Security Magazine

The ethical issues that exist around the wake of discovered security vulnerabilities are vast and murky. Far too often, the conversation about how and when to disclose security weaknesses shifts from a dialogue to a one-way monologue. What’s a security leader to do?

5G, as often happens with new technologies, will likely introduce both digital and business revolution along with a plethora of new threat vectors. In particular with the exposure of new connected devices, industries and services, and sensitive assets will undoubtedly be affected by new cyber threat agents; the EU, however, is ready to mitigate these potential threats.

The fragility of supply chain security in many ways, rests on the shipping container. The incident in the Suez Canal has shed light on vulnerabilities and complexities within the supply chain.

One of many consequences of the COVID-19 pandemic is an increase in cybersecurity risks and in the complexity of implementing effective security to protect organizational information and computing infrastructure. As with pre-COVID security threats, well-proven cybersecurity strategies based on user and device authentication remain effective, and they now are more important than ever.

If security forces are going to perform more functions, which they should…they need additional training. More training for your security teams is an expensive proposition, but an all-important one. 

Disaster recovery as a service can potentially save organizations money and resources while ensuring they’re prepared for an incident that could potentially put them out of business. But what is DraaS, how can it be implemented at your organization and what are the benefits?

Repurposing video surveillance and artificial intelligence and analytics traditionally used for security initiatives within the healthcare space can increase positive patient interactions and bring additional value to your current electronic physical security solutions.

Just like every company in the business world, cybercriminals are looking to boost their sales. With ransomware, they’ve found a way to force victims to pay. And in their quest, cyber attackers are borrowing a playbook from sales teams in legitimate businesses.

To determine whether implementing gaming techniques for security awareness training at your organization makes sense, it is important to first understand what the ultimate goal of the security awareness course is. In many cases, gaming techniques can help employees overcome initial resistance to learning.

Take a look at how 170 years of fire and life safety continue to guide present-day solutions and preparedness.

Learn whether your organization has a false decline problem and change the way you conduct fraud prevention to increase sales.

Learn to integrate robust defenses and protect your enterprise’s exterior openings, infrastructure, property and lives with these door solutions.

I have been in the cybersecurity industry for more than 20 years now. I have founded, operated, and exited several cybersecurity startups. I also advised, invested in, and even acquired a handful. Despite successful outcomes, my experience has left me perhaps a little jaded. Are we winning the battle? When I log into my various web accounts, I am so often reminded that my password had been stolen, sometimes alongside with my personal information. Even major financial institutions and government agencies have suffered a similar fate. Cybersecurity is broken, and here is why.

Though the pressures on cybersecurity professionals and leaders aren’t likely to go away anytime soon, there are ways to curb the pressure and find a healthier, safer, and more effective work–life balance. Here are five tips to help your team avoid burnout.

The author discusses his company’s first-hand account of ransomware that hit the organization and how they navigated this difficult situation that many enterprises have found themselves in.

Americans’ uncertainty about their personal safety is keeping them at home. How can schools, businesses and other public institutions start to regain their trust?

The coronavirus pandemic has sparked a new round of digital transformation. But in many cases, the rapid pace of digital acceleration has enlarged the digital footprint of both businesses and consumers beyond the capacity of our cybersecurity infrastructure to keep up. The scary reality is that the business impact of COVID-19 may be creating the perfect storm for a cybercrime pandemic; digital citizens will have to act aggressively to secure their data before it’s too late.

Without effective cybersecurity protection, any connected medical device – including infusion pumps, pacemakers, smart pens, vital signs monitors, and more – is at risk of attack, whether it is connected to a hospital network or is one of the millions of distributed devices not connected to any network. This jeopardizes the lives of the millions of patients who depend on them.

The battle for G4S, which might reach fruition this month, has been waged over a period of nearly three months and has numerous implications going forward for the companies involved and the guarding industry on the whole. If the acquisition moves forward, it would effectively cement Allied as, by far, the largest global security company. Based on revenue, Allied would be approximately 40% larger than its nearest competitor, Securitas. The approximate revenues for Allied from the G4S acquisition would total more than $18 billion, including any non-core services.  

When it comes to running an information security program, barriers to success are predictable. Many are obvious, such as a lack of budget and minimal buy-in, but others are not so clear and it’s often the small things that add up to create real security hurdles.

Companies, employees and consumers are under more pressure than ever to remain increasingly vigilant to social engineering attacks, phishing scams, malware and fraud.

A cold reality in today’s enterprise is that ransomware is looming and threatening organizations constantly – like a lion behind the tall grass waiting patiently for its prey. It has unequivocally become the biggest threat to an enterprise alongside malware and phishing, even more so than a natural disaster or hardware failure, or a zero-day attack.

Take a look back at 2020 in ransomware. What were the key targets and what can security leaders learn from them?

Here are practical tools small- to medium-sized businesses can implement to improve and respond to cybersecurity.

The answer is yes, but the how may be different than you think.

As Jewish families around the world prepared for the High Holidays last month, the most significant days of the Jewish calendar, synagogues prepared to facilitate services under unprecedented circumstances due to the coronavirus pandemic. For those of us that work on providing security for the Jewish community, it would become yet another time of heightened vigilance.

Criminals are leveraging elevated interest in COVID-19 to send emails to unsuspecting people to infect computers with ransomware, malware or other computer viruses. And why not? According to Forbes, the COVID-19 crisis has turned the U.S. workforce into a work-from-home army, giving cybercriminals new, less secure, access points for cyber viruses and phishing attacks, revealing vulnerabilities in cybersecurity strategies for the coronavirus crisis. And since there’s a tremendous curiosity for coronavirus information — people are more likely to click without checking the credibility of the source.

UK Police just announced that crime has fallen by 28% over lockdown, in fact from 12th April there has been a 37% drop in burglaries. As well as the financial worries lockdown prompted, we were also worried about our office and storage spaces, as we didn’t know how long they would be left unattended. Of course, working in security and safety we made sure specific measures were in place to help prevent vandalism, theft, arson or property damage. However, it appears that many businesses are left susceptible to such crimes, by not having many or sometimes any security measures in place.

While we may not all have time to get in a round at the golf course while bringing business back up to speed, here are some lessons golf can teach us about preventing burnout, a subject that particularly affects so many security professionals. 

To get buy in from the entire organization on your role as a security professional, share these basic elements of an effective cybersecurity strategy with the rest of the C-suite.