Tag: Cybersecurity Insiders

Lung cancer is a dangerous and contagious disease that spreads throughout the body quickly and is not easy to detect in its early stages. However, thanks to the technology of artificial intelligence-enabled machine learning tools, detecting lung cancer is now…

Read more →

In recent years, the term “offensive cyber capabilities” has become increasingly common in discussions around national security and military strategies. Offensive cyber capabilities refer to the ability of a nation or organization to launch cyber attacks on other countries, groups,…

Read more →

Secure Service Edge works with a variety of network configurations. Is it right for yours? By Chris Alberding & Evin Safdia On the heels of another record number of cyberattacks in 2022, including an alarming 13% increase in ransomware attacks,…

Read more →

ICICI Bank, an Indian bank with a business presence in over 15 countries, has become a victim of a data breach, leaking information of more than 3.8 million customers or 38 lakh customers. The banking giant says that the news…

Read more →

This is the first of a series of consultant-written blogs around PCI DSS. Many organizations have multiple IAM schemes that they forget about when it comes to a robust compliance framework such as PCI DSS. There are, at minimum, two…

Read more →

A few years back, many people started creating fake twitter profiles to propagate fake news and to indulge in an other kind of online crimes. Later Twitter, that is now owned by Elon Musk, took stringent steps to curb the…

Read more →

Spyware is a type of malicious software designed to gather data from a computer system without the user’s knowledge or consent. This can include sensitive information such as usernames, passwords, and banking details, which can then be used for fraudulent…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  If cyber threats feel like faceless intruders, you’re…

Read more →

By Mishel Mejibovski, Head of Operations and Strategy, SURF Security While some companies insist on going back to their original work practices and are forcing their employees back into the office, many others have realized the benefits of hybrid work…

Read more →

Going to RSA next week? If you don’t know, it’s a huge cybersecurity conference held at Moscone Center in San Francisco, CA. If you’re going, please stop by the AT&T Cybersecurity booth and check us out. It’s at #6245 in…

Read more →

Bank of America has expressed its concerns over Lloyd’s recent policy decision to exclude cyber insurance coverage for large corporations hit by cyber attacks funded by adversary states. The decision to exclude such attacks from standard insurance policies is tentative,…

Read more →

By Pat McGarry, CTO of ThreatBlockr There are two indisputable facts about the cybersecurity industry right now. One, we are still in the middle of a massive staffing crisis. Two, one of the biggest drivers of this staffing crisis is…

Read more →

This is the second blog in the series focused on PCI DSS, written by an AT&T Cybersecurity consultant. See the first blog relating to IAM and PCI DSS here. There are several issues implied in the PCI DSS Standard and…

Read more →

1.) AhnLab, a South Korean cybersecurity firm, has issued an alert about a ransomware attack on Microsoft SQL Servers that are being bombarded with Trigona Ransomware payloads meant to encrypt files after stealing data. Hackers induce the same ransomware via…

Read more →

This is the third blog in the series focused on PCI DSS, written by an AT&T Cybersecurity consultant. See the first blog relating to IAM and PCI DSS here. See the second blog on PCI DSS reporting details to ensure when…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  Cyber attacks are common occurrences that often make…

Read more →

Meta, the parent company of Facebook, has introduced a new AI model to the world that can identify objects in an image. The newly developed AI model is known as the “Segment Anything Model” (SAM for short) and can understand…

Read more →

Precisely speaking, the heading is related to two different articles with different stories. The first one goes as follows: According to a study conducted by Digital Shadows Photon research team, and their report dubbed “Account Takeover in 2022,” about 25…

Read more →

As data breaches and cyber attacks continue to rise, the traditional method of securing online accounts using passwords is becoming increasingly ineffective. Hackers can easily crack simple and commonly used passwords, or even use social engineering tactics to trick users…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  Mobile device management (MDM) refers to a type…

Read more →

CommScope, an American company that is in the business of providing network infrastructure, was reportedly hit by a ransomware attack. Afterward, cybercriminals leaked data of thousands of the company’s employees onto the dark web, including social security numbers and bank…

Read more →

Cybersecurity analysts from Securonix have discovered a new malware variant hiding in the images produced by the James Webb Space Telescope. The malware is being dubbed as “Go#Webbfuscator” and has the potential to be spread through phishing emails loaded with…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  The global COVID-19 pandemic has left lasting effects…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  What is an e-mail? E-mail, also referred to…

Read more →

For the first time in the history of Apple Inc, a notorious ransomware-spreading gang seems to have shifted its focus to MacOS-loaded laptops. The LockBit Ransomware Group has now developed encryptors targeting Macs, thus extending their crimes from Windows, Linux,…

