Security News > 2021

To get a sense of the real impact of the pandemic on cyber security, we conducted a wide-ranging survey with UK IT decision makers on their expectations and priorities for the next 12 months. More than half of the CISOs and other IT security decision makers responding to our research indicated that EDR was a purchasing priority.

Companies with small security teams, generally SMEs, are facing a number of unique challenges, placing these organizations at greater risk than their larger enterprise counterparts, according to Cynet. In this survey of 200 CISOs at SMEs with five or fewer security staff members and cybersecurity budgets of $1 million or less, it was found that a majority of these organizations were overwhelmed by the endless volley of cyber attacks.

A research from Rensselaer Polytechnic Institute shows that artificial intelligence can help form accurate news assessments - but only when a news story is first emerging. When a topic is so new that people have not had time to form an opinion, tailored AI-generated advice can lead readers to make better judgments regarding the legitimacy of news articles.

An evolving phishing campaign observed at least since May 2020 has been found to target high-ranking company executives across manufacturing, real estate, finance, government, and technological sectors with the goal of obtaining sensitive information. The messages also include an embedded link to retain the same password that, when clicked, redirects users to a phishing page for credential harvesting.

North Korea's hackers homed in on specific infosec researchers and infected their systems with a backdoor after luring them to a suspicious website, Google revealed on Monday. "The researchers have followed a link on Twitter to a write-up hosted on blog.br0vvnn[.]io, and shortly thereafter, a malicious service was installed on the researcher's system and an in-memory backdoor would begin beaconing to an actor-owned command and control server," said Googler Adam Weidemann.

A Canalys forecast predicts cybersecurity investments will increase 10% worldwide in the best-case scenario in 2021. 2 billion in 2021, covering shipments of endpoint security, network security, web and email security, data security, vulnerability and security analytics, and identity access management.

Since 1997, the Supreme Court has used the metaphor of the free market of ideas to define the internet, thus addressing the regulation of the net as a matter of freedom of speech. Internet regulation should be framed not as a matter of freedom of speech, but as a matter of freedom to conduct a business, they argue.

"Don't be afraid to get involved, to ask questions, or to highlight things you think are wrong. You do not have to be a 10-year veteran who can read RFCs backwards while balancing on your head to have a valid insight, and to make a genuine contribution to the security of the wider internet community," says Martin White, CIS Benchmarks Editor & Author Community Member for 14 years. CIS is always looking for volunteers to join and help develop the CIS Benchmarks.

A North Korean government-backed hacking group targets security researchers who focus on vulnerability and exploit development via social networks, disclosed Google tonight. According to a report released tonight by Google's Threat Analysis Group, a North Korean government-backed hacking group uses social networks to target security researchers and infect their computers with a custom backdoor malware.

Most companies with small security teams face the same issues. Many of these companies turn to virtual CISOs to provide security expertise and guidance.