Management - Articles - Page 341

Best practices during World Password Day

May 6, 2021

Thursday, May 6 is World Password Day, a day dedicated to promoting safer password practices. Strong password management has been especially important as cyberattacks have skyrocketed since the onset of the pandemic and the switch to remote work. Here, security executives share their insight and tips on how to create and promote safer password practices in the enterprise and among employees.

Financial services experienced 125% surge in exposure to mobile phishing attacks in 2020

May 6, 2021

Lookout, Inc. released a report showing that mobile phishing exposure doubled among financial services and insurance organizations between 2019 and 2020. The Lookout Financial Services Threat Report illustrates that these organizations were not immune to mobile phishing despite an increased adoption of mobile device management (MDM).

Inside look at the Genesis Market, a cybercriminal market

May 6, 2021

Digital Shadows released new research into the movement of cybercriminal marketplaces with a feature on Genesis market. According to the Digital Shadows Photon Research Team, Genesis is a high-profile and trusted repository of digital fingerprints that has grown in popularity since it was launched in beta in 2017. In 2020, Genesis commanded 65% of mentions across criminal forums for fingerprinting services. While other markets have come and gone, Genesis continues to endure and has grown year-on-year. In the last two months alone, more than 5,000 new listings have been added to Genesis, bringing the total number of listings to more than 350,000.

The top three collaboration security misses by CISOs

Brandon Long

May 6, 2021

As we continue to embrace hybrid work, chief information security officers (CISOs) and compliance teams are wading through and in some cases even overlooking many different areas related to collaboration security. We’ve highlighted the top three areas of risk in this post which should keep CISOs awake at night. The remote workplace continues to evolve at lightning speed, and so too should CISOs – or risk sensitive materials ending up in the wrong hands.

Corporate boards are better at cybersecurity but still need improvement

Robert R. Ackerman Jr.

May 6, 2021

While a number of useful countermeasures are being taken across corporate boards, progress remains relatively slow in the face of borderline existential threats. Not so long ago, companies thought of cybersecurity as a technology problem to be overseen by the chief security officer or the chief information officer, or as a compliance issue to be managed with audit functions. Today, thankfully, a more holistic, proactive and analytical approach is generally taken. There is more security training and better hygiene and most boards now count a seasoned CISO as one of their directors.

7 things every CISO must know about ransomware

Josh Levine

May 6, 2021

Ransomware is one of the most prominent cybersecurity threats organizations face today. Any institution or company (small or large) can fall victim to ransomware – including schools, healthcare providers, educational facilities, non-profit entities, and government agencies. Cybercriminals that deploy ransomware attacks do not discriminate. Thankfully, there are ways to protect your organization from ransomware attacks. In this article, you’ll discover everything you need to know about ransomware as a chief information security officer (CISO), from its evolution to preventative methods to prevention.

SEC0521-Cyber_FEAT-MAIN-slide1_1170x878px

Cyber Tactics

Exploitation in the time of COVID

John McClurg

May 5, 2021

BlackBerry Limited released its 2021 BlackBerry Threat Report, detailing a sharp rise in cyberthreats facing organizations since the onset of COVID-19. The research shows a cybercrime industry which has not only adapted to new digital habits, but also become increasingly successful in finding and targeting vulnerable organizations.

SEC0521-Cover_FEAT-MAIN-slide1_1170x878px

Ensuring the security of arts, museums and cultural heritage facilities during lockdown and beyond

A coordinated response effort from museums and cultural heritage institutions enable security directors to continue to ensure the security of their collections and facilities.

Maria Henriquez

May 5, 2021

To maintain a unified security and safety operation during closure, many museums and cultural heritage institutions have relied on tried-and-true security and risk management practices, and repurposed their time and energy to reassess, monitor and explore additional risk-mitigation measures to safely reopen and welcome the public back through their doors.

Why security has broken down—and what it means now (Part 1)

Andrew Peterson

May 5, 2021

Life used to be simpler for security teams. In the legacy world, they had a clear understanding of the environment they needed to protect—typically the standard LAMP stack (Linux, Apache, MySQL, PhP). Within this straightforward, relatively static infrastructure, they could carve out a network layer all for themselves to implement the security technologies of their choice. They also had a direct line to vendors to discuss the security controls that needed to be implemented. But in the age of DevOps and cloud, things just don’t work this way anymore. Four key changes have left security teams struggling to protect applications and organizations.

Antisemitic incidents in 2020 remained at a historic high

May 5, 2021

Antisemitic incidents remained at a historically high level across the United States in 2020, with a total of 2,024 incidents of assault, harassment and vandalism reported to ADL (the Anti-Defamation League). While antisemitic incidents declined by 4 percent after hitting an all-time high in 2019, last year was still the third-highest year for incidents against American Jews since ADL started tracking such data in 1979.