Security News > 2022

Organisations have work to do if they want to attract and retain diverse talent in their security operations teams, according to SOC.OS and Sapio Research. 23% or respondents said they're struggling to incentivise, motivate and retain their SecOps teams.

Baby Boomers play a critical role in accelerating zero trust security frameworks due to experience in integrating legacy technologies into cloud and hybrid IT environments, an Appgate study reveals. The study, based on desk research and in-depth focus groups conducted by prominent intergenerational issues author and speaker Henry Rose Lee, examines differences between Baby Boomers, Gen-Xers and Millennials and ways to harness individual strengths to develop more effective cybersecurity strategies.

Millions of home broadband Wi-Fi routers in the UK could be at risk because many internet users do not take basic security precautions that could protect them from online threats, a research from Broadband Genie has found. In a survey of 1,320 broadband users, it was discovered that 88% have never updated their router firmware and 84% have never changed their router admin password.

The global mobile device management market size to grow from $5.5 billion in 2021 to $20.4 billion by 2026, at a Compound Annual Growth Rate of 29.8% during the forecast period, according to MarketsandMarkets. Mobile device management solutions allow IT teams and admins to control and distribute security policies to mobile devices accessing sensitive corporate data in their organizations, ensuring the corporate network is secure.

A comprehensive third-party security program can align your vendor's security with your internal security controls and risk appetite. The right third-party security management platform can be a smart way to get your program off the ground or automate the one you already have in place.

The government of Ukraine on Sunday formally accused Russia of masterminding the attacks that targeted websites of public institutions and government agencies this past week. "All the evidence points to the fact that Russia is behind the cyber attack," the Ministry of Digital Transformation said in a statement.

A data center migration from eNom web hosting provider caused unexpected domain resolution problems that are expected to last for a few hours. The company said that it received reports of domains using eNom nameservers that were failing to resolve and acknowledged the problem.

A software bug introduced in Apple Safari 15's implementation of the IndexedDB API could be abused by a malicious website to track users' online activity in the web browser and worse, even reveal their identity. That's not the case with how Safari handles the IndexedDB API in Safari across iOS, iPadOS, and macOS. "In Safari 15 on macOS, and in all browsers on iOS and iPadOS 15, the IndexedDB API is violating the same-origin policy," Martin Bajanik said in a write-up.

Microsoft is warning of destructive data-wiping malware disguised as ransomware being used in attacks against multiple organizations in Ukraine. Starting January 13th, Microsoft detected the new attacks that combined a destructive MBRLocker with a data-corrupting malware used to destroy the victim's data intentionally.

Thieves operating for the North Korean government made off with almost $400m in digicash last year in a concerted attack to steal and launder as much currency as they could. Bitcoin used to be a top target but Ether is now the most stolen currency, say the researchers, accounting for 58 per cent of the funds filched.