Davey Winder

Service providers under attack: US Secret Service warns of ransomware threat to MSPs

Service providers under attack: US Secret Service warns of ransomware threat to MSPs

Cyberattacks related to compromised managed service providers see upswing; even though you rely on an MSP or managed security service provider, you are still culpable for the information that you own.

Too many security tools weaken enterprise incident response, study finds

Too many security tools weaken enterprise incident response, study finds

Missing the wood for the trees. Those with large numbers of tools must make sure the staff, expertise, and proper organisational alignments, expectations, and structures are in place.

Ransomware group opens dark web auction house to sell stolen data

Ransomware group opens dark web auction house to sell stolen data

The REvil ransomware group has added a self-hosted online auction feature to its dark web presence. It uses stolen data as leverage when it comes to demanding the ransom is paid,

Corrected: Buying illegal access to enterprise networks - costs on  dark web skyrocket

Corrected: Buying illegal access to enterprise networks - costs on dark web skyrocket

The average darkweb cost of illegal privileged access to a single local network has shot up, with average costs of privileged access to a single local network now around £4,100.

A perfect cyber storm is brewing as Nigerian scammers add to COVID-19 response team woes

A perfect cyber storm is brewing as Nigerian scammers add to COVID-19 response team woes

A Nigerian cybercrime group SilverTerrier targets healthcare organisations critical to COVID-19 response. Organisations advised "apply extra scrutiny to COVID-19-related email attachments."

2FA-stealing Android malware gives enterprises cause for concern

2FA-stealing Android malware gives enterprises cause for concern

Security researchers have warned that newly created mobile banking malware can not only grab passwords for more than 200 financial apps, but intercept two-factor authentication codes as well.

Can behavioural analytics calm the insider threat pandemic perfect storm?

Can behavioural analytics calm the insider threat pandemic perfect storm?

58% of organisations say their ability to monitor, detect and respond to insider threat is only somewhat effective, not so effective or not at all effective. Only 12% thinking they are extremely effective.

Microsoft extends account hardening to healthcare free of charge

Microsoft extends account hardening to healthcare free of charge

As cyber-criminals & nation-state attackers target the healthcare sector, Microsoft is making its AccountGuard threat notification service free of charge to "healthcare providers on the front lines."

GDPR penalties deferred as Covid-19 takes hold

GDPR penalties deferred as Covid-19 takes hold

Penalty extensions, understandable in the current unprecedented times, is likely to have a long-term impact on GDPR enforcement

Covid-19: Microsoft teams up with healthcare firms to counter ransomware

Covid-19: Microsoft teams up with healthcare firms to counter ransomware

Microsoft prompted to issue targeted notifications to healthcare organisations as Covid-stresses sector faces severe threats from cyber-criminals