Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

DFIR Bluesky Ransomware: Strategies for Incident Response and Threat Containment

When Bluesky ransomware first appeared, it caused a lot of trouble for businesses of all kinds. This sophisticated and dangerous threat actor has shown that they are determined to stop activities and get money by any means necessary. To mitigate the Bluesky danger, businesses need to take a thorough and proactive approach to handling incidents and keeping threats inside their borders.

Australia Considers Mandatory Reporting of Ransom Payments

New legislation is on the horizon in Australia that is set to change the way businesses deal with ransomware attacks. This law, not unlike the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA) in the US, aims to improve transparency when it comes to paying ransoms. There's no question that cybercrime is on the rise in the country.

Five Challenges of National Information Assurance and How to Overcome Them

The National Information Assurance (NIA) Policy is a framework for offering organizations a foundation for information security management. It was designed and developed to aid organizations with the necessary steps to ensure information security, from assessing and classifying risk to choosing and implementing controls for mitigation.

Boost security for your Mac customers against MFA bombing campaigns

It all started when I began receiving multiple notifications on my Mac asking me to approve an authentication request. I ignored them at first, thinking it was a system error. But they kept popping up again and again, until they started interfering with my work. I was busy so I didn't stop to investigate. Then I received a phone call from a person claiming to be from my company's IT support team.

Protect against identity-based attacks by sharing Cloudflare user risk scores with Okta

Cloudflare One, our secure access service edge (SASE) platform, is introducing a new integration with Okta, the identity and access management (IAM) vendor, to share risk indicators in real-time and simplify how organizations can dynamically manage their security posture in response to changes across their environments.

Take Action This Cybersecurity Awareness Month With Four Essential Steps

As we embrace October, it’s time not just to passively celebrate Cybersecurity Awareness Month – it’s time to actively engage in it. At Keeper Security, we believe that while awareness is important, the time has come to move swiftly and proactively against evolving cyber threats. With advancements in Artificial Intelligence (AI), cybercriminals are weaponizing sophisticated tools to launch targeted attacks at a massive scale.

What Is Password Rotation?

Password rotation is the practice of changing and resetting passwords at regular intervals to minimize security risks and unauthorized access to private information. There are two main types of password rotation: manual and automatic. Manual password rotation refers to the process of changing a password yourself, while automatic password rotation relies on a system to generate a new password and replace the old one.

The Importance of Data Security in Healthcare

Data security is crucial in the healthcare industry because protecting patients’ medical information prevents unauthorized users from obtaining private data. Since patients’ medical data contains their medical history, prescriptions and diagnoses, an unauthorized user who gains access to this data could use it to commit identity theft and medical insurance fraud.

Taking Down The Whole Internet (Archive) - The 443 Podcast - Episode 310

This week on the podcast, we cover security incident that brought the Internet Archive and all of its services down, including the Way Back Machine. Before that, we discuss a Chinese nation-state backed threat actor that compromised three major American telecommunications providers and may have gained access to the US wiretapping system. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.

How to Execute a Secure M365 Copilot Deployment

Microsoft Copilot is a powerful AI assistant that can leverage Microsoft 365 (M365) data from across an organization to generate accurate and relevant insights. But some of that data should be under special lock: you do not want sensitive enterprise information to be used as part of a large language model (LLM). And the reality is that common misconfigurations—such as mislabeled files and overly broad user permissions—can lead to sensitive data exposure to unauthorized users.