Researchers at security firm Guardicore Labs are tracking a botnet they call Vollgar that's targeting devices running vulnerable Microsoft SQL Server databases with brute-force attacks and planting cryptominers in the infected databases.
The latest edition of the ISMG Security Report offers an analysis of the phases businesses will go through in the recovery from the COVID-19 pandemic, plus an assessment of new risks resulting from the work-at-home shift and lessons learned from the Equifax breach.
The California Consumer Privacy Act (CCPA), which went into effect on January 1, 2020, gives consumers the right to access, delete, or opt out their personal data.
Companies that are subject to CCPA and other U.S. State level privacy regulations should be actively prepared and should begin documenting the steps...
The new California Consumer Privacy Act (CCPA), which entered into force on January 1, 2020, gives individuals the right to learn about the personal data collected and shared about them over the past 12 months, and requires companies to not only provide timely responses to Data Subject Requests (DSRs), but to also...
Supermarket giant Morrisons is not liable for a data breach caused by a rogue employee, Britain's Supreme Court has ruled, bringing to a close the long-running case - the first in the country to have been filed by data breach victims.
The Global Cyber Alliance is one of 13 nonprofit organizations that have banded together to offer businesses security tips for their newly remote workforces. Andy Bates, executive director of the alliance, discusses the coalition's core guidelines for reducing cyber risk.
Ready for Office 365? Already deployed but running into problems? Either way, there are some secrets to deployment that can put you on the road to success. Even though these tips have been discussed-even by Microsoft-many companies discover deployment problems the hard way.
Download this document learn some of the...
It's time for a new approach to application security
While applications have moved to-cloud and users are accessing them from everywhere, the way enterprises provide secure access to apps has largely remained unchanged. Teams in the midst of a cloud transformation must ensure that their applications remain secure no...
MITRE ATT&CK (Adversarial Tactics, Techniques & Common Knowledge) has served as a model through which interested parties can learn to identify and map digital intrusions against their existing security technologies allowing them to shore up their gaps and prevent more intrusions on endpoints.
But what about the...
As CISO of SoftBank Investment Advisers, Gary Hayslip is dealing with a familiar crisis management challenge: Supporting a remote workforce, with extra emphasis on secure identities. But he's also keeping a close eye on his team and the risks of burnout.
All businesses ensure that their cloud adoption doesn't outpace their security capabilities.
Download this white paper and use it as a guide through these three phases of secure cloud adoption:
Prioritizing accessibility;
Enabling cloud access;
Adding all users and eliminating local networks.
Today, many enterprises are already digital to the core. Those that aren't soon will be. So ubiquitous is digital technology in enterprises, that some commentators think the initial process of digital transformation is nearing fulfillment.
This report focuses on the key intersection of digital transformation and...
As the coronavirus drives a massive upsurge in remote working, a review of remote desktop protocol usage suggests RDP adoption hasn't spiked. But as IT teams rely more heavily on remote access, experts warn that too many RDP systems remain internet-exposed.
Hotel giant Marriott, which in 2018 disclosed that it had suffered one of the worst data breaches in history, is now warning that it suffered a new breach earlier this year that exposed personal details - although not payment card information - for 5.2 million customers.
APIs are ubiquitous in the enterprise today, being exposed to customers, partners and applications. But because they are relied on so heavily, they also are targeted by cybercriminals. Shreyans Mehta, co-founder and CTO of Cequence Security, discusses the API security challenge.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing healthcareinfosecurity.com, you agree to our use of cookies.
