Crypto Scammers Game YouTube for Amplification While Keeping Under Radar, Researchers Find

By Joe Fay Not even a pyramid scheme – they just convince people to give away their money.  A network of crypto scammers has been able to game YouTube’s algorithms to publicize and amplify fraudulent investment apps without triggering the video platform’s safety team, researchers at WithSecure have said.  The network used YouTube to post and boost videos encouraging...

Read More

The Bridge to Zero Trust

No one likes to think their company might be hit by a cyber attack or breach, but the truth is cybercrime is one of the biggest threats your organization can face. If you suffer a breach, the loss of data is only the first of many issues you will be facing. You also have to navigate reputational damage, lost revenue, and the potential for fines and sanctions from regulatory agencies. This is why governments and organizations around the world are implementing a zero trust security framework to reduce the risk of attacks while protecting resources...

Read More

Cybersecurity Industry News Review: February 28, 2023

By Joe Fay  Australia to scrap cybersecurity rules as part of a new regime, ransoms bankroll further ransomware attacks, Dole and PyPi attacked, while the European Commission calls time on TikTok.  Australia to Overhaul Cybersecurity Rules  The Australian government is overhauling its approach to cybersecurity and will create a new agency to coordinate responses...

Read More

The ethics of biometric data use in security

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  In a world where you can scan the veins in your hand to unlock a smartphone, how do you maintain control over personal data? Biometric authentication, the use of distinctive human features like iris patterns, fingerprints and even gait in lieu of a password, is gaining ground in the tech world. Proponents tout its inherent, hard-to-replicate qualities...

Read More

(ISC)² Research Finds Cybersecurity Professionals to be Least Impacted by Layoffs in 2023

The latest (ISC)² research report, How the Cybersecurity Workforce Will Weather a Recession, found that despite looming recession concerns, cybersecurity teams will be least impacted by staffing cuts in 2023.   To assess the impact of a potential economic downturn on cybersecurity teams, (ISC)² polled 1,000 C-suite executives in December 2022 across five countries: Germany,...

Read More

Special Report: The State of Software Supply Chain Security 2023

Attacks on software supply chains surged in 2022. A few years after word of the SolarWinds hack first spread, software supply chain attacks show no sign of abating. In the commercial sector, attacks that leverage malicious, open source modules continue to multiply. Enterprises saw an exponential increase in supply chain attacks since 2020, and a slower, but still steady rise in 2022. The popular open source repository npm, for example, saw close to 7,000 malicious package uploads from January to October of 2022 — a nearly 100 times increase...

Read More

Advance Your Cybersecurity Career with Toolkits from (ISC)² and BUiLT

As part of its expanded diversity, equity and inclusion (DEI) initiative, (ISC)² and its partner, BUiLT (Blacks United in Leading Technology, Inc.), are releasing four new toolkits aimed at increasing the number of Black and underrepresented professionals entering, staying and advancing in the cybersecurity profession.   “Diversity continues to lag in the tech and...

Read More

Ransomware attack on Dish Network

A suspected cyber attack of ransomware genre has reportedly downed the entire websites, apps, and internal systems of American Television service provider Dish Network for the past two days and information is out that it could take at least a week or so to restore back the services to normalcy. It is unclear whether the attack was of malware variant as the IT staff of the Dish Network are still investigating the outage that reached its 4th day yesterday. Dish.com and Dish Anywhere app is unreachable and a message displayed on the home page states...

Read More

Cybersecurity Industry News Review: February 21, 2023

By Joe Fay Think tank warns as economic, political, and cybersecurity risks collide. Accenture heads to Brazil, quantum security firm Sandbox fills up on cash and Biden loses cyber director. Washington Think Tank Warns on Economic Risk and Cybersecurity  Increased international conflict, including rising nationalism, a “cyber arms race”, and a looming recession are contributing...

Read More

Building blocks for Cyber resilience: MSSPs can lead the way

In today's world, cybersecurity is an ever-growing concern for businesses. With the rising threat of cyber threats and data breaches, it can be difficult for companies to keep up with the latest security technologies and stay ahead of the curve. Managed Security Services Providers (MSSPs) provide comprehensive security solutions to clients. They offer various services, from...

Read More

The Center for Cyber Safety and Education Evolves Its Mission Statement

The Center for Cyber Safety and Education, the charitable foundation of (ISC)² founded in 2011, aims to grow the cybersecurity profession and its positive impact on the world by raising awareness, building a diverse pipeline of cybersecurity professionals and activating a more secure digital world. Originally, the Center was created to serve as the home for cyber safety awareness...

Read More

How to protect your car dealership from cyber-attacks

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  Recent trends show that car dealerships are becoming a prime target for cyber-attacks, partly due to the rise in autonomous and connected vehicles. This is in addition to more traditional attacks such as phishing. Therefore, car dealerships are urged to take measures to improve their cybersecurity.  Throughout this article, we will focus on how...

Read More

Latest Cyberthreats and Advisories – February 24, 2023

An FBI cyber incident, GoDaddy’s third breach in three years and an NHS data leak highlight a week of major cybersecurity events. Here are the latest threats and advisories for the week of February 24, 2023.  Threat Advisories and Alerts  NCSC Provides Recommendations on Supply Chain Security  As the recent ransomware attack on ION Trading revealed, supply chain...

Read More

The Significance of Key Risk Indicators in Organisations

By Vivek Soni, CCSP Key Risk Indicators (KRIs) are critical predictors/indicators of undesirable events that can adversely impact the organisation. These are the kind of metrics which are forward looking and contribute to the early warning sign that facilitates enterprise to report risks, prevent calamity and remediate them promptly. Risks to an organisation may vary based...

Read More