

“Going forward, people who wish to use these services can’t be sure who is actually behind them, so why take the risk?” The United Kingdom, which has been battling its fair share of domestic booter bosses, started running online ads in 2020 aimed at young people who search the Web for booter services.

DDOS 311

DDOS Marketing Computers and Electronics Risk 311

eSecurity Planet

JANUARY 30, 2024

Cloud storage risks involve potential external threats and vulnerabilities that jeopardize the security of stored data. Risks can lead to issues, but at the same time, you can prevent the risks by addressing these issues. Migration challenges result in incomplete transfers, which expose critical information to risk.

Risk 128

Risk DDOS Data breaches Encryption 128

SecureWorld News

FEBRUARY 3, 2025

The operation, which took place on January 29, 2025, comes after years of illicit activity dating back to at least 2020, during which victimsprimarily in the United Statessuffered losses exceeding $3 million.

Phishing 108

Phishing Cybercrime Scams Authentication 108

Krebs on Security

MARCH 30, 2021

A security professional at Ubiquiti who helped the company respond to the two-month breach beginning in December 2020 contacted KrebsOnSecurity after raising his concerns with both Ubiquiti’s whistleblower hotline and with European data protection authorities. ” Ubiquiti has not responded to repeated requests for comment. .

Accountability 280

Accountability IoT Passwords Firmware 280

The Last Watchdog

APRIL 29, 2020

We met at RSA 2020 and had a lively discussion about how today’s cloud-mobile environment enables network users to bypass traditional security controls creating gaping exposures, at this point, going largely unaddressed.

Mobile 193

Mobile CISO Risk Cloud Migration 193

Krebs on Security

FEBRUARY 8, 2021

2020 blog post on an ongoing Qakbot campaign that was first documented three months earlier by Check Point Research. That vulnerability was documented in more detail at exploit archive Packet Storm Security in March 2020 and indexed by Check Point Software in May 2020, suggesting it still persists in current versions of the product.

Phishing 328

Phishing Scams Banking Mobile 328