Russian authorities have reportedly arrested three accused members of the SugarLocker ransomware-as-a-service operation. Their alleged crime? Targeting Russians, although one suspect has also been tied to a massive hack of Australian health insurer Medibank and a subsequent data leak.
A Chinese-speaking cybercrime group with the codename GoldFactory has built a new Android and iOS banking Trojan, GoldPickaxe, that can harvest and steal personal details, including biometric face profiles, that attackers use to create AI-driven deepfakes to fool bank defenses, researchers warn.
Ukrainian cyber defenders report that fast-acting Russian military intelligence hackers have been targeting government agencies as well as organizations in Poland using backdoor malware tied to phishing lures based on a fake letter from the Ukrainian deputy prime minister.
Microsoft has deactivated a tool designed to simplify the installation of Windows applications after hacking groups began exploiting the functionality to distribute malware loaders, leading to infections involving backdoors and ransomware.
October has been designated the Cybersecurity Awareness Month since 2004. Various organizations - both public and private - engage in activities and campaigns to educate individuals and businesses about the risks and best practices associated with online security.
India ranks among the bottom five on Harvard's Belfer Cyber Power Index 2022, while China, its primary adversary, is at a strong number two position. Lt. Gen. (Retd.) R S Panwar says a national cyber strategy with an offensive approach is imperative.
It shook the world when nearly 11 media companies, including The Guardian and The Washington Post, received a classified list of documents from a Russian cybersecurity contractor firm named Vulkan. Kukreja discusses safeguarding businesses by a stricter adherence to "assumed breach" principles.
The German Federal IT security agency has set security levels for manufacturing companies. An organization aspiring for Level 5 (the highest level) must prove that all its suppliers and vendors in its supply chain are also certified for Level 5. This ensures consistency in security along the supply chain or value...
A report on the status of cybersecurity in the healthcare industry indicates that cyberattacks are declining or remaining flat. Cyber attackers were still targeting medical services, hospitals and clinics, medical device manufacturers and pharmaceutical firms in Q2 2023.
IoT systems, devices, and sensors are becoming vital to enhancing customer and employee experiences, reducing operational costs, improving productivity, and achieving corporate ESG goals. It's imperative to adopt standards that mitigate supply chain risks from poorly secured IoT devices.
The construction industry in Vietnam is on a rapid digitalization drive yet faces certain challenges. Unpatched software and outdated systems by construction companies, suppliers and contractors are leading to increased data breaches. Here's what RICONS is doing to counter this and support its vision.
A cyber incident strategy helps businesses become compliant with new SEC disclosure rules. It can also reduce risks and cost of breach. But how does one go about creating a cyber incident strategy, and what are its essential elements?
Just like privacy and cybersecurity, enterprise architecture should be an essential part of an organization's strategic road map. Don Welch, CIO of New York University, advises integrating enterprise architecture into organizational culture and business strategy.
SOC analysts, security practitioners and CISOs are overwhelmed with the sheer volume of telemetry data due to the increase in attacks. Triaging can no longer be done by humans today. But BlackBerry is reducing this burden by embedding AI/ML into its enterprise security offerings.
Shifting from encryption, threat actors are now resorting to data exfiltration to exert pressure on enterprises, demanding ransom for the protection of valuable data and reputation. CIOs and CISOs must disrupt the playing field by deploying deception and embracing other innovative methods.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing cio.inc, you agree to our use of cookies.
