51 matches found
How to Stop New Employees from Becoming Insider Threats
In the midst of a booming tech economy and a concurrent Great Resignation, recruitment and hiring are all-seasons imperatives. As new people constantly join the organization, how can busy security teams guarantee they will adhere to established data security practices from their onboarding and...
Most ServiceNow Instances Misconfigured, Exposed
Nearly 70 percent of instances of the software-as-a-service SaaS platform ServiceNow Customers aren’t locking down access correctly, leading to 70 percent of ServiceNow implementations tested by AppOmni being potentially exposed to the public. ServiceNow is a $4.5 billion company whose software...
The Art of Non-boring Cybersec Training–Podcast
Log4j, ransomware, cloud vulnerabilities, phishing: Cyber threats are manifold. They all pale, however, in comparison to the security black holes that walk around on two legs. Studies have shown that nearly all successful breaches stem from human error, be it failure to install security patches...
Imperva Snapshot™ Scan: What You Can Find in the Report
Imperva Snapshot is a free AWS RDS security assessment tool. You can use this tool to gain in-depth visibility into your data and get a deep understanding about what data resides in your RDS and where your RDS database security gaps are. Acquiring this intelligence is a key element and critical...
McDonald’s Email Blast Includes Password to Monopoly Game Database
McDonald’s UK Monopoly VIP game kicked off at the end of August, and a recent round of emails sent to winners of the game’s various prizes included more than a coupon for free fries. The franchise accidentally inserted passwords for a McDonald’s server that hosted information tied to the UK...
CVS Health Records for 1.1 Billion Customers Exposed
More than 1 billion records for CVS Health customers were left in the database of a third-party, unnamed vendor – exposed, unprotected, online. Researchers said the data points revealed could be strung together to create an extremely personal snapshot of someones’s medical situation. The glitch i...
Why Human Error is #1 Cyber Security Threat to Businesses in 2021
Phishing and Malware Among the major cyber threats, the malware remains a significant danger. The 2017 WannaCry outbreak that cost businesses worldwide up to $4 billion is still in recent memory, and other new strains of malware are discovered on a daily basis. Phishing has also seen a resurgence...
Changing Employee Security Behavior Takes More Than Simple Awareness
Security awareness rarely leads to sustained behavior change on its own, according to a recent analysis – meaning that organizations need to proactively develop a robust “human-centered” security program to reduce the number of security incidents associated with poor security behavior. According ...
Vertafore data ereach exposes license details of 27.7M Texas drivers
By Deeba Ahmed Vertafore claims the incident resulted from human error since the data was stored on an unprotected external storage service. This is a post from HackRead.com Read the original post: Vertafore data ereach exposes license details of 27.7M Texas drivers...
The Story Behind Security Breaches
There are many potential causes of security breaches, including malicious attacks, system glitches, equipment failures, software bugs, and zero days. What is a common root cause here? Human error. According to Micke Ahola, “In a security context, human error means unintentional actions—or lack of...
SMB Cybersecurity Catching Up to Enterprise… But the Human Element Still a Major Concern
Cyberattacks on small to medium-sized businesses SMBs are continuing at a relentless pace, with the vast majority of data breaches coming from outside the organization. Some believe hackers are aggressively targeting these smaller firms because they believe SMBs lack adequate resources and...
What is the Best Defense Against Phishing Attacks?
Whether the subject line was “You’re account will be closed!” or the email address was [email protected], we have all received and rolled our eyes at a poorly disguised phishing attempt. While many view phishing as a small annoyance, this attack method has maintained longevity for a reason and...
HackerOne Breach Leads to $20,000 Bounty Reward
HackerOne has paid out $20,000 after a high-severity vulnerability was discovered in the bug-bounty platform. The flaw allowed an outside bounty hunter to access customers’ reports and other sensitive information. Disclosed this week in a HackerOne report, the security incident stemmed from a...
How Cloud-Based Automation Can Keep Business Operations Secure
The massive data breach at Capital One – America's seventh-largest bank, according to revenue – has challenged many common assumptions about cloud computing for the first time. Ironically, the incident, which exposed some 106 million Capital One customers' accounts, has only reinforced the belief...
UNICEF Leaks Personal Data of 8,000 Users via Email Blunder
The charity organization UNICEF inadvertently leaked the personal details of thousands of people who use its online learning portal Agora by way of an errant email sent to 20,000 inboxes. The email was accidentally sent on August 26 by UNICEF and included the names, email addresses, gender and...
The Role of Human Error in Cyberattacks
One surefire way to guarantee cybersecurity is to restrict access to or stay off the internet. Unfortunately, this isn’t a feasible option, since the internet is such a crucial part of day-to-day life. As such, companies work to protect their data with endpoint security, selecting reputable web...
ThreatList: Human Error is Behind One Quarter of Data Breaches
One quarter of all data breaches last year were caused by human error. The average cost of all breach in the same time period was $3.92 million, a 1.5 percent increase from the year before. Click to enlarge. That’s according to the 14th annual Cost of a Data Breach report from the Ponemon Institu...
Forcepoint DLP integration with Microsoft Information Protection—protecting your critical data
Many organizations are undergoing a rapid digital transformation that is challenging their traditional approach to data security. Organizations in highly regulated industries or who partner with organizations in regulated industries are often faced with accelerated timelines and requirements to...
2018: A Banner Year for Breaches
Where to start? In 2018 the mantra became “another day, another data breach.” As a result, consumers and researchers alike are feeling “breach fatigue” and getting a bit numb to the headline. But the reality is, cybercriminals are going after personal information, credit card info and passwords...
Mexico’s Banking System Sees $18M Siphoned Off in Phantom Transactions
Somewhere between $18 million to $20 million has gone missing during unauthorized interbank money transfers in Mexico’s central banking system. Authorities are investigating the shadow transactions, but answers are thus far scarce. The affected banks and government officials are determining wheth...