Researchers find 13 critical flaws in AMD’s Ryzen and Epyc chips

It’s high drama on the AMD front as researchers claim to have discovered “multiple critical security vulnerabilities and exploitable manufacturer backdoors inside AMD’s latest Epyc, Ryzen, Ryzen Pro, and Ryzen Mobile processors.” The researchers say that if attackers were to exploit the flaws, then the scenarios range from AMD’s processors being infected with persistent malware […]

Malicious activity surges coincide with geopolitical events

Comodo released its Global Malware Report 2017, which culminates a year of security analysis and research into threat patterns. Among its major findings: 2017 was a year of multiple geopolitical events that corresponded with major malware spikes in enterprise security. Researchers witnessed diverse malware attacks coinciding with geopolitical events, including: U.S. elections: A massive spike in Kryptik […]

Global business spend on cybersecurity to grow 33% over the next 4 years

New data from Juniper Research has found that global business spend on cybersecurity solutions will grow by 33% over the next 4 years, reaching $134 billion annually by 2022. Juniper anticipates that the cumulative cost of data breaches between 2017 and 2022 will reach $8 trillion, with variable per-business losses depending on the nature and scale of […]

Global SOC maturity improves, yet some still operate with serious gaps in security

Despite the volume of threats rising, the global findings of a new Micro Focus report indicate that more mature Security Operational Centres (SOCs) are becoming more efficient in detection with greater ability to recover from breaches than ever before. Although SOCs are moving in a positive direction globally, the UK showed the greatest change with […]

Healthcare industry: Attacks outpacing investments in personnel, education and resources

The 2018 Impact of Cyber Insecurity on Healthcare Organizations study examines the myriad of cybersecurity-related challenges and how organizations are (or are not) addressing them. Results show the security stakes are high, with 62 percent of the 627 executives surveyed admitting to experiencing an attack in the past 12 months, and more than half losing […]

Record surges in healthcare attacks, fileless malware, cryptocurrency mining

During Q4 2017, McAfee Labs saw on average eight new threat samples per second, and the increasing use of fileless malware attacks leveraging Microsoft PowerShell. The Q4 spike in Bitcoin value prompted cybercriminals to focus on cryptocurrency hijacking through a variety of methods, including malicious Android apps. “The fourth quarter was defined by rapid cybercriminal adoption of […]

Not all who pay a ransom successfully recover their compromised data

A new report by the CyberEdge Group found that 55 percent of responding organizations were compromised by ransomware in 2017, down from 61 percent in 2016. Respondents who were victimized by ransomware and who elected to pay the ransoms were asked if they successfully recovered their compromised data. Surprisingly, only half confirmed successful data recovery, […]

Phishing Via Social Media Up 100 Percent, Now A Preferred Vector

The most interesting trend to surface in Q4 of RiskIQ’s phishing report was a 100 percent increase in phishing campaigns leveraging social media platforms, accounting for 20 percent of the top 10 most phished brands. Phishing actors are always innovating and creating new methods to lure victims into gaining access to their financial information, PII, […]

Cyber attacks becoming No. 1 business risk

SonicWall recorded 9.32 billion malware attacks in 2017 and saw more than 12,500 new Common Vulnerabilities and Exposures (CVE) reported for the year. “The cyber arms race affects every government, business, organization and individual. It cannot be won by any one of us,” said SonicWall CEO Bill Conner. “Our latest proprietary data and findings show […]

Insider Threat Seriously Undermining Healthcare Cybersecurity

The healthcare industry’s ability to defend against cyberthreats is being seriously undermined by its own workforce, according to two separate reports released this week. In an analysis of 1,368 security incidents at healthcare organizations in 27 countries, Verizon found that nearly six out of 10 (58%) security incidents involve insiders. That figure, according to Verizon, makes healthcare the only […]