Security News > 2022 > January

Insurers' use of predictive analytics to fight fraud has reached an all-time high, according to an insurance fraud technology study by the Coalition Against Insurance Fraud and SAS. The study reveals that 80% of insurers use predictive modeling to detect fraud, up from 55% in 2018. "The shifts we've seen since the 2018 study emphasize the increasingly sophisticated technologies needed to foil insurance fraudsters' criminal exploits," said David Hartley, Director of Insurance Solutions at SAS. "Predictive modeling is up 25%. Text mining has nearly doubled, jumping from 33% to 65% in three years. These findings prove that, even as COVID-19 has fueled rampant fraud, insurers are agilely stretching their advanced analytics capabilities to counter rapidly changing threats."

Aryaka published a report, revealing insights into global SD-WAN and SASE planning. In the context of network and security, trends include the Secure Access Service Edge, with 64% deploying or planning to deploy over the next year.

Worldwide spending on edge computing is expected to be $176 billion in 2022, an increase of 14.8% over 2021. Enterprise and service provider spending on hardware, software, and services for edge solutions is forecast to sustain this pace of growth through 2025 when spending will reach nearly $274 billion, according to the International Data Corporation Worldwide Edge Spending Guide.

The tech giant said the attacks manifested through accounts that were not secured using multi-factor authentication, thereby making it possible for the adversary to take advantage of the target's bring-your-own-device policy and introduce their own rogue devices using the pilfered credentials. "Stolen credentials were then leveraged in the second phase, in which attackers used compromised accounts to expand their foothold within the organization via lateral phishing as well as beyond the network via outbound spam."

Wazuh is a free and open source security platform that unifies XDR and SIEM capabilities, which not only enables companies to detect sophisticated threats, but can also help immensely in preventing data breaches and leaks from happening. Read on to find out more on how Wazuh can help with cybersecurity for businesses.

The Register broke the Meltdown story on January 2, 2018, as Intel and those who confidentially reported the security vulnerability were preparing to disclose them. To defend against Meltdown and Spectre, Intel and other affected vendors have had to add software and hardware mitigations that for some workloads make patched processors mildly to significantly slower.

A cyberespionage group with ties to North Korea has resurfaced with a stealthier variant of its remote access trojan called Konni to attack political institutions located in Russia and South Korea. "The authors are constantly making code improvements," Malwarebytes researcher Roberto Santos said.

A US Department of Defense staffer with top-secret clearance stole the identities of dozens of people from a work IT system to fraudulently apply for loans totaling nearly a quarter of a million dollars. Lee, who worked for Uncle Sam's Defense Contract Management Agency as an analyst, raided the organization's Microsoft SharePoint system for people's private data to pull off his greedy scheme.

An Israeli citizen who operated DeepDotWeb, a news site and review site for dark web sites, has received a sentence of 97 months in prison for money laundering and was ordered to forfeit $8,414,173. The DeepDotWeb site didn't host anything malicious or harmful but directly linked to various dark web marketplaces selling illegal goods.

An Israeli citizen who operated DeepDotWeb, a news site and review site for dark web sites, has received a sentence of 97 months in prison for money laundering and was ordered to forfeit $8,414,173. The DeepDotWeb site didn't host anything malicious or harmful but directly linked to various dark web marketplaces selling illegal goods.