The latest edition of the ISMG Security Report reviews the latest cyber resilience "call to action" from the White House and also explores authentication provider Okta's failure to inform hundreds of customers in a timely manner that their data could have been stolen by the Lapsus$ group.
93% have been targeted by email-based phishing attacks in 2022, in other words, 8 out of 10 companies are at risk due to inadvertent data leaks by careless or negligent employees.
Are you prepared?
Download the key findings of 2023 SOES to avoid being one of the 57% companies that are expected to be attacked in...
Everybody’s talking about XDR — and with over 30 vendors already claiming to offer XDR-compliant solutions, it’s essential to separate the reality from the hype.
A public health department and a medical specialty practice are among the latest entities reporting major hacking incidents affecting tens of thousands of individuals' sensitive health information. Some experts say the breaches follow disturbing, evolving cyber trends.
As the landscape of brand protection evolves, learn what organizations can do to protect themselves from losing prospects, brand affinity, and customer loyalty to cybercriminals who impersonate their brands to scam customers and prospects.
94% of Cybersecurity leaders believe more budget is required to address this threat, from both the preventive and the impact mitigation perspective.
Learn how CISOs are grappling with the challenges ransomware presents, and use it as a guide to help deliver continuous improvements to protecting your organization.
Mimecast’s 2022 State of Email Security findings stress the importance of a cyber resilience strategy, layered defences, cyber awareness training, and the use of AI/ML for protection in the new digital landscape. With the number of publicly reported data breaches soaring past the prior year’s total, 2021 appears...
Greek postal service Hellenic Post says a ransomware incident has forced it to pull a majority of its operations offline. It is working with IT security experts to probe the attack and restore services. Its subsidiary ELTA Courier has taken over nearly all operations to maintain business continuity.
Yet another ransomware-wielding group of criminals has hit an organization in the health sector. This time, it's cybercrime group RansomEXX, which has been trumpeting an attack against the Scottish Association for Mental Health. The crime gang says it has stolen more than 12GB of data from SAMH.
Identity management company Okta and Microsoft have confirmed breaches by the Lapsus$ group, which has been on a high-profile hacking spree. Okta is facing increasing pressure to more fully describe the impact of its incident, as Okta's identity systems are widely used across enterprises.
The ransomware-as-a-service operation AvosLocker has been amassing "victims across multiple critical infrastructure sectors in the United States," the FBI warns in a new alert that includes known indicators of compromise and tactics employed the group and essential defenses for all organizations.
The MITRE ATT&CK framework has been around for years, but we are now seeing it being adopted by organizations more as they realize the need for a strong IT security team and more funding is becoming available to increase the maturity of information security programs.
This framework helps organizations manage cyber...
Researchers have uncovered a full-time initial access broker group that serves both Conti and Diavol ransomware groups. Google's Threat Analysis Group - TAG - observed this financially motivated threat actor, dubbed Exotic Lily, exploiting a zero-day in Microsoft MSHTML tracked as CVE-2021-40444.
As the Ukrainian military resists Russian advances toward its major population centers, its IT security teams are contending with record cyber incidents - although the same is true of their eastern neighbors, with Russia reporting "unprecedented" cyberattacks on its networks.
Federal authorities are advising healthcare sector entities to take precautions, including enhancing their cybersecurity posture and being prepared to implement four- to six-week business continuity plans, as they continue to face potential cyber incidents related to the Russia-Ukraine war.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing databreachtoday.co.uk, you agree to our use of cookies.