The MITRE ATT&CK Framework is widely recognized as instrumental in providing a common language and framework for describing attack techniques and effectively sharing information across organizations. However, we’re just starting to see the potential benefits this matrix can provide when integrated directly into security tools. Uptycs recently announced a major release of its product that […]
A ransomware attack targeted the email systems at Cleveland Hopkins International Airport in April 2019. Today’s columnist, David Trepp of BPM LLP, says detailed pen tests will show how systems can handle future attacks on email and other critical systems.
The deal, and implication of more to come, hint at increased hunger for third-party security auditing services in the face of worsening cybercrime, and an increasingly complex regulatory compliance landscape.
The news is flooded with updates regarding the COVID-19 vaccine. Cyberattacks are targeting the vaccine supply chain. Phishing attacks are exploiting sign-ups for the vaccine. There are even attacks to get access to vaccine data. Sounds a lot like our enterprises every day! We’re all learning about human immunology from the headlines, but what are […]
When we talk about legacy security challenges and solutions, we can’t forget about our old friends email and phishing. Phishing has been around for over 20 years and is still one of the most effect attack paths to steal credential, exploit endpoints, and deploy malware. After 20 years, you’d think we could find effective solutions […]
Phishing is everywhere. Couple that with a new remote workforce, video conferencing, and corporate messaging, now phishing and vishing are everywhere. Why? There are many reasons, including: Increased use of personal computers and phones to conduct our work remotely Increase in phishing emails targeting remote workers Increase in vishing calls to our personal phones targeting […]
In one of my previous roles, I had the great opportunity to travel around the world meeting customers to understand their challenges in vulnerability management. The two biggest challenges they wanted solved were: Help me prioritize which of these vulnerabilities are most critical, and Help me close the loop with my patching solutions to remediate […]
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.