Each year, Verizon issues a report summarizing the results of Payment Card Industry Data Security Standard (PCI DSS) compliance assessments of Fortune 550 and large multinational firms. According to the 2017 Payment Security Report, 55.4 percent of organizations passed their interim assessment in 2016 compared to only 48.4 percent in 2015. But while those numbers [...]
The Delaware Association for Nonprofit Advancement (DANA) has reported a new email scam targeting nonprofit organizations. The email subject reads: “RE: Action Required: Completed: *Foundation(R)#” and the body of the email includes what appears to be a Dropbox link. The organization reports that several nonprofits, including DANA, have received the email, and that it should [...]
The Better Business Bureau reports that as of June 30 there have already been 2,227 data breaches this year resulting in the theft of more than 6 billion records — exceeding the number for all of 2016. In response to the skyrocketing numbers of breaches, state legislatures around the country are amending breach notification statutes. [...]
Faced with increasingly sophisticated cybersecurity threats, most enterprise organizations have established a senior executive role tasked with creating and steering a comprehensive security framework. There is growing evidence that the chief information security officer (CISO) role could also benefit small to midsized businesses. SMBs have become prime targets for cyberattacks. In the past year, hackers [...]
More and more organizations are taking out cyber insurance policies as a hedge against the threat of a security breach. Insurance companies have reported an uptick in demand for cyber policies after the WannaCry ransomware attack in May. The European Union’s General Data Protection Regulation, which goes into effect in 2018, will also provide a [...]
In the previous post, we discussed IT policies every organization should have. Although most organizations are aware of modern security threats, such as the WannaCry and Petya ransomware attacks that affected hundreds of millions of devices around the world in recent days, the failure to implement or update IT policies is causing unnecessary risk. At [...]
Ransomware attacks have increased more than 11 percent in the past 12 months, according to Kaspersky Labs data. The first half of 2017 has already seen two global ransomware attacks, as WannaCry and Petya disrupted operations for businesses, healthcare organizations, government agencies and educational institutions around the world. Even worse, the Petya attacks offered further [...]
Many small organizations are already struggling to keep pace with the growing number of government and industry regulations that affect their IT environments. And now a new directive from the European Union (EU) is expected to have a sweeping impact on organizations worldwide when it goes into effect next year. The EU General Data Protection [...]
In the previous post, we discussed how increased demand for managed security services is being driven by a perfect storm of sophisticated security threats, major investments in security, and a lack of qualified personnel to fill IT security positions. Much of the growth in the managed security services market is the result of increased adoption [...]
Cyberattacks are constant, thanks to the use of automation to carry out attacks in high volume. The threats themselves are increasingly sophisticated in terms of technology and the ability to convince corporate users to click links, download documents and hand over credentials. As a result, security breaches should be viewed as inevitable instead of “it [...]
