Security News > 2023 > February > Week in review: Rail transport cybersecurity, “verified” OAuth apps used to infiltrate organizations
Mounting cybersecurity pressure is creating headaches in railway boardroomsIn this Help Net Security interview, Dimitri van Zantvliet is the Cybersecurity Director/CISO of Dutch Railways, and co-chair to the Dutch and European Rail ISAC, talks about cyber attacks on railway systems, build a practical cybersecurity approach, as well as cyber legislation.
Attackers used malicious "Verified" OAuth apps to infiltrate organizations' O365 email accountsMalicious third-party OAuth apps with an evident "Publisher identity verified" badge have been used by unknown attackers to target organizations in the UK and Ireland, Microsoft has shared.
How organizations can keep themselves secure whilst cutting IT spendingIt is the immediate natural reaction of most organizations to cut costs during an economic downturn.
Is President Biden's National Cybersecurity Strategy a good idea?In this Help Net Security video, Kurtis Minder, CEO of GroupSense, discusses President Biden's National Cybersecurity Strategy, designed to take the nation's cybersecurity posture to the next level.
50% of organizations have indirect relationships with 200+ breached fourth-party vendors98 percent of organizations have vendor relationships with at least one third-party that has experienced a breach in the last two years, according to SecurityScorecard and The Cyentia Institute.
Budget constraints force cybersecurity teams to do more with less49% of organizations have sufficient budget to fully meet their current cybersecurity needs, and 11% can, at best, protect only their most critical assets, according to a survey by the Neustar International Security Council.