The biggest cyber security threat that businesses have to tackle is much closer than you’d think. Verizon’s 2022 Data Breach Investigations report – found human error to be a key driver in 82% of breaches, which is why it is crucial for businesses to address cyber security awareness in the workplace and ensure that employees are equipped with the right guidance and resources to help minimise the risk to the organisation.

The rapid increase of cybersecurity challenges in recent years, such as growing ransomware attacks, has forced the US to devise new mandatory regulations. These requirements are aimed to help combat cybercrime by increasing organizations’ level of cybersecurity capabilities. Complying with these regulations is necessary to keep organizations accountable for their mandatory security posture.

The risk of a data breach is exceptionally high for financial organizations. Hackers recognize the high value financial data has on the dark web. Other cybercriminals pay significant amounts to get their hands on customers’ personally identifiable information (PII) and commit lucrative cybercrimes, like identity theft and insurance fraud. One of the most common ways cybercriminals gain access to this data is by exploiting data leaks.

Internet of things (IoT) application and rollout has been rapid, disrupting and streamlining processes in a variety of industries, However, it has created a situation where “today’s IoT security is lightweight compared to enterprise application security” , creating a need for IoT security solutions than many of the insufficient and fragmented options.

The Internet of Things (IoT) is increasingly becoming a part of our homes, businesses, and public services with a wide range of uses from ‘smart’ home appliances to complex industrial tools. With the increasing adoption and application of IoT devices, they have also become increasingly targeted by malicious actors looking to take advantage of opportunities to access them.

Healthcare fraud, waste, and abuse cost taxpayers billions of dollars. According to a report published in BusinessWire, the global healthcare fraud analytic market may reach US$ 5.69 billion by 2027. Detection of fraud leads to hefty fines, criminal proceedings, and incarceration for the concerned individuals in organizations. 2021 saw a peaking of medical fraud and abuse, according to the latest report of the HIPAA journal.

The goal of a SOC 2 audit is to evaluate and verify how a service provider, whether an IT provider, Software-as-a-Service (SaaS) platform, or other outsourced solution, handles sensitive customer data. Companies are pursuing SOC 2 certification because it is an industry-recognized way to show customers that their security program is worthy of their trust. When thinking about how to prepare for a SOC 2 audit, cyber risk assessment and penetration testing should be on your list.

A selection of this week’s more interesting vulnerability disclosures and cyber security news. For a daily selection see our twitter feed at #ionCube24. Shame those mostly likely to be impacted won’t upgrade if they are still on ancient WordPress installs…

Imagine a nightmare where you are in a dark tunnel and every minute without reaching the light costs a fortune. You try everything to find the exit, but there is nothing you can do. The incarnation of these nightmares is called “Major Incidents” in the cyber security field. These nightmares are likely to become a reality for managers of many organizations today, where companies manage almost all their business processes with digital solutions.

Third-party breaches have become a common phenomenon in the modern cyber threat landscape. In 2021, the Ponemon Insitute estimated that 51% of organizations were impacted by third-party breaches. The 2022 report found that data breach damage costs associated with third-party vulnerabilities rose from US$ 4.33 million in 2021 to US$ 4.55 million in 2022.