Read more →

WhatsApp, owned by Facebook, has introduced three new account protection features to enhance the security and privacy of its users, in line with current expectations. These features, which will be rolled out in a month, will help prevent users from…

Read more →

Cloud-based security solutions have become increasingly popular in recent years, as more and more businesses are moving their operations to the cloud. Cloud-based security solutions are designed to provide businesses with a reliable and cost-effective way to secure their digital…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  “While defenders pursue the most powerful and advanced…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  Introduction: Dridex, also known as Cridex or Bugat,…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  If cyber threats feel like faceless intruders, you’re…

Read more →

This is the first of a series of consultant-written blogs around PCI DSS. Many organizations have multiple IAM schemes that they forget about when it comes to a robust compliance framework such as PCI DSS. There are, at minimum, two…

Read more →

Email is a vital communication tool for organizations across industries but also serves as a primary attack vector for cybercriminals. To combat the evolving threats landscape, organizations must proactively address email security challenges. This e-guide offers an in-depth understanding of…

Read more →

This is the second blog in the series focused on PCI DSS, written by an AT&T Cybersecurity consultant. See the first blog relating to IAM and PCI DSS here. There are several issues implied in the PCI DSS Standard and…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  In today’s digital world, it’s no surprise that…

Read more →

Data breach reporting is mandatory and, as per some prevailing laws, any incident that goes unreported for a while can lead to the arrest of the technology head of the victimized company. However, if we take practical stats into account…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  Cyber attacks are common occurrences that often make…

Read more →

Cyber attacks on public websites have become an increasing concern for governments across the world, and this article is related to one such news. An Indonesian hackers’ group claimed on the dark web that they are responsible for cyber attacks…

Read more →

As artificial intelligence (AI) technologies become more prevalent in enterprise environments, chatbots like ChatGPT are gaining popularity due to their ability to assist in customer service and support functions. However, while these chatbots offer numerous benefits, there are also significant…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article. The cloud has revolutionized the way we do…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  Mobile device management (MDM) refers to a type…

Read more →

Quantum computing, while still in its infancy, is developing rapidly and holds tremendous potential for solving complex computational problems. However, its growth also presents significant challenges to cybersecurity, as it has the potential to render traditional cryptographic algorithms obsolete. This…

Read more →

For the past few months, Elon Musk, the current owner of Twitter, has urged AI-based firms to pause their R&D developments unless the White House figures out a way to take complete control over AI. However, in contradiction to what…

Read more →

AT&T Alien Labs researchers have discovered a new variant of BlackGuard stealer in the wild, infecting using spear phishing attacks. The malware evolved since its previous variant and now arrives with new capabilities. Key takeaways: BlackGuard steals user sensitive information…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  What is an e-mail? E-mail, also referred to…

Read more →

The Australian government is set to issue a complete ban on ransomware payments after one of its major financial lenders became the target of a massive file-encrypting malware attack on March 16th this year. As the victim received a ransom…

Read more →

StormWall, a premier cybersecurity firm specializing in the defense of websites, networks, and online services from Distributed Denial of Service (DDoS) attacks, has published an in-depth report on the DDoS landscape during the first quarter of 2023. The report stems…

Read more →

Networking firm Cradlepoint has made it official that it is going to acquire cloud security firm Ericom Software for an undisclosed sum. Trade analysts suggest that the purchase of the firm will help Cradlepoint build a secure 5G network that…

Read more →

Apple plugs security holes for Easter as cops bring Genesis to an end. The UK fines TikTok over underage data use. DDoS attacks surge and cybersecurity professionals keep quiet over breaches.  By Joe Fay  Apple Rolls Out Fixes for Zero…

Read more →

By Chinatu Uzuegbu, CISSP, CEO/Managing Cyber Security Consultant at RoseTech CyberCrime Solutions Ltd.  We kicked off the Identity and Access Management Processes from the Top-Level Management approach. The Identity and Access Management Security Steering Committee is a group of C-Suites…

Read more →

As the world continues to face unprecedented cyber threats, Chief Information Security Officers (CISOs) are facing a growing number of challenges in their roles. In 2023, these challenges are likely to increase, and CISOs will have to be well-equipped to…

Read more →

With more than 14,000 new Certified in Cybersecurity members joining (ISC)² last year and an additional 180,000+ Candidates gearing up to earn their first certification, (ISC)² will be supporting these cyber newcomers every step of the way.   Recently, the…

Read more →

To almost all who are familiar with ransomware attacks, it just means data encryption until a ransom is paid. However, in recent years, especially after the first lockdown, hackers involved in spreading this file-encrypting tactic have evolved or changed their…

Read more →

According to research and understanding carried out by UEA’s School of Psychology, people tend to reveal more personal details when they are targeted with the same question twice. This means that when a person is asked the same question repeatedly,…

Read more →

A new ransomware gang is on the prowl in the wild and has claimed its first major victim by launching a cyber attack and demanding $4m as ransom. According to an office statement released by Taiwan-based Micro-Star International (MSI) Co…

Read more →

A DDoS (Distributed Denial of Service) attack is a common form of cyber attack that aims to disrupt the normal functioning of a network by overwhelming it with traffic. In this type of attack, the attacker uses multiple devices to…

Read more →

In the latest of several recent announcements, the U.S. body responsible for cybersecurity is making a clear shift towards pre-emptive over reactionary reporting, alerting and advice for organizations.  By John E. Dunn  A defining characteristic of ransomware attacks is the…

Read more →

UK government potentially skimps on senior cyber role salary as the NCSC calls for more investment in people, Microsoft talks up the potential for ChatGPT and the US moves to ban spyware.  By Joe Fay  U.K. Treasury Tries to Drive…

Read more →

We all learn differently. And we all have different schedules and needs when it comes to certification training. In the past, finding the time to train has been limiting for some. Enter adaptive online training, a new and innovative way…

Read more →

By John Weiler  Microsoft patches the “aCropalypse” vulnerability, ChatGPT leaks users’ billing information and the Latitude Financial breach expands to 14 million records. Here are the latest threats and advisories for the week of March 31, 2023. Threat Advisories and…

Read more →

Looking to earn your (ISC)² CISSP certification? Make sure you follow these updated steps to register for your exam. Here is how you can register for the CISSP exam: Log in to your account at www.isc2.org and visit the Register…

Read more →

The U.S. government takes down another dark web forum, Western Digital suffers a cyberattack and the fastest acting ransomware to date. Here are the latest threats and advisories for the week of April 7, 2023.   By John Weiler  Threat Advisories…

Read more →

In today’s world, almost everyone owns a smartphone. In fact, it has become a necessity rather than a materialistic want. To secure the device from fraudulent access, mobile operating system manufacturers are coming up with various security features, among which…

Read more →

Do you own a Tesla electric vehicle? If yes, then this news piece could be of interest to you. According to research conducted by Reuters, private recordings of individual Tesla car customers are being shared by former employees via chat…

Read more →

Anxiety about the security of hot wallets grows as General Bytes customers are hit by a zero-day flaw in the company’s Bitcoin ATMs.  By John E. Dunn  It’s fair to say that crypto has an image problem. What it didn’t…

Read more →

This is the first of a series of consultant-written blogs around PCI DSS. Many organizations have multiple IAM schemes that they forget about when it comes to a robust compliance framework such as PCI DSS. There are, at minimum, two…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  “While defenders pursue the most powerful and advanced…

Read more →

Data breaches have become increasingly common in recent years, and they can have a significant impact on merger and acquisition (M&A) deals. In this article, we will explore the influence of data breaches on M&A deals and the steps that…

Read more →

In a first-of-its-kind incident, a married man and father of two children was drawn towards suicide by a talking AI Chatbot named ‘Eliza’. The topic for discussion between the man and the machine was global warming fears, which sounds strange,…

Read more →

North Korea has established a hacking group named APT43 to fund its cybercrime activities, aimed at advancing Pyongyang’s geopolitical interests. According to a study conducted by se-curity firm Mandiant, the group has been in operation since 2018 and has now…

Read more →

In today’s digital age, companies face an ever-increasing number of cyber threats. The reality is that no organization is immune to cyber attacks, regardless of its size or industry. However, lean security teams, which are commonplace in smaller companies and…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  If cyber threats feel like faceless intruders, you’re…

Read more →

Cybersecurity fatigue is genuine, and hackers are benefiting from it. The constant pressure to frequently update the software and stay precautionary of fraudulent emails is exhausting. Therefore, even minor mistakes can have critical consequences. Cybercrime risk is rising, security vulnerabilities…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  Customers’ willingness to give you their personal data…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  Introduction: Dridex, also known as Cridex or Bugat,…

Read more →

The government of Malta has introduced an innovative service to replace human-interfaced customer care with one powered by AI chatbots. The nation, located on the North African coast, resorted to this move to put an end to the dispensing of…

Read more →

With the advent of advanced technology, there has been an explosion of innovative solutions that have revolutionized various industries. One such technology that has gained widespread adoption is ChatGPT – an artificial intelligence-powered chatbot that has been created by OpenAI.…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  In today’s digital world, it’s no surprise that…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  Cyber attacks are common occurrences that often make…

Read more →

Anonymous Sudan, a group of Hackers claiming to be as Palestinians, launched a distributed denial of service attack on Israel-based cybersecurity company Check Point. The concerning part of this attack is that the hackers claim to launch a stronger version…

Read more →

Mobile applications have become an essential part of our daily lives, and they are used for a variety of purposes such as communication, banking, shopping, and entertainment. However, with the increasing use of mobile applications, the risk of security breaches…

Read more →

ChatGPT released by Microsoft owned OpenAI has been slapped with a temporary ban by Italy government agencies due to data security concerns. Now, on Monday i.e. on April 3rd of the year 2023, Germany Commissioner for data protection told Handelsblatt…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  In a highly connected, internet-powered world, transactions take…

Read more →

The content of this post is solely the responsibility of the author.  AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article.  Mobile device management (MDM) refers to a type…

Read more →

A cyber attack launched and identified on March 26th of this year has triggered the incident response teams of Western Digital (WD) to take appropriate steps to mitigate the cyber risks of the incident. And the data storage company admitted…

Read more →

After hearing a lot from the US government over national security fears, TikTok seems to have come up with answers to the three big cybersecurity questions that the app is facing from international media and governments across the world. Regarding…

Read more →

By John Weiler   FBI arrests Breached hacking forum leader, smartphones hijacked without any user involvement and 330,000 customers compromised in Australia by a data breach. Here are the latest threats and advisories for the week of March 24, 2023. Threat…

Read more →

Today, all members should’ve received an email with a link to a survey inviting feedback on the (ISC)² 2023 Bylaws which closes on April 7, 2023. The URL starts with https://schlesinger.focusvision.com/. We encourage all members to read the bylaws located on…

Read more →

By John E. Dunn  Nobody predicted how rapidly AI chatbots would change perceptions of what is possible. Some worry how it might improve phishing attacks. More likely, experts think, will be its effect on targeting.  Much has been said about…

Read more →

By Joe Fay The U.K. writes a cybersecurity prescription for the NHS and for social care, data protection hardware is becoming a big security gap, security specialist MITRE partners up to tackle supply chain security threats, while the E.U. turns…

Read more →

Red Team 2, Ferrari 0?  Italian luxury sports car maker Ferrari has warned its small but extremely wealthy list of customers that their personal information may have been exposed in a “cyber incident.” The apparent data grab was disclosed five…

Read more →

Business Wire We apologize for the inconvenience. Our team is working to resolve the issue. If you have questions or need to submit a news release, please contact your local Business Wire bureau: US: +1.888.381.WIRE(9473) Australia: +61 2.9004.7015 Canada: +1.416.593.0208…

Read more →

As part of the Cybersecurity Insiders Product Review series, we are today reviewing Trend Cloud One, a comprehensive and powerful cloud security platform for developers, security teams, and businesses. Trend Micro Cloud One’s integrated platform approach considers cloud projects and…

Read more →

By John Weiler  Microsoft patches the “aCropalypse” vulnerability, ChatGPT leaks users’ billing information and the Latitude Financial breach expands to 14 million records. Here are the latest threats and advisories for the week of March 31, 2023. Threat Advisories and…

Read more →

This March, Women’s History Month, we shared the legacy of Grace Hopper and her trailblazing innovations in software development and computing, highlighted the must-watch webinars by in cybersecurity and met with cyber newcomer and (ISC)² Candidate Nidhi Kannoujia on the…

Read more →

Capita, an internationally acclaimed business processing & outsourcing firm, is experiencing a sudden halt in the operations of its IT services and suspects a cyber attack behind the disruption. However, the company is yet to reveal it on an official…

Read more →

Are you one of those who play games by investing real money to earn double or triple the amount in return? If yes, then you should be wary of scammers who are indulging in various kinds of gaming frauds. Account…

Read more →

“Cloud is the present, and the future. It affects everything, every day, both in business and our personal lives.” With these words Panagiotis Soulos summarizes his philosophy of why the CCSP credential is important to any cybersecurity professional. Panagiotis holds…

Read more →

AT&T Alien Labs researchers have discovered a new variant of BlackGuard stealer in the wild, infecting using spear phishing attacks. The malware evolved since its previous variant and now arrives with new capabilities. Key takeaways: BlackGuard steals user sensitive information…

Read more →

News is breaking about a software supply chain attack on the 3CX voice and video conferencing software. 3CX, the company behind 3CXDesktopApp, states to have more than 600,000 customers and 12 million users in 190 countries. Notable names include American…

Read more →

Seasoned CISOs/CSOs understand the importance of effectively communicating cyber risk and the need for investment in cybersecurity defense to the board of directors. To ensure cybersecurity becomes a strategic part of the corporate culture, it is crucial for CISOs to…

Read more →