Security is more important than ever. Cybersecurity has been a problem from the start of IT and it will be till the end. It all started with endpoint and network security, but today, we are also facing with cloudsecurity and managing employees to incorporate good security practices.
All these new technologies that help us innovate also helps cybercriminals and state sponsored hackers to get new tools they can use to get access to our systems, and in a worst case scenario, access to our most valuable data and business secrets. Also, with new legislation in place like GDPR, you need to make sure everything is secure, otherwise you just don’t lose your reputation, but you can also be fined by the government. Protecting IT-environments is more important than ever.
Your first line of defense is usually endpoint protection. The devices your employees work with need to be protected against ransomware and other malware which can bring lots and lots of trouble. This nowadays the most basic form of protection and many of the bigger vendors and suites can help you achieve this.
Network security is a bit more advanced, where you can manage which traffic goes across your network. You can also connect different networks together with e.g. SD-WAN. So, you can run protection software and share data between multiple locations. The trend we see in network protection on the datacenter side is to lock down the traffic by only allowing known, benevolent traffic sources. Regarding office networking, we see new initiatives like ZScaler coming up, where you tunnel all your staff over the network of ZScaler so they can analyse the traffic and block patterns that they marked as malicious. Especially for companies with employees that travel a lot, this is a smart solution.
Many thought that bringing workloads to the cloud would reduce their responsibility of doing security. It is now clear that this is not the case. Most cloud vendors practice the “shared responsibility” approach. This means that big hyperscalers can offer a first line of defense against well known threats and port scanners. For the more sophisticated attacks that are directly pointed at your servers, you need to have your protection in place.
Organized cybercrime is growing. Group-IB identified 390 professional scam groups in the past year, up 350 percent from 2020. Cybercriminals don't have to penetrate networks or endpoints to be successful. According to security research by Group-IB, scamming was the most common form of cybercrime... Read more
2 days ago
After a technical issue prompted the cancellation of 200 flights, EasyJet apologized to passengers. The airline first announced that flights departing between 13:00 and 15:00 BST on Thursday would be disrupted but added that the disruption might take longer to resolve. Airports throughout the Un... Read more
2 days ago
Google Cloud recently introduced the Chrome Enterprise Connectors Framework. This portfolio should make Chrome OS and Chromebooks more secure in enterprise environments. The Chrome Enterprise Connectors Framework offers four new options for managing and securing Chrome OS devices. Firstly, t... Read more
2 days ago
SentinelOne recently discovered a supply chain attack that uses components of the Rust programming language. The attack involves a malicious 'crate' in the Rust dependency community repository. According to SentinelOne, hackers used a so-called CrateDepression attack to introduce a malicious cra... Read more
4 days ago
Hornetsecurity, a Pittsburgh-based email cloud security and backup service announced the acquisition of IT-Seal, a Darmstadt, Germany-based security awareness training company. Hornetsecurity has made many purchases in recent years, with this being the latest. The companies did not disclose the ... Read more
4 days ago
Cybercriminals don't need initials, bank accounts or passwords to steal accounts. An email address is often enough. New research from Microsoft raises concerns. We often think that cybercriminals require varies data to steal user accounts. For example, a date or place of birth, which can be use... Read more
4 days ago
The Dutch privacy authority (AP) signalled growing numbers in its data breach report of 2021. Attacks on IT suppliers are increasingly impacting the supply chain. The data breach report for 2021 shows that 24,866 breaches were reported in the Netherlands last year. According to the AP, organizat... Read more
4 days ago
New security vendor in our region promises insight into the vulnerability of all conceivable assets within the organization and does this in a user-friendly and simple way. If you really want to tackle security properly, you must first know what you have in terms of assets, and what these assets... Read more
4 days ago
Researchers found a malicious backdoor in a WordPress plugin popular among schools. The premium version of the WordPress School Management plugin for WordPress has had a backdoor ever since the release of version 8.9 in 2021. Schools use the plugin to operate and manage their websites. The back... Read more
5 days ago
The free service determines whether an organization is resilient to vulnerabilities and attacks. Tanium develops endpoint security software. Its platform maps all endpoints in an environment, including devices, containers and servers. Several tools recognize and remove suspicious users, vulnerab... Read more
6 days ago
