Event, Risk and Technology - Cyber Security Informer

Another Event-Related Spyware App

Schneier on Security

NOVEMBER 15, 2022

This month, it’s Egypt’s COP27 Summit app : The app is being promoted as a tool to help attendees navigate the event. But it risks giving the Egyptian government permission to read users’ emails and messages. Last month, we were warned not to install Qatar’s World Cup app because it was spyware.

Spyware

Spyware Technology Encryption Government

News Alert: Security Risk Advisors joins Microsoft Intelligent Security Association (MISA)

The Last Watchdog

JANUARY 7, 2025

Security Risk Advisors (SRA) is a leading cybersecurity firm dedicated to providing comprehensive security solutions to businesses worldwide. Security Risk Advisors SCALR XDR is both a platform, built on Microsoft Azure and a 247 monitoring service with Microsoft Sentinel. Philadelphia, Pa., Philadelphia, Pa., To learn more: [link].

Risk

Risk Penetration Testing Marketing Technology

News alert: Aembit announces speakers for NHIcon event, highlighting non-human identity security

The Last Watchdog

JANUARY 15, 2025

15, 2025, CyberNewswire — Aembit , the non-human identity and access management (IAM) company, unveiled the full agenda for NHIcon 2025, a virtual event dedicated to advancing non-human identity security, streaming live on Jan. Silver Spring, MD, Jan. 28 and headlined by industry luminary Kevin Mandia. Users can visit aembit.io

Accountability

Accountability Software Risk Media

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

The Last Watchdog

NOVEMBER 12, 2024

Related: Technology and justice systems The U.S. Avaya Holdings , Check Point Software Technologies , and Mimecast Limited each minimized or obscured the extent of security breaches linked to the SolarWinds Orion hack, impacting investor trust and highlighting the critical importance of clear, truthful communication.

CISO

CISO CSO Risk Cyber threats

Policy vs Technology

Schneier on Security

FEBRUARY 21, 2020

I teach cybersecurity policy and technology at the Harvard Kennedy School of Government. My most recent two books, Data and Goliath -- about surveillance -- and Click Here to Kill Everybody -- about IoT security -- are really about the policy implications of technology. Technology is inherently future focused.

Technology

Technology Encryption Surveillance Government

Best Practices for Hospitals To Manage Risks To CyberSecurity Created By Medical Technology And Information Systems: A Webinar With The CIA’s Former CyberSecurity Director And The Top CyberSecurity Columnist

Joseph Steinberg

OCTOBER 12, 2022

Join Bonnie Stith, former Director of the CIA’s Center for Cyber Intelligence , and and Joseph Steinberg, renowned cybersecurity expert witness and columnist , for a special, free educational webinar, Best Practices for Asset Risk Management in Hospitals. The discussion will cover: * How IT asset risks have evolved.

Cybersecurity

Cybersecurity Technology Risk Artificial Intelligence

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

The Last Watchdog

DECEMBER 18, 2024

To wrap up our 2024 year-end roundtable, we turn our attention to new technologies and trends that are emerging to help bridge the gaps. Organizations face rising risks of AI-driven social engineering and personal device breaches. As compute costs decrease, autonomous operations and AI-discovered zero-day exploits loom.

Risk

Risk Threat Detection Technology Phishing

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

The Last Watchdog

OCTOBER 23, 2024

As small businesses increasingly depend on digital technologies to operate and grow, the risks associated with cyber threats also escalate. INE Security recommends establishing a routine for updating and patching software, which can significantly reduce the risk of a breach. Cary, NC, Oct.

Small Business

Small Business Data breaches Backups Passwords

10 Personal Finance Lessons for Technology Professionals

Troy Hunt

DECEMBER 30, 2018

So here it is - 10 Personal Financial Lessons for Technology Professionals. For example, the ICT industry (Information, Communication, Technology) was the 5th highest paying with an average salary of $104,874 (dollars are Aussie, take off about 30% for USD). Intro: This Industry Rocks! Banking is below that. Medical even lower.

Technology

Technology Education Marketing Insurance

CyberSecurity Is Not Enough: Businesses Must Insure Against Cyber Losses

Joseph Steinberg

JULY 8, 2021

Ironically, while many larger enterprises purchase insurance to protect themselves against catastrophic levels of hacker-inflicted damages, smaller businesses – whose cyber-risks are far greater than those of their larger counterparts – rarely have adequate (or even any) coverage.

