Security News
A new report from network software company Untangle examines some of the security challenges faced by SMBs and includes advice on how to build an effective security posture. A second security challenge faced by SMBs are employees who don't follow the proper security guidelines.
Even with improved technology to reduce threats, the human factor is still a significant concern; one single misstep by an employee can cause a breach that leads to a major security incident. To achieve a truly effective security posture, SMBs must put systems in place to minimize human error that can turn an unintentional mistake into a security disaster.
Mayor Pete Buttigieg's former CISO and Splunk security advisor Mick Baccio explains the cybersecurity best practices he learned from protecting a presidential candidate's campaign. Dan Patterson, a senior producer for CNET and CBS News, spoke with Mick Baccio, former CISO of the Pete Buttigieg campaign, and now a security advisor for Splunk, about keeping a campaign safe from cyberattacks.
Mayor Pete Buttigieg's former CISO and Splunk security advisor Mick Baccio explains the cybersecurity best practices he learned from protecting a presidential candidate's campaign.
The Orbi Pro WiFi 6 Tri-band Mesh System is an industry leading tri-band WiFi 6 multi-node mesh system designed to grow with small businesses and home offices as the need to expand their area of network coverage increases. Featuring the latest WiFi data security standard, WPA3, along with 4 SSIDs and VLAN support, the Orbi Pro WiFi 6 Mesh System provides a secure network while also isolating connections for separate activities, making it the ideal solution for today's work from home paradigm.
"It's essential to comprehensively monitor an organization's critical systems, regardless of the size of the business," said Rob Scott, president and CEO at Cygilant. "Risks are constantly increasing - while financial and staffing resources are decreasing. This is why a solution that teams LogPoint and Cygilant can make a difference."
Cisco has patched a cross-site scripting vulnerability in two VPN routers it sells to small businesses and branch offices. By default, the management feature is disabled for remote users, though it is enabled for people on the same LAN. "A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive browser-based information," Cisco explained in its advisory yesterday.
The increasing number of sophisticated cyber threats will lead to a rise in demand for Managed Detection and Response solutions from small and medium businesses. "MDR providers offer organizations the technology, process, and people to enable the proactive monitoring of their customer security environment and 24/7 threat detection to help mitigate security breaches, even more so during COVID-19.".
One of the vulnerabilities that Microsoft addressed on June 2020 Patch Tuesday is a Server Message Block protocol bug that could allow an attacker to leak kernel memory remotely, without authentication. Called SMBleed and tracked as CVE-2020-1206, the vulnerability could be chained with SMBGhost, a flaw addressed in March 2020, to achieve pre-authentication remote code execution, security researchers with ZecOps reveal.
Despite a quarter of respondents saying they could recover data lost in a disaster in under 10 minutes and 30% in under an hour, 16% confess that they don't know their RTO, or recovery time objective, which is an important measure that shows how quickly an organization can bounce back from a data loss. "Make no mistake," Reeder said, "If a business does not have a disaster recovery solution in place, or at the very least a solution to back up its data, there is no way it can get the data back from a data loss event."