A penetration test is an attempt by a team of security engineers, using a variety of tools, to test a computer network and identify weaknesses. These tests are usually performed by third- parties that have little- to- no prior knowledge of the system and are meant to simulate a real- world attack. Pentests may include […]
read more »On November 8, 2021, Robinhood released a statement claiming they experienced a data breach. The attacker obtained a list of email addresses for 5 million people and the full names for a different group of 2 million people. A group of around 300 people also had additional personal information exposed. The organization claimed that no […]
read more »In 2020, the FBI reported that phishing was the most common type of cyber attack. Phishing can lead to data breaches and other types of cybercrimes that can be detrimental to an organization. User security awareness training can help reduce the risks of a successful phishing attack. Human error has the largest role in cyber […]
read more »According to Forbes, the cost of ransomware attacks against organizations has increased by 300% in 2021. Additionally, supply chain and vendor issues have gained attention since SolarWinds, Kaseya, and other providers that have been compromised this year. Cyberpion found that three- fourths of Fortune 500 companies’ IT infrastructure exists outside of their organization. Third- party […]
read more »The Breach On August 16, 2021, T-Mobile released a statement that unauthorized access to customer data had occurred. The malicious actor, claimed to be John Binns, first gained access into T-Mobile’s servers through an unprotected router on July 19, 2021. ZDNet mentions that from there, he explored security gaps in T- Mobile’s security architecture where […]
read more »According to research, there has been a push to implement cybersecurity programs in businesses in all sectors. However, several companies are disregarding important aspects of cybersecurity. Having an inadequate cybersecurity program enables attackers to penetrate the company network. This article will highlight the top cybersecurity mistakes made by companies. Not Understanding Who the Program is […]
read more »Storing data in the cloud allows for easy management and accessibility over the internet. According to the Goldman Sachs analysts, as of 2020, around 23% of all IT workloads are processed in the cloud. As with any storing solution, cloud storage poses risks for security, including a loss of sensitive data, violation of other controls, […]
read more »As the global workforce shifts to remote work, business operations and management face a number of obstacles. As mentioned in the previous article, the line between our work lives and our personal lives are blended now more than ever. Pre- pandemic predicted cybercrime will cost companies $6 trillion globally. According to research, last year, governments […]
read more »With the increase of employees turning to remote work during the pandemic, companies have been relying on video conferencing platforms, such as Zoom, for regular meetings and communication between employees. According to Check Point, there have been 1,700 new Zoom domains registered since the pandemic began, a quarter of these domains were registered just in […]
read more »IT security policies are necessary in organizations as they define who has responsibility of what information within the company. Policies are the baseline of all procedures and should be maintained regularly. Why Do Organizations Need Security Policies? IT security policies outline rules for user and IT personnel behavior. These policies also identify consequences for not […]
read more »