Insurance

Insurance Cyber Insurance Cybersecurity Small Business

How Outsourcing Cybersecurity Crashed the World’s IT: A Webinar With Columbia University Faculty

Joseph Steinberg

JULY 23, 2024

Columbia’s panel of security experts and Columbia University Technology Management faculty will include Cristina Dolan Christy Fernandez-Cull Joseph Steinberg …and will be moderated by Program Director, Alexis Wichowski.

Artificial Intelligence

Artificial Intelligence Cybersecurity Government Technology

What are the key Threats to Global National Security?

IT Security Guru

NOVEMBER 1, 2024

As technology advances, so do the methods and motivations of those who seek to disrupt global stability. The risk posed by these actors continues to grow as nations rely increasingly on interconnected digital infrastructure. In today’s interconnected world, national security concerns have evolved beyond traditional military threats.

Technology

Technology Cyber Attacks Government Social Engineering

Managing Cybersecurity Risk in M&A

Cisco Security

SEPTEMBER 26, 2022

As Technology Audit Director at Cisco, Jacob Bolotin focuses on assessing Cisco’s technology, business, and strategic risk. Bolotin champions the continued advancement of the technology audit profession and received a master’s degree in cybersecurity from the University of California Berkeley.

Risk

Risk Cybersecurity Technology InfoSec

GUEST ESSAY: The many ways your supply chain is exposing your company to a cyber attack

The Last Watchdog

MAY 16, 2022

The same technologies that make supply chains faster and more effective also threaten their cybersecurity,” writes David Lukic , a privacy, security, and compliance consultant. The inherent complexity of the supply chain for modern technology is a reason why so many cybercrime attempts have been successful.

Cyber Attacks

Cyber Attacks Firmware Artificial Intelligence Manufacturing

News alert: INE Security’s focus on practical security training enhances career stability in tech

The Last Watchdog

FEBRUARY 19, 2025

19, 2025, CyberNewswire — 2025 marks a time of unprecedented volatility in the technology job market. On one hand, dependence on technology is soaring. The growth of AI and machine learning is propelling a surge in new technologies, tactics, and ideas. Cary, NC, Feb.

Marketing

Marketing Technology Cybersecurity Data breaches

Ransomware Attack Ends a 150 Year Company

Security Boulevard

MARCH 5, 2025

This terribly unfortunate event is a good example of how cybersecurity matters to every company that depends on digital technology - even if it is to run your books or manage your logistics. It is a dynamic adversarial endeavor where risk must be continually managed. It is not just a technical problem that can be solved!

Ransomware

Ransomware Cybersecurity Risk Technology

Shifting from Business Continuity to Continuous Business in Cyber

Jane Frankland

OCTOBER 25, 2024

Attending their annual global event series, SHIFT , in London recently, he redefined the future of business resilience in his keynote address and positioned the concept of continuous business—a ground-breaking state of perpetual availability and robustness which revolves around four pivotal elements: 1.

Cyber Risk

Cyber Risk CISO Cyber threats Risk

Hack Yourself First Workshops in Australia, Denmark and Portugal (Virtually, of Course)

Troy Hunt

MARCH 15, 2020

That sucks for you because you end up both missing out on events and sooner or later, suffering from cabin fever (I've always found that difficult across many years of remote work). It also sucks for companies like NDC Conferences whose entire livelihood is running the very events that people are now avoiding at all costs. Crisitunity!

Hacking

Hacking Technology Software Risk

WHEN IS CYBERSECURITY IS WEEK

Hacker's King

OCTOBER 26, 2024

As technology continues to evolve, so too do the threats that target both individuals and organizations. Activities during this week include engaging workshops, informative webinars, and community events, all designed to empower individuals with the knowledge and skills necessary to navigate today’s cyber threats effectively.

Cybersecurity

Cybersecurity Cyber threats Education Passwords

Anti-Ransomware Company Exagrid Pays $2.6 Million Ransom

Adam Levin

JUNE 4, 2021

Practice the 3Ms: Minimize your risk of exposure: Don’t take unnecessary risks and invest in cyber defenses and education. Manage the damage: Plan ahead in the event of a successful cyberattack and have a cyber liability insurance plan to help offset the costs. . We are in the midst of an ongoing ransomware epidemic.

Ransomware

Ransomware Backups Insurance Healthcare

News alert: INE Security spotlights healthcare companies facing rising exposure to costly breaches

The Last Watchdog

MARCH 24, 2025

In recognition of National Physicians Week 2025, the company is drawing attention to new industry data showing a sharp rise in cyberattacks on hospitals and clinicsincidents that have cost the healthcare sector millions and posed significant risks to patient safety and trust. million per incident?

