Cybersecurity in 2022, Predictions for digital ecosystem facing more challenges and sophisticated threats

This blog was written by an independent guest blogger. In 2020, I published an AT&T blog called “Top Cybersecurity Trends & Predictions for 2020’” 2021 Cybersecurity Trends and Insights | AT&T Cybersecurity (att.com)  In the article I had forecasted that cybersecurity would become even more of a strategic priority for companies as the cost, sophistication, and lethality of breaches would continue to rise. Also, that threat actors, especially state-sponsored, and criminal enterprises would take advantage of the expanding cyber-attack...

Read More

Gloucester City Council hit by a possible Ransomware Cyber Attack

Gloucester City Council of UK was reportedly hit by a cyber attack on December 20th,2021 disrupting all of its online services such as council tax support, Caravan site information, Licensing, Recycling, Health and Leisure Centers, Housing Administration, Elections and Electoral Registration, Public Conveniences, test and trace support, housing benefits including payments and loan repay. Though there is no confirmed news that the attack was of a ransomware virus, sources report that the restoration of services might take a few weeks as the incident...

Read More

Why authorization and authentication are important to API security – and why they’re not enough

This blog was written by an independent guest blogger. The number of machine identities for which organizations are responsible has “exploded” in recent years, according to Security Boulevard. These machine identities include  devices and workloads. But they also include application programming interfaces (APIs). Organizations use APIs to connect the data and functionality of their applications to those managed by third-party developers, business partners, and other entities, per IBM. These connections enable different applications to communicate...

Read More

CynergisTek Finishes Year Strong, Closes Largest 2-Year Managed Service Contract for 2021

AUSTIN, Texas–(BUSINESS WIRE)–CynergisTek (NYSE American: CTEK), leading cybersecurity, privacy, compliance, and IT audit firm helping organizations in highly regulated industries navigate emerging security and privacy issues, today announced that it has signed the largest multi managed service contract of 2021 with a well-known managed care organization that has been a client...

Read More

Details of a failed Clop Ransomware attack on City of Toronto Canada

Cybersecurity Insiders has learnt that Clop ransomware gang operating from Russia accessed the servers of the City of Toronto to grab metadata of over 35k citizens. Their plan could be to later dump the data on the dark web and make money. However, for some reason or because of a strict online vigil from Ukraine’s law enforcement agency, they did not post the details or dropped the plan to do for reasons best known to them. Going deep into the details, in January 2021, cyber criminals from CLOP ransomware group got access to sensitive data related...

Read More

Redline malware stealing saved passwords from browsers

If you follow a custom of saving passwords in your browser, you better change it, before it’s too late. Because security researchers from a South Korean cybersecurity firm, AhnLab discovered that a new malware named Redline was seen lurking in the browsers and stealing saved passwords only to be transmitted to remote servers. According to sources, RedLine Stealer was first discovered in May this year when most of the office work was going online. An employee from central Europe accidentally downloaded RedLine malware that later stole some essential...

Read More

Cyber Threat to Healthcare and Corona Virus Vaccine supply

Amid fears that the newly mutated & detected Omicron variant of Corona could trigger a lockdown across the world, security experts warn that some group of threat actors probably funded by adversary governments are threatening to disrupt the healthcare services and vaccine supply meant to contain the spread of COVID-19 on a global note. According to a study made by researchers from Barracuda Networks, hospitals and healthcare organizations are at a greater risk of being cyber attacked in 2022 that is only a couple of days away. The cloud based...

Read More

Top 10 AT&T Cybersecurity blogs published in 2021

I enjoy being editor and managing this blog so much, I thought I'd share some of the best blogs of 2021. 2022 is right around the corner, but it's also a good time to look back at some 2021 highlights! AT&T Alien Labs blog by Ofer Caspi in November 2021 AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits Fernando Martinez's AT&T Alien Labs blog from July Lazarus campaign TTPs and evolution Ofer Caspi and Javi Ruiz's FatalRat analysis in August New sophisticated...

Read More

Find A New Cybersecurity Job in 2022

The 2021 (ISC)² Cybersecurity Workforce Study revealed that the global cybersecurity workforce gap is 2.72 million. This is the number of jobs within the industry that are necessary to fill to defend critical assets. With so many cybersecurity organizations looking to fill positions, you may think to yourself, “Is cybersecurity a good industry to enter?” or “What are the pathways...

Read More

Top 10 AT&T Cybersecurity blogs published in 2021

I enjoy being editor and managing this blog so much, I thought I'd share some of the best blogs of 2021. 2022 is right around the corner, but it's also a good time to look back at some 2021 highlights! AT&T Alien Labs blog by Ofer Caspi in November 2021 AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits Fernando Martinez's AT&T Alien Labs blog from July Lazarus campaign TTPs and evolution Ofer Caspi and Javi Ruiz's FatalRat analysis in August New sophisticated...

