Security News
Risk Strategies is to roll out CyberCube's Broking Manager, the cyber risks analytics platform for insurance intermediaries. Founded in 1997, Risk Strategies is a leading specialty insurance broker and risk management consultancy.
With increasing dependence on third parties in today's interconnected world, vendor security risk assessments are more essential than ever. Failing to do them may result in hefty regulatory fines, legal fees, lost business and reputational damage.
The last 12 months has seen emerging types of extortion attempts on the part of ransomware operators. Some ransomware operators, such as the SunCrypt gang, are mounting follow-on denial-of-service attacks to put the screws to victims.
Cybersecurity failure is a "Clear and present danger" and critical global threat, yet responses from board directors have been fragmented, risks not fully understood, and collaboration between industries limited, according to a WEF report. The report reveals that boards of directors need to play a more active role in protecting their organization from cyber risks - and provides a solution to this fragmentation.
Verton goes on to mention something even more troubling, "Half of the respondents reported they have a lack of confidence in their ability to communicate and report the financial impacts of cyber risks, with a quarter saying they do not have a cyber risk quantification technology deployed at their company." Mark Tattersall, vice president of product management at LogicGate, in his blog The Business Case for Risk Quantification, does an excellent job of defining cyber risk quantification.
With the addition of Redscan and its extended detection and response enabled security operations center platform, Kroll expands its Kroll Responder capabilities to support a wider array of cloud and on-premise telemetry sources. Redscan will join Kroll under the leadership of Andrew Beckett, Managing Director and Head of the EMEA Cyber Risk practice, and Marc Brawner, Managing Director and Global Head of Managed Services.
Manufacturing is particularly vulnerable to attacks through these apps, with 70 percent of applications having at least one serious vulnerability open over the previous 12 months, researchers found. That's according to a report from app-security firm WhiteHat Security, "AppSec Stats Flash Volume 3," which outlines how the increased prevalence of applications that are exposed to the internet through web, mobile and API-based interfaces has increased the attack surface and thus the security risk for organizations and their supply chains across the board.
In its 10th annual Risk Barometer, Allianz found that cyber incidents ranked third in a list of the most important global business risks for the upcoming year, coming in second behind risks stemming from the pandemic itself. A recent survey of 100 senior security professionals found that 70% of respondents have received pressure to produce cyber risk quantification for their business.
Election systems in the U.S. are vulnerable to cyber intrusions similar to the one that hit federal agencies and numerous businesses last year and remain a potential target for foreign hacking, according to a report released Wednesday. The report by the Center for Internet Security, a nonprofit that partners with the federal government on election security initiatives, focuses on how hardware and software components can provide potential entryways for hackers.
Giving remote access directly to the engineering workstation for the control system increases cybersecurity risk for an industrial company. There will still be cases where you may want to grant remote access to an engineer to deal with an emergency situation and then revoke the access once the work is done, but if you can limit this access and enable staff to complete their routine work while reducing direct access to the control system, you can minimize the risk of cybersecurity events that could cause safety and environmental incidents.