Healthcare

Healthcare Penetration Testing Education Cyber threats

Cybersecurity in Agriculture: Rising Threats Pose Risk of Disruptions

SecureWorld News

JULY 22, 2024

Panelists unanimously agreed that cyber threats are increasing in both frequency and sophistication, posing significant risks to individuals, small businesses, corporations, and large public entities. Lancaster Farming covered the event, with quotes from participants. Fitzgerald is an a g business c onsultant at Horizon Farm Credit.

Risk

Risk Cybersecurity Small Business IoT

News alert: Blackwired launches ‘ThirdWatch?’ — an advanced third-party risk management platform

The Last Watchdog

SEPTEMBER 4, 2024

4, 2024, CyberNewsWire — Blackwired , the leading cyber observatory for disruptive cybersecurity technologies, has announced the launch of ThirdWatch?, Utilizing a non-invasive, zero-touch technology process, ThirdWatch? Singapore, Sept. ThirdWatch? Central to ThirdWatch? ThirdWatch?

Risk

Risk Artificial Intelligence Cyber Risk Cyber threats

Top 7 Cloud Storage Security Issues & Risks (+ Mitigations)

eSecurity Planet

JANUARY 30, 2024

Cloud storage risks involve potential external threats and vulnerabilities that jeopardize the security of stored data. Risks can lead to issues, but at the same time, you can prevent the risks by addressing these issues. Migration challenges result in incomplete transfers, which expose critical information to risk.

Risk

Risk DDOS Data breaches Encryption

GUEST ESSAY: A roadmap for the finance teams at small businesses to improve cybersecurity

The Last Watchdog

SEPTEMBER 25, 2023

Nonprofits are equally at risk, and often lack cybersecurity measures. Given the risk involved, small businesses and nonprofits must consider prioritizing cybersecurity policies and practices to stay protected, retain customers, and remain successful. Security places a crucial role in your technology.

Small Business

Small Business Cybersecurity Technology Accountability

News Alert: CybSafe CEO Oz Alashe MBE recognized as “Security Industry Innovator” for 2023

The Last Watchdog

JULY 11, 2023

Boston, July 7, 2023 — CybSafe, the human risk management platform, has today announced CEO Oz Alashe MBE has been named as a SecurityInfoWatch.com , Security Business and Security Technology Executive magazines’ 2023 Security Industry Innovator Award winner. We are developing intelligent software to help them.”

Cyber Risk

Cyber Risk Cyber threats Risk Technology

Codefinger ransomware gang uses compromised AWS keys to encrypt S3 bucket

Security Affairs

JANUARY 15, 2025

We also thoroughly investigate all reports of exposed keys and quickly take any necessary actions, such as applying quarantine policies to minimize risks for customers without disrupting their IT environment. In the event a customer suspects they may have exposed their credentials, they can start by following the steps listed in this post.

Encryption

Encryption Ransomware Authentication Accountability

SHARED INTEL Q&A: Everything the Cisco-Splunk merger tells us about the rise of SIEMs

The Last Watchdog

OCTOBER 17, 2023

Nayyar: Many security vendors want a piece of the SIEM market, even if their technology isn’t necessarily purpose-built. Combining a security Information tool with a security event tool made it easier to correlate alerts generated by security products, like firewalls and IDS, normalize it, and then analyze it to identify potential risks.

Marketing

Marketing Cloud Migration Threat Detection Firewall

GUEST ESSAY: Addressing data leaks and other privacy, security exposures attendant to M&As

The Last Watchdog

JANUARY 27, 2022

The FBI recently issued a warning that ransomware gangs are targeting companies during “time-sensitive financial events”, such as mergers and acquisitions. So what are some of the specific security risks and challenges that organizations face and best practices to help close the cybersecurity gap in each stage? Post-Close Risks.

Marketing

Marketing Data privacy Risk Accountability

Hacked Robot Vacuums Hurl Racial Slurs, Show IoT Devices Risks

SecureWorld News

OCTOBER 16, 2024

All kidding aside, in a bizarre turn of events, owners of robot vacuums across the U.S. With the increasing adoption of smart home technologies, ensuring robust security measures for such devices is crucial to prevent hackers from gaining control or accessing private information. What did the robot vacuum say to its homeowner?

IoT

IoT Hacking Risk Internet

Securing Success: The Crucial Role of a Cybersecurity Specialist in a Growing Business

Joseph Steinberg

JANUARY 18, 2024

Securing Success: The Crucial Role of a Cybersecurity Specialist in a Growing Business Human society is increasingly dependent on computer systems and the data housed and utilized within IT (information technology) infrastructure. In none of the aforementioned three cases would any rational person try to “wing it” alone.

