Code Red: Hospitals Are Facing a Major Ransomware Threat

As the U.S. healthcare system struggles to cope with the COVID-19 pandemic, it has been fighting another major battle – ransomware. Nearly half (48%) of hospitals, according to a new study, have had to disconnect their networks in the past six months because of ransomware. Midsize hospitals are especially at risk, according to the study, Perspectives in Healthcare Security,...

Read More

UK Information Commissioner pronounced £42 million worth penalties on companies

UK’s Information Commissioner Office(ICO) has disclosed that it has slapped multiple penalties on companies that failed to protect the information of its customers from data breaches last year. And estimates are in that the amount could total around £42 million that includes the £20m penalty slapped on British Airways and Marriott Hotel Chain. According to a research carried out by law firm RPC, the British ICO pronounced similar penalties amounting to just £2.5m in 2019. RPC report released on August 27th,2021 states that British Airways had to...

Read More

How secure is Apple iPhone 13 Satellite Connectivity

Apple Inc has made it official that it is going to launch its flagship iPhone 13 in September second week this year and an official statement from the technology giant reveals that the device is going to get an additional feature as Satellite Connectivity support. What that means is that iPhone device users who are in a region where there are no 4G or 5G signals can use the service of Low Earth Orbit (LEO) communication satellites to make calls or to send messages. According to MacRumors, a blog that is being used by most of the Apple iPhone users...

Read More

Cyber Threat to Glasgow COP26

UN Climate Change Conference, shortly known as COP26, scheduled to be held in between November 1st, 2021 to November 12th, 2021 at Glasgow, Scotland and an alert issued by the Sunday Mail says that the conference that is to be attended by many supreme world leaders including United States Joe Biden and Russian President Vladimir Putin, is likely to be targeted by a sophisticated cyber attack. According to a twitter report citing The Sunday Mail as the reporting source, Glasgow’s underground and train network might be targeted by some state funded...

Read More

Details about Microsoft Azure Cosmos DB vulnerability

Customers using Microsoft Azure cloud platform for their application needs are being warned against a new vulnerability that has been discovered recently by a security company named WIZ. The Cybersecurity firm has named the Cosmos DB vulnerability as ChaosDB vulnerability and warned that the flaw could have exposed content related to thousands of Azure clients to date. Fortune 500 companies, such as T-Mobile and Coca-Cola, use CosmosDB platform to store vast amounts of data in real time. And Jupyter Notebook feature on the said platform allowed...

Read More

Drilling Rigs in deepwater are vulnerable to Cyber Attacks

A study conducted by a cybersecurity firm named Naval Dome has discovered that most of the drilling rigs operating in deep waters are vulnerable to cyber attacks. Naval Dome researchers found in their two-year-old study that various companies involved in oil business were mitigating cyber risks with great care. However, most of them were ill prepared and were in a mood to mitigate risks only when their IT infrastructure was targeted and not proactive. Project findings show the companies cannot mitigate sophisticated risks, as they were lacking...

Read More

Boston Public Library hit by Cyber Attack

Boston Public Library (BPL) branches based in Massachusetts have been witnessing a digital disruption since Wednesday last week, all because of a cyber attack. And sources say that they are using pen and paper to keep the administrative tasks operational. The IT staff of the BPL is unsure when the services will be brought back to normalcy, as the recovery work might prove time-consuming and is underway. Natasha Fee, the spokeswoman for BPL Computer Network, has confirmed the news and stated that the library operations will remain operational on...

Read More

Cybersecurity in Software Development: The Good Rules to Follow

IT security is the cornerstone in software development: it is essential to carry out an information security risk assessment and an impact assessment to ensure the privacy of sensitive data processed by the application in the project. Cybersecurity must be the cornerstone of the software code development process. It is of fundamental importance to guarantee the safety requirements at every stage of its life cycle. From the embryonic stage of the project, it is necessary to undertake a path that has information security as its guiding thread. According...

Read More

CCSP vs. Cloud+: How Do They Stack Up?

As more organizations move their operations to the cloud for the benefits of improved efficiency, better scalability and faster deployment, a majority (96%) of cybersecurity professionals say they are concerned about public cloud security, according to the 2021 Cloud Security Report by Cybersecurity Insiders. It comes as no surprise, then, that spikes in demand for cybersecurity...

