CYBER THIS WEEK – FEBRUARY 12, 2023

What CISOs Should Know About Hacking in 2023

As we begin to navigate 2023, the security landscape has transformed from a year ago, let alone a decade ago. The Russian invasion of Ukraine, emerging technologies like Web3 and AI, and new, post-pandemic ways of organizing the workforce have all led to significant shifts in the world of hacking.

What CISOs Should Know About Hacking in 2023 (securityintelligence.com)

Patching & Passwords Lead the Problem Pack for Cyber-Teams

Weak credential policies and a lax approach to patching were among the most common points of IT security failure for organizations in 2022, while a failure to configure tools properly could leave organizations open to attack.

Patching & Passwords Lead the Problem Pack for Cyber-Teams (darkreading.com)

Why threat modeling can reduce your cybersecurity risk

Each new multi-million-dollar breach or devious, sophisticated hack triggers countless organizations to gravitate toward new cybersecurity tools they think are even more sophisticated. Simply throwing money at the problem doesn’t address the bigger issue.

Why threat modeling can reduce your cybersecurity risk | VentureBeat

Flaws in industrial wireless IoT solutions can give attackers deep access into OT networks

Industrial wireless IoT devices and their cloud-based management platforms are attractive targets to attackers looking for an initial foothold in industrial environments

Flaws in industrial wireless IoT solutions can give attackers deep access into OT networks | CSO Online

Cyber Insurance: The Policy Changes Needed To Save the Industry

Cybercrime today is a systemic threat that encompasses both digital and physical infrastructure, and because of the ever-evolving nature of the threats, achieving 100% security is impossible without disconnection. 

Cyber Insurance: The Policy Changes Needed To Save the Industry – CPO Magazine

Why Zero-Trust Security Is Essential for Modern Networks

The article will delve into the concept of zero-trust security, exploring its benefits and best practices for implementation. Whether you’re a small business owner or a cybersecurity professional, this post will provide you with a comprehensive understanding of how zero-trust security can help keep your data safe in today’s constantly evolving threat landscape.

Why Zero-Trust Security Is Essential for Modern Networks (threatintelligence.com)

The Next Cyber Phase of the Russia-Ukraine War Will Echo in Asia

It is prudent for Asia-Pacific countries to prepare for spillover effects – such as new disinformation, intelligence collection, DDOS, and hacktivist attacks – in the cyber domain in case the Russia-Ukraine war escalates.

The Next Cyber Phase of the Russia-Ukraine War Will Echo in Asia – The Diplomat

Reddit was hit with a phishing attack. How it responded is a lesson for everyone

It’s unfortunate that the nature of cyber crime means that phishing and cyberattacks are an everyday occurrence — but a company that shows it can deal with incidents well is positive for everyone

Reddit was hit with a phishing attack. How it responded is a lesson for everyone | ZDNET

Wave of telco attacks tied to bad third-party vendor security hygiene

“Third-party breaches through vendors, software, and MSPs (Managed Service Providers) caused several prominent incidents,” wrote researchers. “These third-party breaches can lead to a larger scale supply-chain attacks and a greater number of impacted users and entities globally.”

Wave of telco attacks tied to bad third-party vendor security hygiene | SC Media (scmagazine.com)

Data security should be a part of every organizational DNA

With ‘digital’ and ‘data’ being today’s buzzwords, India’s growth story is for everyone to see. Digitization has augmented lives in more ways than one, enabling brands to get closer to customers. In such a context, the discussion around data privacy becomes crucial.

Data security should be a part of every organizational DNA (cxotoday.com)

Share: