Lisa Morgan

Even if third party systems aren't compromised by a breach, their data may be and if it is, those parties might become the victim of a triple ransom. Following are a few updates to our biggest Inciden...

Accenture did not respond to the first demand window of four hours. Regardless, whatever advice the company is giving should be the advice it takes or it will have an ever bigger potential PR problem.

The CISO can't protect that which is unknown. Hence the need for asset management and CASB tools that help explain the actual ecosystem. Advisory firm CEB estimates that 40% of all IT spending occurs...

Italy has been the victim of two ransomware attacks this month. The first blocked a COVID-19 booking system, which is not only a public health hazard but interferes with Italy's recent healthcare mand...

The red team plays offense, identifying holes in the security fabric that are caused by a company's people, processes and technology. The blue team plays defense, attempting to block cyber attacks usi...

Some of the Tokyo Olympics victims had participated in a cyber security drill hosted by Japan's National Center of Incident Readiness and Strategy for Cybersecurity (NISC), which was yet another victi...

What's at stake are the company's crown jewels and reputation since stolen intangibles are valuable on the black market and their theft is an effective (but illegal) way to get revenge on the company....

Saudi Aramco's data is particularly concerning because in addition to the employee data, reports, products specs, invoices and other sensitive company information that was stolen, also for sale is a m...

When BYOD hit the scene, mobile device management (MDM) became essential. Now, with IoT and IIoT added to the mix, there are many more attack vectors being used to launch malware campaigns or zero-day...

There's a trend toward supply chain attacks, meaning that the zero-day vulnerability could have far-reaching impacts for the company, its partners and customer. The Kayesa ransomware attack is the mos...

While Kaseya CEO Fred Voccola downplayed the number of affected customers, some of them are MSPs. Estimates are that up to 1,500 organizations have been affected. Clearly, the supply chain nature of t...

Security training is becoming non-optional for employees because every business can be victimized directly or indirectly via a third party. Below are some of the topics that should be covered as part...