You can’t prevent a zero-day attack, but you can be ready to respond to one. When it comes to zero-day threats, the best defense is definitely a good offense! Zero-day attacks exploit a vulnerability discovered in software that developers haven’t had a chance to fix (a deeper explanation here). Part of what makes these attacks …
Until now, one of the easiest ways to spot a phishing email has been spelling or grammatical errors — but ChatGPT has changed all that. With the popular AI-driven chatbot spinning out prose faster than you can say “write my term paper,” everyone now needs to be suspicious of even the most well-written emails. ChatGPT’s ability …
The reasons cyber insurance policies are harder to get and cost much more this year are many, but the bottom line is this: You can take specific actions to better protect your company from cyber risk which, in turn, will get you a better cyber insurance policy and premium. The results of the cyber insurance …
EDR, or endpoint detection and response, is a buzzword for a reason. EDR combines artificial intelligence (AI), next-gen antivirus, and other technologies into a single, integrated cybersecurity solution that’s a game-changer in today’s threat environment. It detects and contains known and unknown security threats originating from any endpoint connected to your network and blocks the threats …
Your employees need to stay in compliance regardless of where they’re working. When employees Work From Home (WFH) or Work From Anywhere (WFA), the risk to your systems increases — breaches, malware, ransomware, device and network access, social engineering, the temptation to use workarounds, and other threats are more likely when people work away from …
There has been a lot of news and some speculation about the ransomware attack on the Kaseya VSA software. Here’s what’s happened so far. Cybercriminals exploited several vulnerabilities on Kaseya’s VSA on-premises product to attempt to install ransomware onto computers and servers managed by the Kaseya VSA. IT departments and MSPs use the VSA software …
More risk means tighter qualifications and higher premiums when it comes to insurance — cyber insurance is no different. The past few years have seen enormous increases in cybercrime and, not surprisingly, skyrocketing claims. “Policyholders can expect 20% to 50% rate increases for cyber coverage throughout 2021 as trends that began last year continue at …
(UPDATED 5/12/21) Ransomware is a gold mine for cybercriminals. It’s available on the dark web as-a-service, most businesses aren’t fully prepared to defend against it, and it can be monetized beyond the ransom demand by selling stolen data and using “name and shame” schemes. It’s no wonder we’re seeing an enormous spike — criminals are …
We posed a series of questions to Leapfrog Services CTO Emmett Hawkins about what companies should do to improve their security posture after the SolarWinds hack. To recap what happened, late in 2020, a leading cybersecurity company named FireEye discovered it had been hacked and identified SolarWinds network-monitoring software as the source of the hack. …
(UPDATED) One of the most important things we’ve learned from the SolarWinds hack is organizations need to include all software and apps in their inventories of third-party vendors. Historically, third-party vendors have been a primary risk when it comes to data breaches — they’re often the weakest link in the chain of protection. Third-party vendors …
