Because of the nature of ransomware attacks and the mass numbers of workers at home, anti-malware vendor Emisoft believes we’re going to see a rise once work returns to normal.Ransomware is a numbers game: launch enough attacks and a percentage of them will return revenue back to you. This rings true regardless of whether attacks […]
Why People Don’t Learn (It’s Not Always Their Fault)
IT and security managers often fail to understand how well their employees actually absorb cybersecurity training, according to a survey from Mimecast and Forrester Consulting. The survey gathered responses from 120 senior IT and cybersecurity managers at companies in Australia, Hong Kong, New Zealand, and Singapore, as well as from 240 employees that worked within […]
Security Awareness is the Biggest Security Challenge for Remote Workforces
As the dust from enabling employees to work remotely has settles, new data from security vendor PulseSecure highlights where remote security has been – and still is – a challenge.COVID-19 has turned organizations upside-down, shifting priorities, budgets, and staffing – all in an effort to remain operational. But when making drastic changes to the way […]
What is the Right Password Policy?
What is the right password policy? Conventional password policies say you must have a password at least 8-12 characters long…16 characters or longer if it belongs to an elevated privileged account, contain letters, numbers, and symbols (making the password complex), and be changed every 90 days or less. That’s the password policy we‘ve been taught […]
It’s World Password Day 2020 – Is Your Organization Safe?
Today is World Password Day, a holiday created by Intel on the first Thursday of May to ensure everyone knows password best practices. “P@ssW0rd” has never been a safe password to use to protect your accounts… ever.There are best practices to keep in mind when creating passwords. Here are a few of our personal favorites:Keep […]
COVID-19 Security Hints & Tips Email Templates In 10 Additional Languages
KnowBe4’s Product Content team is happy to announce that their 9 COVID-19 Security Hints and Tips email templates are now available in 10 additional languages.The new emails are available in:German (DE-DE)French – Canada (FR-CA)French – France (FR-FR)Japanese (JP-JP)Dutch (NL-NL)Portuguese – Brazil (PT-BR)Spanish – Latin America (ES-LA)Spanish – Spain (ES-ES)Simplified Chinese (ZH-CN)Traditional Chinese (Hong Kong) (ZH-HK)These […]
Cybercriminals Lean Heavily on Social Engineering Tactics to Gain Access to Bank Accounts
A series of attack anecdotes shared by Brian Krebs shows how persistent and sophisticated scammers are in using social engineering tactics to gain access to their victim’s bank account details.It all starts with a bit of information about their next potential victim; using credit card records for sale on the dark web, scammers begin all […]
Fake Zoom Downloader is the Latest Method of Attack on Remote Workers
Riding on the coattails of the massive rise in popularity in the video conference solution, remote workers new to Zoom need to be wary of where they download the installer.We’ve written before about the various types of Zoom-related attacks that have sprouted up over the last two months. The latest chapter in this saga involves […]
It Starts with a Phish: Employee PII at Risk When Pipeline Development Outsourcer Falls Victim to Ransomware Attack
The latest example of a modern-day ransomware attack demonstrates how data encryption and ransom can no longer be the assume extent of an attack.Two weeks ago, outsourcing service provider ExecuPharm released a notice of data breach to their consumers. In it, ExecuPharm noted experiencing a ransomware attack in March of this year where “employees received […]
Can COVID-19 Related Data Breach Worries Stop Your Mergers Or Acquisitions?
The WSJ just reported that the new coronavirus has thrown the M&A dealmaking into disarray. They said: “cybersecurity experts say the workplace upheaval caused by the pandemic will complicate mergers and acquisitions when activity picks up.Countless employees are working remotely on networks that might be vulnerable to attack, while others with access to confidential data […]