Cybersecurity

Okta employee data breached in third-party healthcare attack

Dive Brief: Nearly 5,000 current and former employees at Okta had their sensitive health information exposed by a cyberattack at Rightway Healthcare, a third-party vendor for the identity and access management provider, according to data breach notices filed Wednesday in California and Maine. The third-party breach did not impact Okta services, which remain secure, and […]

Cybersecurity

6 steps to accelerate cybersecurity incident response – Help Net Security

Modern security tools continue to improve in their ability to defend organizations’ networks and endpoints against cybercriminals. But the bad actors still occasionally find a way in. Security teams must be able to stop threats and restore normal operations as quickly as possible. That’s why it’s essential that these teams not only have the right […]

Cybersecurity

Ukraine cyber officials warn of a ‘surge’ in Smokeloader attacks on financial, government entities

Suspected Russian cybercriminals have increased their attacks against Ukrainian financial and government organizations using Smokeloader malware, according to Ukrainian cybersecurity officials. Since May of this year, the malware operators have targeted Ukrainian organizations with intense phishing attacks, primarily attempting to infiltrate their systems and steal sensitive information, according to research published Tuesday by Ukraine’s National […]

Cybersecurity

The double-edged sword of heightened regulation for financial services – Help Net Security

Financial services organizations are enticing targets for cybercriminals due to their significant wealth holdings, presenting abundant opportunities for monetary gain through extortion, theft, and fraud, according to Trustwave. In addition to the money itself, the financial services sector stores large volumes of sensitive data, including customer information, financial records, and intellectual property. “In a highly […]

Cybersecurity

Cyber resilience starts in the C-suite – Help Net Security

In many cases, senior executives/line-of-business leaders are minimally engaged in their company’s cyber preparedness initiatives — only 33% of CEOs or managing directors and 21% of other senior leaders are heavily involved, according to Commvault. According to the research, 52% of senior leaders have no involvement in their company’s cyber cases. In addition to a […]

Cybersecurity

How to go from collecting risk data to actually reducing risk? – Help Net Security

Organizations trying to cope with securing their expanding attack surfaces eventually find themselves at a crossroads: they need to move beyond finding risks to effectively mitigating risk. Making that transition starts with a shift from using “risks found” as the KPI to “risks remediated” as the true measure of success. That change shifts security team […]