Davey Winder

Hospitality sector is a hacker magnet impacting all organisations' business travellers

Hospitality sector is a hacker magnet impacting all organisations' business travellers

The hospitality sector cyber-risk is highly relevant to the enterprise as business travel is an inescapable reality for many. It is consistently at the top of the data breach charts - a magnet to those who covet data.

Security analyst churn isn't just a money issue: what else impacts retention?

Security analyst churn isn't just a money issue: what else impacts retention?

While the skills gap has been editorialised to death, less attention has been given to the problem of retaining those skilled staff once an organisation has recruited them. ISACA Report digs deeper.

Mobile device security disconnect leaves the enterprise exposed to compromise

Mobile device security disconnect leaves the enterprise exposed to compromise

The latest Mobile Security Index from Verizon paints a contrary picture of the mobile security landscape, at least when viewed from the enterprise perspective.

The £1 billion social media crimewave that has enterprises blindsided

The £1 billion social media crimewave that has enterprises blindsided

Massive blindspot in the defence strategy of the average enterprise: social media-enabled attacks. One in five enterprises infected by malware originating from social media.

Half of UK PLCs now at risk from invisible IoT devices

Half of UK PLCs now at risk from invisible IoT devices

There's been a 110,000 increase in the number of UK businesses with unknown IoT devices on their networks despite organisations understanding the risk they are taking, according to new research.

Astaroth malware exploits Avast antivirus LOLBins to steal data

Astaroth malware exploits Avast antivirus LOLBins to steal data

Researchers say that the Astaroth malware is exploiting weaknesses in the world's most popular antivirus software in a 'live off the land' strategy.

Lifesize video conferencing zero-day shines spotlight on end-of-life patching dilemma

Lifesize video conferencing zero-day shines spotlight on end-of-life patching dilemma

A flaw in a ten-year-old video conferencing system was found to enable attackers to establish a foothold in users' networks, raising questions about the manufacturer's responsibility to patch the system.

Crisis in the SOC as skills shortage bites deep, says report

Crisis in the SOC as skills shortage bites deep, says report

A report from Agari shows how the alarming shortage of SOC analysts is swinging the threat-response balance in favour of the bad guys.

Xbash illustrates how opportunity still knocks for threat actors in the cloud

Xbash illustrates how opportunity still knocks for threat actors in the cloud

A trio of newly published reports paint a less than flattering portrait of the cloud-based data threatscape. Why does the enterprise still have cause for concern when it comes to cloud security in 2019?

Telegram bot API flaw gives threat actors command & control

Telegram bot API flaw gives threat actors command & control

Research from Forcepoint Security Labs has revealed that the Telegram encrypted messaging service isn't quite as secure as users might like to think.