Articles Tagged with ''risk management''

Threat actors, TA505 and MERCURY, exploiting ZeroLogon to attack and gain account control privileges

October 12, 2020

Microsoft recently warned that more cybercriminals have started to incorporate exploit code for the ZeroLogon vulnerability in their attacks. Threat actor TA505, a financially motivated threat group that has been active since at least 2014, is now exploiting this vulnerability.

National Security Agency launches the Center for Cybersecurity Standards

October 9, 2020

The National Security Agency announced the official launch of the Center for Cybersecurity Standards (CCSS) in the Cybersecurity Directorate. This office will lead NSA’s Cybersecurity mission to engage with standards bodies to communicate security requirements and influence standards to secure our National Security Systems and provide support to the Defense Industrial Base (DIB).

The MITRE Corporation has a lab in the FAA-sponsored Center for Advanced Aviation System Development FFRDC

Study finds MITRE ATT&CK improves cloud security, yet security leaders struggle to implement it

October 9, 2020

McAfee and the University of California, Berkeley’s Center for Long-Term Cybersecurity (CLTC) released a new research study, MITRE ATT&CK as a Framework for Cloud Threat Investigation, developed by CLTC researchers. The report focuses on threat investigation in the cloud through the lens of the most widely adopted framework, MITRE ATT&CK.

Switching to electronic access control

What are the seven myths surrounding making the switch to electronic access control solutions?

Brad Smith

October 9, 2020

Amid ever-changing technology, embracing modern security solutions and capabilities can be a challenge for many, especially those who have spent years accustomed to tried-and-true products, like the traditional keyed padlock. Today, decision makers working in the security sector are tasked with sorting through the blitz of new technology offerings and introductions.

Rise in mercenary hacking groups and cyber espionage

October 8, 2020

As the 2020 U.S. presidential election nears, there has been a rise in mercenary hacking groups and cyber espionage. Some say this a direct result of the current administrations’ increasingly isolationist global foreign policy, and that the U.S.’ status in the global cyber domain should be a major discussion point before November.

CISA warns of resurgence of Emotet cyberattacks

October 8, 2020

Emotet — a sophisticated Trojan commonly functioning as a downloader or dropper of other malware — resurged in July 2020, after a dormant period that began in February. Since August, CISA and MS-ISAC have seen a significant increase in malicious cyber actors targeting state and local governments with Emotet phishing emails. This increase has rendered Emotet one of the most prevalent ongoing threats.

Threat of fines, not FUD, drives board decisions on cybersecurity spend

October 8, 2020

Thycotic, provider of privileged access management (PAM) solutions, released its CISO Decisions survey. Based on findings from more than 900 global CISOs/Senior IT decision-makers, the research shows Boardroom investments in cybersecurity are most commonly the result of an incident or fears of compliance audit failure. Because of this, the research shows more than half, 58 percent, of respondents say their organizations plan to add more towards security budgets in the next 12 months.

CISA releases FY2019 Risk Vulnerability Assessment Infographic

October 8, 2020

The Cybersecurity and Information Security Agency (CISA) has released an infographic mapping analysis of 44 of its Risk and Vulnerability Assessments (RVAs) conducted in Fiscal Year 2019 to the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) Framework.

Digital Guardian appoints Tim Bandos as Chief Information Security Officer

October 7, 2020

Digital Guardian announced Tim Bandos will become Chief Information Security Officer (CISO). Bandos will bring more than 15 years of experience to the position including his five years as VP of Cybersecurity at Digital Guardian. Prior to joining Digital Guardian, Bandos was Director of Cybersecurity for Dupont where he was responsible for overseeing internal controls, incident response and threat intelligence.

Mitigating the risks of business travel during the pandemic

What security and risk management issues do you need to consider before business travel resumes?

Matthew Bradley

October 7, 2020

Travel has been limited to prevent the spread of COVID-19; however, as restrictions relax and organizations start to return to operations, we’re beginning to see an increase in business travel. In fact, in May, Business Travel News estimated that 31% of travelers expected to start planning business travel within the next month and 50% of meeting planners anticipated resuming meetings from the months of June to September.

The 2026 threat environment will be louder, faster, and more interconnected. The most pressing risks, from global political volatility to emerging tech disruptions, will challenge organizations to act amid ambiguity and protect credibility in an era of accelerating uncertainty.

Articles Tagged with ''risk management''

Threat actors, TA505 and MERCURY, exploiting ZeroLogon to attack and gain account control privileges

National Security Agency launches the Center for Cybersecurity Standards

Study finds MITRE ATT&CK improves cloud security, yet security leaders struggle to implement it

Switching to electronic access control

Rise in mercenary hacking groups and cyber espionage

CISA warns of resurgence of Emotet cyberattacks

Threat of fines, not FUD, drives board decisions on cybersecurity spend

CISA releases FY2019 Risk Vulnerability Assessment Infographic

Digital Guardian appoints Tim Bandos as Chief Information Security Officer

Mitigating the risks of business travel during the pandemic

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.