Read More

Important information about Ragnarok Ransomware and Hive Ransomware

Ragnarok Ransomware that was active since 2019 has made it official that it is going to shut its operations by this month’s end. The file encrypting malware group has also released a decryption key for zero cost to help victims clean up their databases. Ragnarok aka Asnarok, released the decryption key on one of the affiliate websites of Europol’s NoMoreRansom portal and assured that they will release a clean version on the main website by the first week of September 2021. Highly placed sources say that Ragnarok that also involved in double extortion...

Read More

UK new information security commissioner is John Edwards

United Kingdom has issued a press update on the appointment of its next information commissioner and reports are because it is going to be John Edwards, who’s currently serving as Privacy Commissioner for New Zealand since 2014. Factually speaking, an Information Commissioner plays a vital role in regurgitating data flow between companies and their customers, respectively. It helps in protecting the rights of citizens and offers a plan to companies on what to do and what not to do when it comes to data collection and its security. UK’s Information...

Read More

Mobile Security companies are lining up for protection against Pegasus Malware

As the Pegasus malware nuisance is slowly found politically gripping the entire world, companies offering security solutions to mobile users are getting busy in finding out a solution that helps protect against the infection repercussions caused by the Pegasus Malware. Recently, Zimperium, a US based technology company, was assigned with the duty by Department of Defense and the responsibility was to deliver a comprehensive Mobile Protection against the said spying tool. The Cybersecurity firm states it has already started protecting its government...

Read More

(ISC)² Security Congress 2021 is Now Fully Virtual

(ISC)² is transitioning this year’s Security Congress event from a hybrid experience to an entirely virtual one. Join us October 18-20 from your local workspace for more than 125 educational sessions and take advantage of the powerful collaboration you can only find at a conference of your peers who are dedicated to helping one another...

Read More

Cybersecurity tips for School and College students in 2021

As most of the students in United States are preparing to attend physical classes from September first week for the academic year 2021-2022, Sophos has issued some Cybersecurity tips for school and college students and those are follows- Website encryption is must- Whether the student is attending physical or online classes, sending data online with encryption makes complete sense as it protects the information from falling into the hands of hackers, third parties and state funded actors who are always found snooping through espionage tools. Creating...

Read More

Cyber Attack on Crypto Exchange brings $97 million loss to customers

Japan-based Cryptocurrency Exchange Company named ‘Liquid’ was reportedly hit by a cyber attack after which the cyber crooks managed to pull $97 million directly from the e-wallets of several customers. Highly placed sources suspect a well known cyber criminal gang behind the attack and have launched a separate investigation that also includes security veterans from the law enforcement. Currently, the officials are busy in tracking down the individual/gang behind the attack and are looking for ways to compensate the currency that was lost by the...

Read More

Australia passes new data privacy bill for criminals

Australian government has passed a new bill that allows the law enforcement agencies to spy on criminals and if necessary suspend or take over their online accounts on a permanent note. Titled the Surveillance Legislation Amendment (Identity and Disrupt) bill, it will allow the Australian Federal Police (AFP) and Australian Criminal Intelligence Commission to get data disruption warrants to change, copy, add or delete data related to cyber criminals and suspects. Security analysts say that such type of warrants allow the law enforcement obtain...

Read More

Names of new ransomware groups that are on rise

All these days the government agencies and corporate networks were busy in combating known ransomware groups such as REvil, Conti, DarkSide, CLOP and Egregor along with Babuk, DopplePaymer and Ragnar. Now, a report released by the security firm Palo Alto Networks has confirmed that the list needs to have 4 new names added to list and those are AvosLocker, Hive, Hello Kitty and LockBit 2.0. Unit 42 Security Team of Palo Alto Networks says that its research has found a rise in the spread of 4 new ransomware packages that have a history of harassing...

Read More

This feed has moved and will be deleted soon. Please update your subscription now.

The publisher is using a new address for their RSS feed. Please update your feed reader to use this new URL: http://www.alienvault.com/site/blog-labs-rss-short The post This feed has moved and will be deleted soon. Please update your subscription now. appeared first on Cybersecurity Insiders. August 25, 2021 at 09:10...

