Four years since Trump's last term, the cyber picture looks - in many ways - markedly different. How will the incoming administration tackle Russian disinformation and cyber operations against NATO, rampant Chinese cyber espionage, and cybercriminals and ransomware continuing to disrupt businesses?
Derek Manky, chief security strategist and vice president for global threat intelligence at Fortinet, shares the importance of public-private partnerships in cybersecurity. There's a lot of vetted interest and mutual benefit in such partnerships, and the will to move forward is strong, he said.
Remote work is a critical part of the future of cybersecurity and many other industries. For those who continue to work remotely or in a hybrid model, the need for robust cybersecurity practices needs to be a priority. But one of the biggest obstacles to that is isolation.
Understanding business goals is key to aligning cybersecurity strategies, said Erik Hart, CISO at commercial real estate services firm Cushman & Wakefield. Hart stressed the importance of security leaders becoming solution finders who integrate cybersecurity with business operations.
Data is one of the most valuable assets in today's digital age. Cyberthreats come in many forms, such as phishing attacks, ransomware, data breaches and malware infections, and failing to protect your data can cause severe financial, reputational and operational damage.
Healthcare organizations often face obstacles in sharing cybersecurity information. Phil Englert and Errol Weiss from Health-ISAC advocate for shifting the focus from legal risks to business risks, improving incident response and building resilience through collaboration and transparency.
Companies historically responded to M&A reports with milquetoast statements about "not commenting on rumors or speculation," but aggressive clapbacks have become much more common. Increasingly, executives are willing to attract more publicity by publicly - and vocally - denying acquisition reports.
Most hospitals prioritize cybersecurity but often lack the necessary resources to comply with these goals. The question becomes not about the practices, but the potential barriers to implementation, according to John Riggi at the American Hospital Association.
According to Fortinet's latest Global Skills Gap Report, 90% of organizations experiencing a breach in the past year can partially attribute the incident to a lack of cyber skills. Fortinet's Rob Rashotte offers insight on the report and tips for tackling the skills shortage and minimizing enterprise risk.
What's the best strategy for exploiting a known vulnerability in ransomware to help victims decrypt their files for free? That question continues to recur as researchers discover such vulnerabilities and then must weigh whether or not to publicize the flaws, which tips off the ransomware operators.
More reasons to beware breathless reporting about a ransomware group's latest supposed victim: LockBit's claim to have breached the U.S. Federal Reserve Bank. Instead, the actual victim is Evolve Bancorp, which is currently dealing with an enforcement action by - wait for it - the Fed.
Never let ransomware become normalized. Businesses today are more likely that not to be hit by ransomware, but this doesn't mean we should ever let ransomware seem like a new normal, akin to death or taxes. We need expert business resilience and failover capabilities.
To obtain a leadership role, consistently show your commitment to the field, your willingness to help others and your ability to effectively communicate and solve problems. By doing so, you can build a reputation as a knowledgeable, proactive and reliable leader in cybersecurity.
The U.K. cyber sector has grown significantly, but cyberattacks continue to increase. Fostering collaboration among industry, startups and academia is critical to drive cybersecurity innovation, develop skills and strengthen cyber resilience, said Saj Huq, chief commercial officer at Plexal.
Multifactor authentication is a must-have security defense for repelling outright credential stuffing and password spraying attacks. But no defense is foolproof. Attackers have been refining their tactics for bypassing MFA, including using technology and trickery.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.