Light Dark
August 31, 2021 By Megan Crouse 3 min read
Security Services
CISO
Identity & Access
Incident Response

Ransomware catches people’s attention in part because it feeds on emotion. People click on links without looking at them first, and this remains one of the most common vectors for attack. While it may seem like the internet is filled with the same advice over and over again, even the most attentive person can slip up on a busy work day.

In our news roundup this week we have the rising costs of ransomware, how to avoid supply chain attacks (including covering the human element), and today’s social engineering. Check out our top advice and news from August.

Quick briefs: Top insights from August

2-Minute Read 🕒

5 ways to defend against supply chain cyberattacks

Supply chain attacks can sneak in to the best of code. Giving developers the power to prevent them (or act on them once a suspected attack might find a foothold in vulnerable code) requires having the right company culture. See how keeping this kind of attack top of mind can improve security by fostering a culture of open communication at the same time. Discover more ways to secure your software supply chain.

2-Minute Read 🕒

Spend wisely (not just more) to become cyber resilient

Sometimes, putting a little more money in ahead of time can save you dollars in the long run. Is there something in your life for which you’re willing to pay more to get a quality product, or because you know it will last a long time? The same can be true of future-proof cybersecurity tools. Whether it’s the decision to work inside- or out-of-house or what kind of tools to use, make sure you’re working smarter.

3-Minute Read 🕒

Ransomware costs expected to reach $265 billion by 2031

Every year, research company Cybersecurity Ventures produces a ransomware costs report. The 2021 edition places the cost of recovery from a successful ransomware attack at $20 billion. That’s based both on attackers aiming for higher takes and on an increasing number of attacks. What can employers do about it? Invest in awareness, know your tools and see more tips in this article.

Worth your while: In-depth coverage to sharpen your skills & tighten security

4-Minute Read 🕒

How number recycling threatens your privacy online

You may or may not have had cause to change your personal phone number at some time in your life. Or, you’ve worked in a job where you needed a work phone, then changed jobs and placed that phone in the hands of your former bosses. Phone companies recycle numbers and associate each one with its current SIM card, which attackers can use to their advantage. Maybe you’ve heard of SIM scams, where attackers lie about having lost a phone. See how this applies on an organizational scale and what employers can do about it.

3-Minute Read 🕒

A new directive for pipeline operators puts cybersecurity in the spotlight

In response to recent attacks, the United States Department of Homeland Security has provided a new security directive for pipeline operators. These cover a variety of requirements, including the hiring of a cybersecurity coordinator who is available 24/7 to the Transportation Security Administration and Cybersecurity and Infrastructure Security Agency 24/7. See what the government recommends for pipeline operators and what other infrastructure operators need to know in 2021.

3-Minute Read 🕒

Most digital attacks today involve social engineering

Everything always comes back to people. As the weak link in a cybersecurity fence, employees both make everything work and are a hot target for attackers. That’s why social engineering works. With social engineering being the most common type of attack found by Verizon Enterprise in 2021, employers would do well to watch out for them. Learn how to prevent social engineering attacks and what they look like today.

August’s expert insight: X-Force researchers uncover operational security errors plaguing Iranian threat group

IBM Security X-Force threat intelligence researchers have been keeping an eye on ITG18, a suspected Iranian threat group. That includes the discovery of led to the discovery of LittleLooter, a malicious custom Android backdoor that has not been previously linked to this threat actor. See what this means about the infrastructure and activity of the group today, as well as its scope and possible political motives related to attacking the Iranian reformist movement.

Want to keep up with today’s cybersecurity news and best practices? Watch this space for the Security Intelligence newsletter.

 |  |  |  |  | 
Megan Crouse
Freelance Writer and Editor

More from Security Services
October 12, 2023

How I got started: Attack surface management

4 min read - As the threat landscape multiplies in sophistication and complexity, new roles in cybersecurity are presenting themselves more frequently than ever before. For example, attack surface management. These cybersecurity professionals are responsible for identifying, mapping and securing all external digital assets an organization owns or is connected to. This includes servers, domains, cloud assets and any other digital points that could be exploited by cyber criminals. Their role involves continuously monitoring these assets for vulnerabilities, misconfigurations or other potential security risks…

October 6, 2023

X-Force uncovers global NetScaler Gateway credential harvesting campaign

6 min read - This post was made possible through the contributions of Bastien Lardy, Sebastiano Marinaccio and Ruben Castillo. In September of 2023, X-Force uncovered a campaign where attackers were exploiting the vulnerability identified in CVE-2023-3519 to attack unpatched NetScaler Gateways to insert a malicious script into the HTML content of the authentication web page to capture user credentials. The campaign is another example of increased interest from cyber criminals in credentials. The 2023 X-Force cloud threat report found that 67% of cloud-related…

October 5, 2023

Does your security program suffer from piecemeal detection and response?

4 min read - Piecemeal Detection and Response (PDR) can manifest in various ways. The most common symptoms of PDR include: Multiple security information and event management (SIEM) tools (e.g., one on-premise and one in the cloud) Spending too much time or energy on integrating detection systems An underperforming security orchestration, automation and response (SOAR) system Only capable of taking automated responses on the endpoint Anomaly detection in silos (e.g., network separate from identity) If any of these symptoms resonate with your organization, it's…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2024 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature