balanda, Author at Cyber Security Minute

Microsoft 365 Apps update changes: What security admins need to know

Issued by: CSO

As more organizations move to the Microsoft 365 platform, Microsoft has acknowledged that we need a more stable monthly update platform for the Office suite. Microsoft has made changes in naming and the patching cadence in response to customers’ concerns. Until May 2020, Office 365 applications were updated using click-to-run technology under three difference schedules…

Vulnerabilities

Protecting employee COVID-19 health data: What CISOs need to know

Issued by: CSO

Businesses re-opening in the wake of COVID are faced with keeping track of who in the company is healthy, who is sick, and who needs to isolate. A new International Association of Privacy Professionals (IAPP) study shows that 60% of employers are keeping records of employees diagnosed with COVID-19. These new sensitive datasets come at…

Network Security

Remote work in the time of COVID-19

Issued by: Help Net Security

The COVID-19 pandemic has, in one broad swipe, rewritten the rules regarding our workforce and jobs, with an almost instantaneous transition to remote work for those who were able to. While certain jobs require physical presence, a number of jobs fortunately can be done while working offsite. For those companies that went into remote work…

Network Security

Why traditional network perimeter security no longer protects

Issued by: Help Net Security

Greek philosopher Heraclitus said that the only constant in life is change. This philosophy holds true for securing enterprise network resources. Network security has been and is constantly evolving, often spurred by watershed events such as the 2017 NotPetya ransomware attack that crashed thousands of computers across the globe with a single piece of code….

Vulnerabilities

Nearly 1,000 Vulnerabilities Found in Popular Open Source Projects in 2019

Issued by: Security Week

RiskSense has analyzed 54 open source projects in which nearly 2,700 vulnerabilities were reported between 2015 and March 2020. Overall, the Jenkins automation server and MySQL had the most vulnerabilities reported during this timeframe, with more than 600 flaws each. For each of these pieces of software, 15 vulnerabilities were weaponized (i.e. public exploit code…

Cloud Security

How does COVID-19 impact cloud adoption?

Issued by: Help Net Security

99% of IT professionals worldwide indicated an impact on their business today related to the COVID-19 pandemic, a MariaDB survey reveals. The situation only slightly improves looking ahead to 2021, with 84% expecting a continued impact. And 74% of respondents expect a second wave of COVID-19 impact, with 51% planning to move more applications to…

Network Security

Local, State Governments Face Cybersecurity Crisis

Issued by: Dark Reading

Already under attack by cybercriminals and ransomware operators, state and local government are facing heightened cybersecurity threats as they move into the second half of 2020, when they will be required to manage elections while dealing with hard economic choices, experts said this week. State and local governments have struggled with cybersecurity for years, but…

Network Security

What’s next? CISOs weigh in on COVID’s long-term effects on security

Issued by: CSO

As lockdowns ease, CISOs are looking ahead at how their teams operate and how they protect employees and assets. The most likely change is permanently supporting more work-at-home employees. According to a report released in April by (ISC)2, 96% of organizations had moved at least some of their staff to remote work, with nearly half…

Malware & Threats

Cybercriminals exposed 5 billion records in 2019, costing U.S. organizations over $1.2 trillion

Issued by: Help Net Security

Cybercriminals exposed over 5 billion records in 2019, costing over $1.2 trillion to U.S. organizations, according to ForgeRock. Coupled with breaches in 2018 costing over $654 billion, breaches over the last two years have cost U.S. organizations over $1.8 trillion. Healthcare: The most targeted industry Healthcare emerged as the most targeted industry in 2019, accounting…

Cloud Security

Most companies suffered a cloud data breach in the past 18 months

Issued by: Help Net Security

Nearly 80% of the companies had experienced at least one cloud data breach in the past 18 months, and 43% reported 10 or more breaches, a new Ermetic survey reveals. According to the 300 CISOs that participated in the survey, security misconfiguration (67%), lack of adequate visibility into access settings and activities (64%) and identity…