January 15, 2024 at 11:31PM As children grow, their problems become more complex, resembling the challenges faced by maturing enterprises. The evolving technology landscape necessitates a strategic distributed cloud platform partner to manage complexity, facilitate vendor consolidation, handle mergers/acquisitions, cope with innovation pressure, and combat the evolving threat landscape for improved security and simplified management. … Read more
December 22, 2023 at 08:00AM A recent phishing campaign employs decoy Microsoft Word documents to distribute Nim-based malware. The backdoor lures victims to enable macros, then establishes a connection with a remote server disguised as a Nepali government entity. This comes amidst increased distribution of various malware strains and social engineering campaigns leveraging new tactics. … Read more
November 22, 2023 at 07:12AM Risk assessment can be subjective and biased due to human emotions, which can lead to an inaccurate representation of reality and a weaker security posture. To remove subjectivity, security professionals should follow seven steps: identify critical resources and data, understand potential financial impact, enumerate relevant threats, map risks to resources, … Read more
November 14, 2023 at 10:05AM In today’s complex threat landscape, organizations must have a detailed cyber playbook outlining actions to take in the event of an attack. CISOs should educate stakeholders, build a comprehensive framework, and test plans regularly. During an attack, effective and empathetic communication is crucial. Afterward, reflection without blame should occur to … Read more
October 30, 2023 at 03:08AM The COVID-19 pandemic led to a surge in remote work, prompting organizations to quickly adopt remote collaboration tools. However, ensuring robust security for remote access has been a challenge. To address this, Cisco partnered with Forgepoint Capital, NightDragon, and Team8 to create the 2023 CISO Survival Guide, a framework for … Read more
October 26, 2023 at 12:21PM The US cybersecurity agency CISA and the Department of Health and Human Services (HHS) have released a cybersecurity toolkit for healthcare and public health organizations. The toolkit provides guidance on cyber hygiene, threat landscape, best practices, and offers risk assessment tools and recommended resources. It also suggests accessing grants and … Read more
October 26, 2023 at 09:43AM Cloudflare has reported a significant increase in hyper-volumetric HTTP DDoS attacks in Q3 2023, surpassing previous years. These attacks overwhelm servers with garbage traffic, and exploit a new technique called ‘HTTP/2 Rapid Reset.’ Cloudflare also observed trends in mDNS, CoAP, and ESP attacks, indicating the emergence of new attack strategies. … Read more