Cybersecurity

Cybersecurity Computers and Electronics Cyber Risk Risk

News alert: INE Security announces new initiative to help companies accelerate CMMC 2.0 compliance

The Last Watchdog

JANUARY 27, 2025

Harnessing a powerful hands-on lab platform, cutting-edge technology, a global video distribution network, and world-class instructors, INE Security is the top training choice for Fortune 500 companies worldwide for cybersecurity training in business and for IT professionals looking to advance their careers.

Password Management

Password Management Architecture Threat Detection Cybersecurity

LLM Summary of My Book Beyond Fear

Schneier on Security

SEPTEMBER 15, 2023

Claude’s reply: Here’s a brief summary of the key themes and arguments made in security expert Bruce Schneier’s book Beyond Fear: Thinking Sensibly About Security in an Uncertain World : Central Themes: Effective security requires realistic risk assessment, not fear-driven responses. Focus only on proportional responses.

Data collection

Data collection Risk Surveillance Manufacturing

A Deep Dive into the Last Vendor Breaches of 2024: What We Learned

Responsible Cyber

NOVEMBER 23, 2024

This escalation highlights the urgent need for organizations to prioritize the security of their vendor networks and assess their associated risks meticulously. Financial services have also faced significant incidents, with many institutions relying heavily on third-party technology partners to deliver essential services.

Risk

Risk Healthcare Education Cybersecurity

Story of the Year: global IT outages and supply chain attacks

SecureList

DECEMBER 9, 2024

This incident serves as a stark reminder of the critical risks posed by global IT disruptions and supply chain weaknesses. This case underscores the serious risk that social engineering and supply chain attacks pose to open-source projects. The issue serves as a reminder of the potential risks inherent in widely used software.

Internet

Internet Internet Risk Social Engineering

2025 SecureWorld Theme: Once Upon a Time in Cybersecurity

SecureWorld News

JANUARY 7, 2025

Climbing to Risk: Lessons from Jack and the Beanstalk In Jack and the Beanstalk, Jack infiltrates the giant's castle, navigates hidden dangers, and escapes with treasures. This mirrors the risks associated with AI in cybersecurity, where powerful tools can be misused or misdirected.

Cybersecurity

Cybersecurity Social Engineering Phishing Engineering

MY TAKE: Log4j’s big lesson – legacy tools, new tech are both needed to secure modern networks

The Last Watchdog

MARCH 29, 2022

What’s more, it will likely take a blend of legacy security technologies – in advanced iterations – combined with a new class of smart security tools to cut through the complexities of defending contemporary business networks. Its rather mundane function is to record events in a log for a system administrator to review and act upon, later.

Firewall

Firewall Internet Internet Digital transformation

U.S. Govt. Apps Bundled Russian Code With Ties to Mobile Malware Developer

Krebs on Security

NOVEMBER 28, 2022

Edwards said Pushwoosh began as Arello-Mobile , and for several years the two co-branded — appearing side by side at various technology expos. Pushwoosh employees posing at a company laser tag event. Around 2016, he said, the two companies both started using the Pushwoosh name. Edwards said the U.S. ” GOV 311. ”

Mobile

Mobile Malware Technology Government

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. critical infrastructure in the event of a major crisis or conflict with the United States. ” continues the report.

VPN

VPN Government Malware Manufacturing

How Secure Is Cloud Storage? Features, Risks, & Protection

eSecurity Planet

JANUARY 18, 2024

When assessing the overall security of cloud storage and choosing a solution tailored to your business, it helps to determine its features, potential risks, security measures, and other considerations. CSP collaboration improves the security environment where there’s a need to mitigate the emerging risks quickly and comprehensively.

Risk

Risk Backups Encryption DDOS

GUEST ESSAY: NIST’s Cybersecurity Framework update extends best practices to supply chain, AI

The Last Watchdog

MARCH 25, 2024

The National Institute of Standards and Technology (NIST) has updated their widely used Cybersecurity Framework (CSF) — a free respected landmark guidance document for reducing cybersecurity risk. It seeks to establish and monitor your company’s cybersecurity risk management strategy, expectations, and policy. The CSF 2.0

Cybersecurity

Cybersecurity Artificial Intelligence Risk Government

GUEST ESSAY: Data loss prevention beccomes paramount — expecially in the wake of layoffs

The Last Watchdog

FEBRUARY 13, 2023

But it’s a real and growing risk to be aware of. In 2020, Forbes reported that pandemic layoffs and remote work served to increase the risk of company data loss. Tesla, for example, suffered two cybersecurity events after layoffs back in 2018. With AI on the case, it will auto-recognize suspicious events and take care of them.

