Security is more important than ever. Cybersecurity has been a problem from the start of IT and it will be till the end. It all started with endpoint and network security, but today, we are also facing with cloudsecurity and managing employees to incorporate good security practices.
All these new technologies that help us innovate also helps cybercriminals and state sponsored hackers to get new tools they can use to get access to our systems, and in a worst case scenario, access to our most valuable data and business secrets. Also, with new legislation in place like GDPR, you need to make sure everything is secure, otherwise you just don’t lose your reputation, but you can also be fined by the government. Protecting IT-environments is more important than ever.
Your first line of defense is usually endpoint protection. The devices your employees work with need to be protected against ransomware and other malware which can bring lots and lots of trouble. This nowadays the most basic form of protection and many of the bigger vendors and suites can help you achieve this.
Network security is a bit more advanced, where you can manage which traffic goes across your network. You can also connect different networks together with e.g. SD-WAN. So, you can run protection software and share data between multiple locations. The trend we see in network protection on the datacenter side is to lock down the traffic by only allowing known, benevolent traffic sources. Regarding office networking, we see new initiatives like ZScaler coming up, where you tunnel all your staff over the network of ZScaler so they can analyse the traffic and block patterns that they marked as malicious. Especially for companies with employees that travel a lot, this is a smart solution.
Many thought that bringing workloads to the cloud would reduce their responsibility of doing security. It is now clear that this is not the case. Most cloud vendors practice the “shared responsibility” approach. This means that big hyperscalers can offer a first line of defense against well known threats and port scanners. For the more sophisticated attacks that are directly pointed at your servers, you need to have your protection in place.
A cyberattack on a Norwegian shipping services firm hit about 70 shipping companies. One of the world’s top ship-classification firms has suffered a massive ransomware cyberattack, according to a report from Bloomberg. The attack was carried out on January 7 and targeted Oslo-based DNV, a comp... Read more
1 year ago
Mailchimp has been hit by a cyberattack for the second time since August 2022. One or multiple cybercriminals gained access to internal accounts. In a statement, the company disclosed that the breach was discovered on January 11. One or multiple attackers misused a customer and account support ... Read more
1 year ago
A successful ransomware attack is a nightmare for many businesses. For SMEs, it is even so dangerous that it can be fatal, according to many IT professionals. As a result, companies feel it is time to put security higher on the agenda and increase budgets, according to research by Datto. We dive a ... Read more
1 year ago
Rubrik is celebrating a milestone. The organization announced that software subscriptions generate more than $500 million (about €460 million) in annual recurring revenue. In addition, the company welcomed a new board member: Mark McLaughlin, former CEO of security giant Palo Alto Networks. ... Read more
1 year ago
A threat actor has uploaded three malicious packages to the PyPI (Python Package Index) repository. The packages reportedly drop info-stealing malware on developers' systems. The threat is significant, according to BleepingComputer, as PyPI is the most widely used repository for Python package... Read more
1 year ago
CircleCI recently disclosed a December 2022 incident in which customer data was misappropriated. Attackers misused session tokens to steal encryption keys and other sensitive information. In a blog post, CTO Rob Zuber shed light on the breach. Cybercriminals had access to customer data until Ja... Read more
1 year ago
The accounts of thousands of Norton LifeLock customers were compromised by cybercriminals. The attackers may have been able to access users' password managers. A statement to the attorney general of the US state of Vermont reveals that Norton was hit by a "credential stuffing" attack several wee... Read more
1 year ago
Cloudflare and Microsoft announced four new integrations that help joint customers deploy, automate and improve zero-trust security. According to the partners, the integrations allow users to quickly deploy zero-trust tooling without complex code changes. The integrations combine Microsoft's ide... Read more
1 year ago
AuthID announced the integration of its Verified CloudConnect solution with Okta’s Workforce Identity Cloud. The company's Human Factor Authentication (HFA) feature can now help both Okta workforce and customer identity clients to eliminate passwords, prevent unauthorized access, as well as a... Read more
1 year ago
The cyberattack impacted the UK postal system's ability to send mail internationally. The UK government has announced that the Royal Mail has suffered a ransomware attack by criminal group LockBit, according to a report by the BBC. The attack has disabled the Royal Mail's computer systems used t... Read more
1 year ago
