Security News

The Global Threat Landscape Report indicates a drastic rise in sophisticated cyberattacks targeting digital infrastructures, organizations, and individuals in 2021. Organizations struggle to address these threats due to their resource sophistication and their lack of understanding of evolving threat landscapes.

Research released Wednesday by security provider Armis looks at the ways that hospitals and patients are vulnerable to cyber threats. A full 85% of the healthcare respondents said they've seen an increase in cyber risk over the past 12 months.

Researchers discovered new Android spyware that provides similar capabilities to NSO Group's Pegasus controversial software. PhoneSpy disguises itself as a legitimate application and gives attackers complete access to data stored on a mobile device and grants full control over the targeted device, according to a Zimperium zLabs report published Wednesday.

The report isn't just one researcher's work, or even one department's work, but the combined effort of SophosLabs, Sophos Managed Threat Response, Sophos Rapid Response, and Sophos Artificial Intelligence. Don't take Joe's word for it read the report and see how we live up to those three principles!

Continuous software development results in the frequent release of new API versions. API sprawl introduces significant operational and security challenges.

Banking malware threats are sharply increasing as cybercriminals target the rising popularity of mobile banking on smartphones, with plots aimed at stealing personal banking credentials and credit card information, a Nokia report reveals. The report, based on data aggregated from network traffic monitored on more than 200 million devices globally, showed an 80%, year-on-year increase in the first half of the year in the number of new banking trojans, which also try to steal SMS messages containing one-time passwords.

Business leaders and managers who have integrated SIEMs to detect, analyze and respond to organizational threats - both external and internal - are already one step ahead. SIEM tools, when integrated with other layers of security, can help flag anomalous behavior and potential issues in real time. An SIEM could immediately handle a DoS attack or, at the very least, identify compromised devices.

The 9th edition of the ENISA Threat Landscape report released by the European Union Agency for Cybersecurity highlights the surge in cybercriminality motivated by monetization using ransomware or cryptojacking. EU Agency for Cybersecurity Executive Director, Juhan Lepassaar stated that "Given the prominence of ransomware, having the right threat intelligence at hand will help the whole cybersecurity community to develop the techniques needed to best prevent and respond to such type of attacks. Such an approach can only rally around the necessity now emphasized by the European Council conclusions to reinforce the fight against cybercrime and ransomware more specifically."

Modern cybercriminals know that choking off an organization's production data will often be enough to force it to the negotiating table, because recovering the data from backups will be simply too time consuming. So how do you set yourself and your fellow over-worked DBAs free from this unending day to day drudgery? Well, you can start by spinning up this upcoming webinar, Modern Backup and Recovery for Modern DBAs, on November 9 at 0900 PT. Our own Tim Phillips, never knowingly over-drudged, will be joined by Rubrik's Rafaela Martuchelli, who will be explaining exactly what modern backup and recovery tools look like.

We are seeing changes in which sectors are being targeted the most. In the latest FortiGuard Labs Global Threat Report, researchers found that the prevalence of ransomware in those two sectors was lower than managed security service providers, the automotive and manufacturing sectors, telecommunications, and government.