Artificial Intelligence

Artificial Intelligence Technology Education Risk

Zero Trust and the Failure of Sampling: Two Important Cybersecurity Trends

Joseph Steinberg

JUNE 10, 2022

Many of Gillis’s comments echoed those that I have heard in recent months from CISOs and others within the cybersecurity industry who witness developments from various vantage points quite different from those of a vendor of cybersecurity technologies. Sampling No Longer Works.

Cybersecurity

Cybersecurity Artificial Intelligence CISO Wireless

News alert: INE secures spot in G2’s 2025 Top 50 education software rankings

The Last Watchdog

FEBRUARY 25, 2025

Harnessing the worlds most powerful hands-on lab platform, cutting-edge technology, global video distribution network, and world-class instructors, INE is the top training choice for Fortune 500 companies worldwide, and for IT professionals looking to advance their careers.

Education

Education Software Small Business Cybersecurity

Another Event-Related Spyware App

News Alert: Security Risk Advisors joins Microsoft Intelligent Security Association (MISA)

Trending Sources

News alert: Aembit announces speakers for NHIcon event, highlighting non-human identity security

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

Policy vs Technology

Best Practices for Hospitals To Manage Risks To CyberSecurity Created By Medical Technology And Information Systems: A Webinar With The CIA’s Former CyberSecurity Director And The Top CyberSecurity Columnist

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

10 Personal Finance Lessons for Technology Professionals

CyberSecurity Is Not Enough: Businesses Must Insure Against Cyber Losses

How Outsourcing Cybersecurity Crashed the World’s IT: A Webinar With Columbia University Faculty

What are the key Threats to Global National Security?

Managing Cybersecurity Risk in M&A

GUEST ESSAY: The many ways your supply chain is exposing your company to a cyber attack

News alert: INE Security’s focus on practical security training enhances career stability in tech

Ransomware Attack Ends a 150 Year Company

Shifting from Business Continuity to Continuous Business in Cyber

Hack Yourself First Workshops in Australia, Denmark and Portugal (Virtually, of Course)

WHEN IS CYBERSECURITY IS WEEK

Anti-Ransomware Company Exagrid Pays $2.6 Million Ransom

News alert: INE Security spotlights healthcare companies facing rising exposure to costly breaches

Cybersecurity in Agriculture: Rising Threats Pose Risk of Disruptions

News alert: Blackwired launches ‘ThirdWatch?’ — an advanced third-party risk management platform

Top 7 Cloud Storage Security Issues & Risks (+ Mitigations)

GUEST ESSAY: A roadmap for the finance teams at small businesses to improve cybersecurity

News Alert: CybSafe CEO Oz Alashe MBE recognized as “Security Industry Innovator” for 2023

Codefinger ransomware gang uses compromised AWS keys to encrypt S3 bucket

SHARED INTEL Q&A: Everything the Cisco-Splunk merger tells us about the rise of SIEMs

GUEST ESSAY: Addressing data leaks and other privacy, security exposures attendant to M&As

Hacked Robot Vacuums Hurl Racial Slurs, Show IoT Devices Risks

Securing Success: The Crucial Role of a Cybersecurity Specialist in a Growing Business

News alert: INE Security announces new initiative to help companies accelerate CMMC 2.0 compliance

LLM Summary of My Book Beyond Fear

A Deep Dive into the Last Vendor Breaches of 2024: What We Learned

Story of the Year: global IT outages and supply chain attacks

2025 SecureWorld Theme: Once Upon a Time in Cybersecurity

MY TAKE: Log4j’s big lesson – legacy tools, new tech are both needed to secure modern networks

U.S. Govt. Apps Bundled Russian Code With Ties to Mobile Malware Developer

China’s Volt Typhoon botnet has re-emerged

How Secure Is Cloud Storage? Features, Risks, & Protection

GUEST ESSAY: NIST’s Cybersecurity Framework update extends best practices to supply chain, AI

GUEST ESSAY: Data loss prevention beccomes paramount — expecially in the wake of layoffs

Zero Trust and the Failure of Sampling: Two Important Cybersecurity Trends

News alert: INE secures spot in G2’s 2025 Top 50 education software rankings

Stay Connected