January 15, 2019 BBC Email Scam Spoofs Broadcaster’s Site to Generate Bitcoin 2 min read - Researchers identified a new email scam using seemingly legitimate BBC News webpages to reroute user clicks and generate bitcoin.
January 8, 2019 NRSMiner Crypto-Mining Malware Infects Asian Devices With the Help of EternalBlue Exploit 2 min read - Security researchers report that the newest version of NRSMiner crypto-mining malware is causing problems for companies that haven't patched the EternalBlue exploit.
August 23, 2018 Ramnit Infects More Than 100,000 Machines in Two Months 2 min read - A new campaign involving the Ramnit botnet that infected 100,000 computers over a two-month period may foreshadow an even larger attack, researchers warn.
Risk Management August 13, 2018 Lessons From the ISO/IEC 27005:2018 Security Risk Management Guidelines 3 min read - The International Standards Organization (ISO) recently released an updated version of its security risk-management guidelines, ISO/IEC 27005:2018. Here are the key lessons.
Threat Intelligence August 9, 2018 How a Cyberattack Framework Can Help Reduce Risk at All Levels, Part 4 7 min read - Even after a successful attack, security teams can still minimize the financial and reputational damage associated with a breach by following the IBM X-Force cyberattack framework.
Threat Intelligence August 1, 2018 How a Cyberattack Framework Can Help Reduce Risk at All Levels, Part 3 6 min read - An attacker who gains access won't necessarily walk away with an organization's proprietary data. Here's how a cyberattack framework can help you subvert an attacker already in a network.
Incident Response July 25, 2018 How a Cyberattack Framework Can Help Reduce Risk at All Levels, Part 2 7 min read - In the external reconnaissance and launch attack phases of the X-Force IRIS cyberattack preparation framework, threat actors look for vulnerabilities and tailor their attacks to exploit them.
Incident Response July 18, 2018 How the IBM X-Force IRIS Cyberattack Framework Helps Security Teams Reduce Risk at All Levels, Part 1 5 min read - The IBM X-Force IRIS cyberattack preparation and execution frameworks aim to help security teams predict threat actors' motives and tactics and communicate security intelligence more clearly.
Risk Management May 30, 2018 The Compliance Crisis: A Compliance Officer Faces an Outdated Risk Management Framework 5 min read - Follow along with risk and compliance officer Frank Roth as he endeavors to fill in the gaps of an outdated (and incomplete) risk management framework in his new role at a utility company.
Risk Management April 10, 2018 10 Takeaways From the ISO 31000:2018 Risk Management Guidelines 5 min read - The International Standards Organization (ISO) released an updated version of its risk management guidelines to help security leaders engage top leadership in cyber risk decision-making.