In recent years, ransomware attacks have emerged as one of the most pervasive and damaging cyber threats, with criminal gangs employing sophisticated tactics to extort money from individuals, businesses, and even government entities. As the frequency and severity of these at-tacks continue to rise, the question arises: can ransomware gangs be neutralized? While the task may seem daunting, there are strategies that can be employed to combat these cyber-criminals and mitigate the impact of their actions. One approach to neutralizing ransomware gangs involves international collaboration and law e ..read more

The 911 emergency services experienced a significant outage in four states—Nebraska, South Dakota, Texas, and Nevada—sending shockwaves through the affected communities. Speculation points to a cyber attack orchestrated by Chinese intelligence, targeting all 50 states. However, only nine states were impacted, with four officially confirming the disruption. Iowa, Wisconsin, Kentucky, Minnesota, and Florida are still investigating the incident. The question arises: could threat actors bring down emergency services for hours or even days? FBI Director Christopher Wray acknowledges the possibility ..read more

Decision makers keen on integrating AI tools into their operations are expressing concern over data privacy and security. This sentiment extends to their cautious approach towards embracing generative AI, as revealed by a study conducted by Coleman Parkes Research, sponsored by SAS, a leading data analytics firm. Despite the allure of increased productivity promised by Large Language Models (LLMs) in corporate settings, strategic AI advisor Marinela Profi from SAS acknowledges the array of business challenges they pose. Compounding these concerns is the specter of data poisoning, which acts as ..read more

Online users are increasingly becoming targets of phishing attacks, with hackers exploiting the names of leading technology companies to lure unsuspecting victims into scams that result in financial loss or malware infections. According to research from Check Point technology, scammers are prominently using the names of Microsoft and Google to orchestrate phishing attacks. By creating fake websites resembling those of reputable brands, cybercriminals trick users into divulging sensitive information such as passwords and credentials. The top 10 most imitated brands in phishing attacks are as fo ..read more

The Federal Trade Commission, also known as the FTC, recently announced a significant settlement with the health firm Cerebral, requiring the company to pay $7,000,000 for mishandling patient information and inadvertently sharing sensitive details with advertising companies, such as Facebook. Delving into the specifics, Cerebral, a telehealth company specializing in providing medication and therapy for mental health conditions like anxiety, bipolar disorder, and palpitations, disclosed in March 2023 that data pertaining to 3.2 million of its customers, gathered through various websites, applic ..read more

We’re sure you have heard this before: the rate of technological change is accelerating. It is unpredictable and unprecedented. As the World Economic Forum acknowledges, the fourth industrial revolution brings “developments in previously disjointed fields such as artificial intelligence and machine learning, robotics, nanotechnology, 3D printing and genetics and biotechnology [that] are all building on and amplifying one another.” This unprecedented disruption of society by technology introduces many changes in the workforce as well. In the words of the World Economic Forum “more than a third ..read more

SAST is now an indispensable resource for maximizing source code security and mitigating cyber risk. SMEs can benefit immeasurably from writing, maintaining, and implementing static application security testing.  Recall that open-source or first-party code is a high-priority target for hackers. Cybercriminals routinely probe apps for vulnerabilities, some known, others unknown. Indeed, a dramatic uptick in ransomware attacks has occurred since the pandemic. This resulted from a massive and unprecedented shift to remote work, offering many platforms on IoT devices and the accompanying secu ..read more

In the dynamic and ever-evolving landscape of cybersecurity, organizations are increasingly recognizing the importance of fostering a robust security culture to mitigate risks and safe-guard sensitive data. One such approach gaining traction is the implementation of CAT culture, which emphasizes Collaboration, Awareness, and Training as foundational pillars in fortifying defenses against cyber threats. Collaboration: At the heart of CAT culture lies collaboration – the cohesive effort of all stake-holders within an organization to collectively defend against cyber threats. This entails breakin ..read more

When logging into various online accounts, we often encounter a “Remember Me” checkbox, allowing us to stay logged in until we close and reopen the tab. This feature streamlines the login process and enhances convenience for users. However, what happens when a device is shared among multiple individuals in a household? Recent findings from cybersecurity researchers at Zen Shield reveal a potential cyber risk associated with the seemingly innocuous “Remember Me” option. If not managed with caution, this feature could lead to significant security vulnerabilities, granting unauthorized access to ..read more

Cisco Duo, which was acquired by Cisco in 2018, has notified its user base about a potential breach in its database stemming from a compromise on its servers. The breach, initiated through a social engineering attack, underscores the importance of remaining vigilant against phishing attempts, the company emphasizes. The incident unfolded on April 1st, 2024, when the telephony service responsible for delivering two-factor authentication (2FA) for service authentication fell victim to a cyber assault. Initial investigations suggest that the breach occurred due to the theft of an employee’s crede ..read more