In 2019, Business Email Compromise (BEC) attacks – a long-standing cybersecurity threat – accounted for $1.7 billion in losses, with cybercriminals using new tactics and techniques to carry out existing attacks. As cybercrime spikes in the wake of COVID-19, BEC’s toll is expected to rise this year. The Federal Bureau of Investigation (FBI) recently issued a warning to businesses on the growing threat of BEC attacks using the pandemic as a backdrop for unusual requests like payments to a “new” vendor or a change of account information.
Application programming interfaces (APIs) make everything a bit easier - from data sharing to system connectivity to delivery of critical features and functionality - but they also make it much easier for the bad actors (and the bad bots they deploy). Here are the top 5 API vulnerabilities that get exploited by hackers, including some tips to help close those gaps.
Why do organizations find it challenging to respond to social engineering incidents and how they can better defend against them? We talk to Daniel Wood, CISSP, GPEN, Associate Vice President of Consulting at Bishop Fox, to find out.
While the burgeoning world of IoT has transformed the ways in which we live and work, the world of IoT has also caught the attention of cybercriminals. As IoT devices become increasingly more advanced, hackers have simultaneously become more sophisticated in their attacks, often targeting pre-existing security loopholes to gain access to company systems.
In part 1 of this series, we covered why Distributed Internet of Things devices are attractive and vulnerable targets for cyber criminals and hackers. Now we turn our attention to strategies for protecting these devices, which in turn, helps to protect your entire network.
Network administrators have long been stretched thin in their attempts to maintain global endpoint security settings, configurations and patching. Now that most, if not all, of their organization’s employees are connecting remotely, the job has become even more difficult.
We talk to Richard Bird, Ping Identity's Chief Customer Information Officer (CCIO), about how prepared the U.S. Government is for the 2020 Presidential Election.
The Internet of Things (IoT) is transforming our homes, businesses and public spaces – mostly for the better – but without proper precautions IoT devices can be an attractive target for malicious actors and cyberattacks. Security threats involving IoT devices often stem from the fact that many IoT devices usually have single-purpose designs and may lack broader capabilities to defend themselves in a hostile environment. For example, a door bell, a toaster or a washing machine frequently do not contain as much storage, memory and processing capability as a typical laptop computer.
As the pandemic continues to interrupt business as usual, companies are exploring new ways to cope with both the mandated and voluntary restrictions to their operations. One way in which business models have adapted to keep costs under control is by utilizing more lone workers for opening, closing, third shifts, curbside deliveries and other customer interactions outside of the premises. While this has helped many organizations trim costs, it has also exposed lone workers to greater risks.
Banks, like other businesses, are taking precautions to make customers feel safe during the COVID-19 pandemic. Placing physical distancing markers on the floor, sanitizing ATMs, installing plexiglass partitions at teller booths and requiring scheduled appointments are just some of the ways financial institutions are mitigating risks for customers. Video surveillance can play a vitally important role right now, as banks look to ensure compliance with these new COVID-related safety measures. IP cameras with intelligent security analytics can help rapidly and accurately detect compliance issues, as well as other suspicious or atypical behavior. After all, banks must continue to monitor physical security even throughout the pandemic and today’s IP cameras with intelligent system-on-chip (SoC) technology can help lessen this burden with highly accurate notifications.
RSS
