Insights

"Microsoft Corp. today released software updates to plug four security holes that attackers have been using to plunder email communications at companies that use its Exchange Server products. The company says all four flaws are being actively exploited as part of a complex attack chain deployed by a previously unidentified Chinese cyber espionage group." - Krebs This vulnerability is remotely exploitable and does not require authentication of any kind, nor does it require any special knowledge or access to a target environment. The attacker only needs to know the server running Exchange and the account from which they want to extract e-mail. "Hafnium primarily targets entities in the United States across a number of industry sectors, including infectious disease researchers, law firms, higher education institutions, defense contractors, policy think tanks, and NGOs," Microsoft said. "HAFNIUM has previously compromised victims by exploiting vulnerabilities in internet-facing servers. Once they've gained access to…

The healthcare industry has been bombarded with concurrent cyber threats over the last 12 months as they are on the front lines of the COVID response. Caregivers have faced many challenges during this period, including workforce shortages, overcrowded facilities, and the lack of personal protective equipment (PPE) to name a few. Ransomware however, poses the greatest cyber security threat facing the healthcare industry and caused several directly related deaths during this pandemic. In a report released by the CTI League earlier today, many points of interest have been covered in detail. In this article, we'll cover some of the key insights and you can read the full report below. What is the CTI League? The CTI League is a collective of cyber security professionals who work together with law enforcement organizations to identify and collect CTI (Cyber Threat Intelligence) to prevent ransomware from gaining access. Within the CTI League, there's…

Milner Ignites is an end-to-end virtual conference with technology booths, exclusive networking opportunities, and keynote presentations on how to reignite and protect your business from the latest security threats. Breaches have become a cost of doing business; cybersecurity can no longer be an afterthought in any business sector. Whether you are a senior executive or tech-savvy director, this is the ideal setting to start your business transformation and accelerate your journey in 2021. Engage and connect with industry experts and leaders through a fully interactive virtual conference.

We believe effective data security starts with awareness, training, and risk assessment. Today's world - often referred to as the "information age"- has seen people generate, store and exchange information at an unparalleled rate of frequency and volume. In light of the rapid expansion of remote working: How has this conversation changed? Are your employees exposed to greater risks by working from anywhere. How can organizations stay vigilant? Cyber experts, Todd Larson from Sentinel Benefits and Patrick Kelley from Critical Path Security, will answer crucial questions like: What are the new risks as firms allow their employees to work remotely? What are the best practices for onboarding people securely in a virtual world? How are the "bad guys" looking to take advantage of people during the pandemic? Lisa Vassallo, People & Culture Generalist from Sentinel Benefits, will be your moderator for this lively discussion about cybersecurity in the world of COVID-19.