April 4, 2024 at 05:01AM The UK National Cyber Security Centre warns that the use of artificial intelligence (AI) in cybercrime will increase the volume and impact of attacks. Cybersecurity firm Sophos also highlights the potential for AI to enable large-scale scam campaigns, demonstrating how AI can be used to create convincing content to lure … Read more
April 3, 2024 at 10:03AM Integrating cybersecurity into our corporate and individual mindsets can effectively thwart hackers, ensuring greater security for all. From the meeting notes, the key takeaway is that integrating cybersecurity into corporate and individual thinking can increase the level of difficulty for hackers and create a safer environment for everyone involved. Full … Read more
April 2, 2024 at 11:43AM Russia’s Prosecutor General’s Office has indicted six men for card skimming crimes, involving using malware to steal payment card information from foreign online stores. The suspects are accused of bypassing website security, accessing databases, and selling the stolen card details on the dark web. Authorities advise using digital payment methods … Read more
February 26, 2024 at 11:01AM Organizations invest in cybersecurity training programs to improve security and mitigate risks posed by end-users. However, training has limitations in changing behavior around passwords, as end-users prioritize convenience and efficiency over security. Despite being educated on best practices, many still reuse passwords, undermining organizational security efforts. Six ways to augment … Read more
February 23, 2024 at 01:41PM Companies and CISOs face potential fines from the SEC if cybersecurity and data-breach disclosure processes don’t comply with new rules. The SEC can use various enforcement tools, including injunctions, disgorgement, penalties, and barring individuals from roles. CISOs are concerned about personal liability and executives and companies may face reputational damage … Read more
February 22, 2024 at 06:54PM Change Healthcare, a part of UnitedHealth Group, suffered a cyberattack from a suspected nation-state actor, causing widespread delays for US prescription refills. This incident affects patient care and poses potential data exposure risks. The healthcare sector, heavily reliant on third-party providers, needs to bolster its cybersecurity defenses to mitigate future … Read more
February 12, 2024 at 04:56PM Telecom companies are now required to report data breaches affecting customers’ personally identifiable information within 30 days under the FCC’s updated rule. This follows years of proposals and aims to expand breach notification requirements and hold providers accountable. The stricter rules have been prompted by major breaches at major U.S. … Read more
February 9, 2024 at 11:58AM Finance worker in Hong Kong was scammed out of $25 million by deepfake video conference impersonating company’s CFO. Trend Micro previously warned about this type of fraud. Increasing accessibility to deepfake technology and AI-powered fraud is heightening the risk. Organizations need to strengthen processes, collaborations, and defense technology to defend … Read more
February 7, 2024 at 10:08AM The Super Bowl event attracts threat actors seeking payment card data, user credentials, and ransom opportunities. Cyber adversaries include cybercriminals, hacktivists, deliberate disruptors, and nation-state actors. Businesses must also consider internal threats posed by employees, temporary staff, and vendors. Adversaries engage in diverse tactics including social engineering, disinformation, and data … Read more
February 1, 2024 at 01:04PM Healthcare companies face both immense opportunity and unprecedented risk in the digital era. While digitalization has improved healthcare delivery, escalating cyberattacks have exposed vulnerabilities. Cyber breaches compromise patient trust, incur financial losses, and pose risks to individual medical information. Offering identity monitoring services is insufficient, necessitating a proactive approach to … Read more