Tag: cybersecurity
Cybersecurity skills gap continues to widen even as ranks swell
The (ISC)2 association of cybersecurity professionals estimates there are now 4.7 million cybersecurity professionals being employed around the world, making for an 11.1 percent increase year-over-year for a total of more than 464,000 additional jobs. At the same time, (ISC)2...
The value of holiday shopping user training
Once the calendar turns to November, people begin eyeing the dwindling days until Christmas. And with that sandglass motion of the calendar comes shopping, much of it being online. Studies about shopping, work, and cybersecurity risks are not plentiful, but...
6 Cybersecurity conversation starters
For MSPs and VARs trying to expand the reach of their services with existing clients, initiating a cybersecurity conversation around the need for solutions and services can be challenging. This is often because clients believe that their cybersecurity needs are...
Tech Time Warp: FTC Takes First Action Against Phishing
“See Yourself in Cyber” is the theme of the 2022 Cybersecurity Awareness Month, encouraging computer users to recognize their own power to detect and protect themselves from cybercrime. Few of us can say that we’ve never been tripped up by...
Make the most of Cybersecurity Awareness Month
Since 2004, October has been recognized by the United States government as Cybersecurity Awareness Month (CAM). You can read the most recent presidential proclamation of CAM here. For those of us whose roles require us to be aware of cybersecurity year-round,...
Ride-sharing app Uber hacked via social engineering scheme
Last month, the popular ride-sharing app Uber announced a cybersecurity incident that affected a variety of company accounts. The breach reportedly originated within Uber’s internal Slack communication channel after a hacker tricked an employee into sharing their login credentials. Those...
Cybersecurity Threat Advisory: New Microsoft Exchange Server zero-day vulnerability
Researchers from GTSC found a new zero-day vulnerability for Microsoft Exchange Server in the wild. Upon successful exploitation, threat actors can perform RCE (Remote Code Execution) via a backdoor onto the compromised system. GTSC has released a report outlining the...
Tech Time Warp: Cybersecurity Awareness Month turns 18
Cybersecurity is finally of age—as an awareness month, anyway. Oct. 1 marks the start of the 18th annual Cybersecurity Awareness Month organized by the Cybersecurity and Infrastructure Security Agency (CISA) and the National Cybersecurity Alliance (NCA).
Cybersecurity Threat Advisory: Sophos Firewall critical vulnerability
Sophos has identified a remote code execution vulnerability tracked as CVE-2022-3236. This vulnerability affects the User Portal and Webadmin components of Sophos Firewalls. Upon a successful exploitation, a threat actor can gain root privileges and deploy a ransomware attack. Barracuda...
Cloud security incidents on the rise
As more workloads are deployed in the cloud, it’s become increasingly apparent that most organizations are struggling with security. A recent survey of 400 cloud engineering and security practitioners and leaders by the market research firm, Propeller Insights on behalf...