Read More

Thinking about CAP or CISSP? Here’s How They Compare.

The Certified Authorization Professional (CAP) and Certified Information Systems Security Professional (CISSP) credentials. Both globally renowned certifications are held by experts deeply skilled and experienced in cybersecurity. What are the key distinctions you should consider if you’re weighing which one to pursue? CAP-certified security professionals have proven their...

Read More

Ransomware news headlines trending on Google

FBI has issued a fresh alert against the activities being carried out by a newly detected ransomware group dubbed OnePercent. The law enforcement agency says that the threat actors have been targeting companies since Nov’2020 by using the emulation software of Cobalt Strike. In the latest discovery made by FBI, security analysts found that the OnePercent Ransomware group was compromised victims via phishing emails that were laced with malicious attachments such as Banking Trojans. Once clicked and downloaded, the Banking Trojan downloads extra...

Read More

Microsoft offers tips to secure Windows 365 Cloud PCs

Microsoft has issued some tips to protect those who are using Windows 365 Cloud PCs and here are some details- 1.) First, Microsoft is asking its Windows 365 Enterprise Customers to follow standard Win 10 practices that include admin privileges only to those eligible. 2.) It is also urging its 365 customers to download and install Microsoft Endpoint Manager and leverage Microsoft Defender to secure endpoints, including those PCs using cloud services. 3.) Using multifactor authentication (MFA) and user sign-in risk mitigation service is also being...

Read More

Five Steps to Get a Cybersecurity Job

Finding your first job in any field is often a challenge. But your first job in cybersecurity? With no previous experience? That may seem impossible, but it’s not. According to the (ISC)² Cybersecurity Workforce Study 2020, the cybersecurity workforce needs to grow by 89% to effectively defend organizations’ critical assets; however, that doesn’t mean jobs are easy to find...

Read More

deepwatch Achieves AWS Level 1 MSSP Competency Status and Lists in AWS Marketplace

DENVER–(BUSINESS WIRE)–AWS RE:INFORCE — deepwatch, a leader in advanced managed detection and response (MDR) security, today announced that it has achieved Amazon Web Services (AWS) Level 1 Managed Security Service Provider (MSSP) Competency status. This designation recognizes that deepwatch has successfully met AWS requirements for a baseline of managed security services...

Read More

InterGen Data, Inc. Chooses Phalanx Advanced Endpoint Security Platform to Secure Transmission of Data Files

PLANO, Texas–(BUSINESS WIRE)–InterGen Data, Inc. (InterGen) has selected Phalanx’s data security platform as a secure way for our clients to upload, transmit, receive, and test our proprietary predictive Life Stage Life Event Data “LSLE.” Each client environment is required to adhere to strict security policies ensuring that all the data will be safe, secure, and fully encrypted...

Read More

The Annual Insider Risk Summit Adds Experts from Accenture, Aberdeen, Deloitte, IDC and PwC to Speaker Roster

MINNEAPOLIS–(BUSINESS WIRE)–Today, the Insider Risk Summit team announced the next wave of cybersecurity experts and industry advisors to the speaker lineup for the annual Insider Risk Summit 2021. New speakers to the roster include leaders from Accenture, Aberdeen, Deloitte, IDC and PwC. Joining the sponsorship list includes Carahsoft, CrowdStrike, CyberArk, Microsoft, Palo...

Read More

CVP Acquires Atlas Research, Broadens Healthcare Strategy, Consulting and Research Offerings

FAIRFAX, Va.–(BUSINESS WIRE)–Customer Value Partners, Inc. (CVP), a business and technology consulting firm that helps organizations prepare for a culture of Continuous Change, announces today its acquisition of Atlas Research (Atlas), an award-winning firm that partners with federal health organizations to drive mission-critical innovation and transformation. Through this...

Read More

CISSPs From Around the Globe: An Interview with Adesoji Ogunjobi

The Certified Information Systems Security Professional (CISSP) certification is considered to be the gold standard in information security. This is so because of all the doors that certification opens to a CISSP professional. Those doors lead to many different types of positions and opportunities, thus making the information security community dynamic and multifaceted. In...

Read More