In the modern world, businesses operate in an environment full of cyber threats. In this regard, cyber security management is more important than ever. Although conventional approaches are still relevant, new approaches are appearing to enhance the effectiveness of the protection against the constantly emerging  threats.

Law firms are prime targets for cyberattacks given their proprietary sensitive information, including client data, intellectual property, and confidential business transactions. Now more than ever, law firms must prioritize cybersecurity measures to protect their businesses and maintain the confidence of their client base.

In today’s digital age, businesses are dependent on the internet. From internal communication amongst employees to fielding queries from customers and processing payments and payroll, the web is a crucial part of conducting business in the 21st century.

As helpful as the internet is, it comes with numerous inherent risks. Cyber-attacks can result in sensitive customer data or trade secrets being stolen, not to mention financial losses and reputational damage. All businesses that use the internet, regardless of size, need to establish a cybersecurity program if they don’t already have one, and if they do, update and improve it on a regular basis.

Critical Nvidia Security Flaw Exposes Cloud AI Systems to Host Takeover

A stark warning from researchers at Wiz after discovering a TOCTOU (Time-of-check Time-of-Use) vulnerability that exposes enterprise cloud environments to code execution, information disclosure and data tampering attacks. Read More

CISA has released CISA Analysis: Fiscal Year 2023, Risk and Vulnerability Assessments, an analysis detailing the findings from the 143 Risk and Vulnerability Assessments (RVAs) conducted across multiple critical infrastructure sectors in fiscal year 2023 (FY23).

We all have memories that are forever etched in our minds, events that were life-changing and we can still vividly recall. I was 10 years old when JFK was assassinated and remember the day clearly. I can also tell you where I was and everything about the day 23 years later when Challenger exploded. 23 years after Challenger we faced September 11, and all of us can share where we were, how we heard about it, and what transpired in the following hours, days, and weeks.

National Public Data Published Its Own Passwords
New details are emerging about a breach at National Public Data (NPD), a consumer data broker that recently spilled hundreds of millions of Americans’ Social Security Numbers, addresses, and phone numbers online. KrebsOnSecurity has learned that another NPD data broker which shares access to the same consumer records inadvertently published the passwords to its back-end database in a file that was freely available from its homepage until today. Read More

Tech contractor exposes data of 4.6 million US voters
The databases, which lacked any password protection, included highly sensitive personal information such as full names, addresses, dates of birth, Social Security numbers, and driver’s license numbers. Read More

With smaller teams, older technology and fewer resources, small businesses face an increased risk of cyber attacks. In fact, 50% of cyber attacks target small businesses. Small businesses also have a more difficult time recovering from a cyber attack - 60% will close within six months following a cyber security incident. 

Here are some common tactics cyber criminals use, and ways to strengthen your business’ cyber security: 

Hackers leak documents stolen from Pentagon contractor Leidos
Leidos serves prominent clients including the US Department of Defense (DOD), the Department of Homeland Security (DHS), NASA, and various other US and foreign agencies. Read More