Risk Management

Building a BYOD checklist for your business

Aug 8, 2022 By The Redscan Team In Redscan

While BYOD provides flexibility to employees and organisations, it also presents a number of risks. In this blog post, we discuss the issues created by the use of BYOD and outline the elements of an effective checklist.

Read Post

Redscan

Read more about Building a BYOD checklist for your business

Don't Hack the Computer - Hack the Person! Recently Observed Social Engineering Attacks

Aug 8, 2022 By Alexander Heid In SecurityScorecard

When most people think about the origin of a cyberattack, the image is that of a hacker using some kind of exploit against software or hardware in order to gain unauthorized access to systems. The hacker is seeking data to exfiltrate and monetize, either through re-sale on the darknet or extortion through ransomware.

Read Post

SecurityScorecard

Read more about Don't Hack the Computer - Hack the Person! Recently Observed Social Engineering Attacks

Vulnerability Scans Are a Must but Not Enough

Aug 8, 2022 By SecurityScorecard In SecurityScorecard

Vulnerability scans test for different misconfigurations and report the vulnerabilities. But they have 2 big drawbacks: You need to get consent from a company before you do a vulnerability scan on them. You may get a very rigorous readout from a vulnerability scan. But then a sleep-deprived IT administrator misconfigured the system, making your report irrelevant. On the other hand, security ratings don’t need anybody’s consent and provide continuous, real-time monitoring.

View Video

SecurityScorecard

Read more about Vulnerability Scans Are a Must but Not Enough

SecurityScorecard Is One of Only Five Organizations to Partner with the Institute for Security and Technology's Ransomware Task Force to Create the Blueprint for Ransomware Defense

Aug 4, 2022 By Katherine Ledesma In SecurityScorecard

On August 4, the Institute for Security and Technology’s (IST) Ransomware Task Force (RTF) announced the release of its Blueprint for Ransomware Defense - a clear, actionable framework for ransomware mitigation, response, and recovery aimed at helping organizations navigate the growing frequency of attacks.

Read Post

SecurityScorecard

Read more about SecurityScorecard Is One of Only Five Organizations to Partner with the Institute for Security and Technology's Ransomware Task Force to Create the Blueprint for Ransomware Defense

Federal and Local Government Agencies Continue to Use Section 889 Prohibited Products

Aug 4, 2022 By Dr. Robert Ames In SecurityScorecard

Section 889 of the John S. McCain National Defense Authorization Act (NDAA) for Fiscal Year (FY) 2019 prohibits the procurement or use of Huawei, ZTE, Hytera, Hikvision, or Dahua telecommunication and video surveillance products and services by federal agencies, government contractors, and the recipients of any federal grants or loans (this latter category includes many state and local governments).

Read Post

SecurityScorecard

Read more about Federal and Local Government Agencies Continue to Use Section 889 Prohibited Products

Using Business Analytics for Risk Performance Management

Aug 4, 2022 By RiskOptics In RiskOptics

Risk management is the process of identifying, evaluating, and controlling risks to an organization’s operations and financial performance. These dangers can be caused by several things, such as economic unpredictability, legal responsibilities, technological problems, strategic management blunders, accidents, and natural calamities. An effective risk management program helps a business navigate all potential hazards.

Read Post

RiskOptics

Read more about Using Business Analytics for Risk Performance Management

All You Wanted to Know About Data Security Fabric

Aug 4, 2022 By RiskOptics In RiskOptics

Data is one of the most valuable assets for modern organizations. The right type and quality of data allows companies to resolve problems and improve business performance; it guides enterprise decision-making and drives business strategy. Data is also vital to improve cybersecurity, maintain regulatory compliance, and strengthen the competitive posture. In short, data matters. Organizations must protect their data assets from unauthorized access, compromise, and theft.

Read Post

RiskOptics

Read more about All You Wanted to Know About Data Security Fabric

Looking for a Digital Forensics Expert Witness? Guidelines and Procedures for Testimony

Aug 3, 2022 By SecurityScorecard In SecurityScorecard

In 2022, a lot of crime involves a digital element. The digital element can be anything from text messages to complex cyber attacks on organizational networks. If you're prosecuting, a digital forensics expert can help you build a stronger case by gathering and documenting evidence and testifying in court on their findings.

Read Post

SecurityScorecard

Read more about Looking for a Digital Forensics Expert Witness? Guidelines and Procedures for Testimony

Was the Explosion at Freeport LNG a Result of a Russian Cyber Attack?

Aug 2, 2022 By Dr. Robert Ames In SecurityScorecard

On June 8, an explosion took place at Freeport LNG’s liquefied natural gas (LNG) export facility in Quintana, Texas. The company later explained that the explosion resulted from a rupture in an over-pressurized pipeline, but did not comment as to how the pressure built up enough to cause such a rupture. In the wake of the explosion, Freeport reported that the outage resulting from it would persist until September, after which the facility would only resume partial operations.

Read Post

SecurityScorecard

Read more about Was the Explosion at Freeport LNG a Result of a Russian Cyber Attack?

What is the Internet of Things (IoT)? Definition and Critical Risks

Aug 1, 2022 By Kyle Chin In UpGuard

The internet of things (IoT) is a system of interconnected computers, devices, digital machines, and objects, all marked with unique identifiers (UIDs) and enabled to transfer and share data over a network. It was first coined by Kevin Ashton in 1999 when he envisioned a future where things communicated with each other, apart from human interaction With the evolution of web-enabled smart homes and smart devices in nearly every corner of life, IoT attack surfaces begin to emerge.

Read Post