Ransomware attacks often make the news especially if it is large company that is attacked. However, small companies are frequent targets because they have fewer cybersecurity resources and are more likely to pay the ransom. This Insight provides guidance on how to protect against successful ransomware attacks.
New Zero-Days have been found on multiple Apple platforms. These are serious vulnerabilities and should be patched as soon as possible.
Snatch malware forces Windows systems to reboot into Safe mode. That prevents any antimalware services from running on the system allowing Snatch to encrypt files unimpeded.
It took MGM 10 days to resume operations after a cyberattack. How many companies can survive for 10 days without income, not being able to sell anything, bill anything or in any way do business?
Cybercriminals created a fake Proof of Concept, PoC, of a vulnerability and released it to researchers. Sounds very considerate except the PoC contained malware that it loaded onto the researcher’s systems.
The SEC has mandated cyber expertise on company Boards of Directors and at senior management level. What does this mean practically? What degree of expertise is needed and how do you prove this to the SEC. This Insight provides answers to these questions.
Cyberattackers are using two types of ransomware to infect target companies. If the first one is foiled or just doesn’t work, the second one triggers at 3 AM when there is probably less oversight on the systems.
First cybercriminals used ransomware to encrypt your information to extract a payment. Then they exported your data first before encrypting it, threatening to release it publicly if the ransom isn’t paid. Now, they some cybercriminals aren’t bothering to encrypt the data at all but are just stealing the data and threatening to release it if you don’t pay them.
HDInsight, the Microsoft’s service for managing big data analytics has received at least 8 patches. This follows concern about Microsoft’s security practices for its cloud services.
A cyber criminal group called “Scattered Spider” is claiming responsibility for the ransomware attacks on casinos. They are believed to be a US and UK based group using social engineering to penetrate companies. They claim it took only 10 minutes to socially engineer the credentials needed for the attack. They have been paid in the tens of millions of dollars to decrypt the information.
Deepfakes are getting easier to create and very believable. Learn what they can do, how cybercriminals may use them and what you can do to protect yourself and your company.
Cybercriminals used vulnerabilities that allowed them to breach email accounts from users. This has been traced to errors by Microsoft.
A Zero day flaw has been found affecting Apple iPhones, iPads, macOS and watches. Be sure to install the patch quickly.
AtlasVPN is a freemium VPN owned by NordVPN. It has a large user base and that is one reason cybercriminals target it. Now a vulnerability has been found that allows cybercriminals to get the IP address of users and disconnect them. Since the intent of a VPN is to mask users’ IP address, this is a serious flaw.
Google implemented the Manifest v3 security standard by cybercriminals have still found a way to get malicious extensions past the security. Be careful before installing extensions even if they are in the Google Chrome store.