Read More

Infineon Showcases Intelligent, Secured IoT Solutions and Dependable Electronics for Automotive at CES 2022

MUNICH & LAS VEGAS–(BUSINESS WIRE)–Infineon Technologies AG (FSE: IFX / OTCQX: IFNNY) today announced that at CES 2022 it will “Reimagine Innovation”, showcasing the company’s wide portfolio of IoT, power, security and automotive solutions. Infineon’s exhibits of new, innovative electronics solutions will be shown in the Ballroom San Polo 3405 and 3406, located at The...

Read More

N-able Technology Alliance Program Primed for Growth into 2022

DURHAM, N.C.–(BUSINESS WIRE)–N-able, Inc. (NYSE: NABL), the purpose-built technology partner for managed services providers (MSPs), is celebrating strong growth of the Technology Alliance Program (TAP) throughout 2021, adding more than 25 partners this year, more than half of which are focused on security. The program is aimed at helping N-able partners successfully manage,...

Read More

CynergisTek Signs Six-Figure Extension Contract with Nationally Ranked Hospital

AUSTIN, Texas–(BUSINESS WIRE)–CynergisTek (NYSE American: CTEK), leading cybersecurity, privacy, compliance, and IT audit firm helping organizations in highly regulated industries navigate emerging security and privacy issues, recently announced one of the top obstetric and pediatric hospitals in the country that is also part of a prestigious academic medical center has signed...

Read More

Ukraine President enforces Information Security Strategy

Amid extreme concerns related to cyber warfare from Russia, Ukraine’s President Volodymyr Zelensky announced a new information security strategy policy was launched and came into effect early this week. Article 107 of the Constitution of Ukraine proposed a new security strategy for the country’s information systems on October 15,2021 and was waiting for the whole parliaments nod till date. Yesterday, the Ukraine president pronounced a relevant decree, bringing the articulated decision into full effect. Now, to those uninitiated, United States and...

Read More

Manual and semi-automated testing for IDORs using Burp Suite

This blog was written by an independent guest blogger. This article explores how you can locate Insecure direct object references (IDORs) using Burp Suite. Primarily, there are two ways to test the IDOR flaw, manual and semi-automated. For automation, this article focuses on the Autorize Plugin in Burp Suite. What are Insecure Direct Object References (IDOR) Silent Breach...

Read More

What Were the Best Cybersecurity Webinars of 2021?

As cybersecurity professionals, you work in an industry that is always evolving. It is imperative to stay up to date on the most important topics. On top of your responsibilities on the job, it can be challenging to stay current or know where to look for the latest news or best practices. So, we’ve compiled the highest rated, ranked by your peers, (ISC)² cybersecurity webinars...

Read More

Details of T-Mobile December 2021 Data Breach

T Mobile that suffered a massive data breach in August this year has again fallen prey to a similar hack in December 2021 that saw information leak of a small set of the telecom company customers. According to those reporting to our Cybersecurity Insiders, the attack took place in three forms, with the first targeting the customer proprietary network info(cpni), and second related to SIM swap and third involving customers targeted with both the said forms of incidents. In the first attack, hackers might have accessed billing account details such...

Read More

McMenamins suffers a Ransomware Attack

McMenamins, a family owned company of crafted breweries in Oregon & Washington, has reportedly suffered a ransomware attack, blocking down several of its digital services like hotel room booking and such. The employees of the company have been asked to use other digital services to stay in touch with each other and were given a hint that it might take at least 10 days for the business to recover from the incident. A source based on the condition of anonymity said that those spreading Conti Ransomware gang could have attacked the servers of...

Read More

Druva Appoints Tracey Newell to Board of Directors

SUNNYVALE, Calif.–(BUSINESS WIRE)–Druva Inc. today announced the appointment of Tracey Newell to the company’s board of directors. Newell brings more than 20 years of sales and marketing leadership experience to Druva, and will support the company as it prioritizes expanding routes to market and capturing the rapidly growing data protection market. “Tracey’s impressive history...

Read More

Meyer Shank Racing Partners with Arctic Wolf

PATASKALA, Ohio–(BUSINESS WIRE)–As the Ohio-based organization prepares for its largest competition campaign in team history, Meyer Shank Racing (MSR) is pleased to announce a new multi-year partnership with Arctic Wolf, a leader in security operations. Arctic Wolf is one of the fastest-growing cybersecurity companies globally on a mission to end cyber risk. The company’s...

Read More