Chances are, you’ve never heard of The Office of Foreign Assets Control (OFAC). However, if your company is trying to recover from a ransomware attack, you could unwittingly find yourself in OFAC’s crosshairs and subject to business-crippling fines and penalties. OFAC has been called “the most powerful yet unknown agency in the U.S. government.” An [...]
In 1978, a marketing manager with Digital Equipment Corporation sent an unsolicited electronic message to hundreds of ARPANET users promoting the company’s new mainframe computers. It is the first known instance of spam, and it kicked off four decades worth of unwelcome, unwanted and unrelenting email abuses. Email has since become the de facto standard [...]
Cybersecurity has never been more difficult. Threats are growing more frequent, sophisticated and costly. Data, devices and other assets keep moving beyond the reach of network perimeter defenses. Increasing government and industry regulations keep adding layers of complexity. If only there was an instruction manual that explained how to deal with it all. Turns out, [...]
The University of California at San Francisco announced recently that it paid a $1.14 million ransom to regain access to medical school data that was encrypted during a ransomware attack. The incident illustrates a disturbing trend — ransomware attacks are steadily increasing, as are the ransom amounts being demanded. The average ransom demanded in attacks [...]
Firewalls have been an essential first line of defense in network security for decades, serving as the gatekeeper between internal network resources and the outside world. However, mismanaged or misconfigured firewalls are barely better than having no firewall at all. The massive Capital One breach last year illustrates the danger. A misconfigured firewall rule enabled [...]
Even with advanced technologies available to hackers, what technique do they use most often to gain access to sensitive data or spread malware? Phishing attacks. Hackers know it’s much easier to trick a human with a deceptive email than it is to trick or circumvent security software. Instead of trying to pick a lock, they [...]
It’s the most wonderful time of the year — for cybercriminals. We’ve entered the peak season for cybercrime, with various studies indicating that cyberattacks increase by up to 60 percent during the holidays. The Department of Homeland Security recently warned of an expected spike in a range of malicious activity, including unsolicited emails that contain [...]
Many organizations rely upon their employees prevent cybersecurity breaches. Employees are advised not to click on unknown links and attachments, share their user credentials, or use unapproved applications and services. And for the most part this strategy works — in a recent study conducted by Sapio Research, 79 percent of information security leaders said that [...]
Personally identifiable information (PII) is the holy grail when it comes to cybercrime. Hackers know PII can be sold easily on the dark web or used to commit identity theft. Healthcare and tax-related information is particularly valuable as it enables criminals to commit fraud over a long period of time without getting caught. While more [...]
Software-as-a-Service (SaaS) solutions such as Microsoft Office 365, Salesforce, Google Suite, Dropbox and QuickBooks have made it easier for small to midsize businesses (SMBs) to adopt cloud services. In fact, Office 365 is by far the most popular cloud platform by user count, with global usage increasing from 34 percent in 2016 to 56 percent [...]
