IT Security Budgets Soar as Orgs Battle Rising Threats
Median IT security budgets have more than tripled—to $5.3 million in 2022 from $1.4 million in 2018—leading to a significant increase in the cost of combating cybersecurity threats over the past five years. These were the results of a Hiscox survey, which also revealed nearly a quarter (23%) of IT ...
Read More
US ‘Strike Force’ Keeps Disruptive Tech From Adversaries
The U.S. Department of Justice (DoJ) and the Department of Commerce launched a “Disruptive Technology Strike Force” to investigate and prosecute criminal violations of U.S. export control laws. The aim is to prevent foreign actors from obtaining potentially sensitive technologies, including semiconductors. The strike force will bring together government experts, ...
Read More
Unpatched Vulnerabilities Hamper IT Security Efforts
Executive leadership teams are overlooking critical gaps in vulnerability management within organizations, despite a series of high-profile breaches, according to an Action1 survey of 804 IT professionals. The study revealed that, on average, 20% of endpoints remain continuously unpatched due to laptop shutdowns or update errors, and 30% of organizations ...
Read More
Business Email Compromise Threats Soar Past Phishing Risks
The risk of business email compromise (BEC) is increasing annually and is estimated to be twice as severe as the overall threat of phishing, according to an Osterman Research/IronScales survey of 249 U.S.-based IT and security professionals. In the past 12 months, more than 93% of organizations encountered one or ...
Read More
Phishing, Brute Force Attacks Rise in Expanded Threat Landscape
Phishing attacks and brute force attacks are on the rise as cybercriminals evolve their attacks to mobile and personal communication channels, according to a report from SaaS Alerts. On average, there were approximately 40,000 brute attacks daily and 53% of all attempted unauthorized logins originated from China, Vietnam, India, Brazil ...
Read More
Weak Passwords Offer Easy Access to Enterprise Networks
Poor password practices continue to put businesses at risk, with nearly 90% of passwords used in successful attacks consisting of 12 characters or less, indicating additional security measures are required to protect access to sensitive data. These were among the results of a Specops Software report analyzing more than 800 ...
Read More
Cybersecurity Leaders Stressed Over Email Security
Email is the most relied-on means of communication for businesses, but it also poses a significant risk due to the combined threats of inbound phishing attacks, human error and data exfiltration leading to outbound security incidents. A report from Egress found 92% of organizations fell victim to successful phishing attacks ...
Read More
Security Professionals Battle Burnout as Threat Landscape Evolves
A surge of cybersecurity incidents and a general feeling of work overload is leading to widespread burnout among IT security professionals, two surveys indicated. A Cynet survey of chief information security officers (CISOs) of small to midsize businesses found nearly two-thirds (65%) said their ability to protect their organization is ...
Read More
Lockbit Ransomware Dominant Even as Overall Attack Rates Fall
With victims from 23 countries, Lockbit continues to be the most prolific ransomware group in the early months of 2023, even as an 11% decrease in ransomware victims was reported in January. These were among the findings from GuidePoint Security’s monthly ransomware threat report, which found the total number of ...
Read More
Adaptable ‘Swiss Army Knife’ Malware a Growing Threat
There is a worrying rise in multipurpose malware, which can perform a variety of malicious actions and is adept at evasion, lateral movement and data encryption. These were among the findings of a report from Picus, a security company specializing in simulating the attacks of cybercriminal gangs, which analyzed more ...
Read More
