Sponsored by: minute read
Share this article:
Insider Risk Management builds a framework around the new paradigm of “risk tolerance,” aiming to give security teams the visibility and context around data activity to protect that data, without putting rigid constraints on users.
The pandemic was a force accelerator for digital transformation in the enterprise. It’s not just the dramatic remote work shift it’s a profound shift toward prioritizing speed and flexibility as the drivers of a company’s competitive advantage. But as faster, more agile ways of working dramatically increase data security risks stemming from our own employees, it’s forcing a reckoning: How do you manage these growing risks without impeding speed and agility in your business?
The American Rescue Act is the latest zeitgeisty lure being circulated in an email campaign.
Cybercriminals have wasted no time in hopping on the American Rescue Plan – the COVID-19 relief legislation just signed into law – as a lure for email-based scams.
According to researchers at Cofense, a campaign began circulating in March that capitalized on Americans’ interest in the forthcoming $1,400 relief payments and other aid. The emails impersonate the IRS, using the agency’s official logo and a spoofed sender domain of IRS[.]gov – and claim to offer an application for financial assistance. In reality, the emails offer the Dridex banking trojan.
A new Mimecast update reveals the SolarWinds hackers accessed several “limited” source code repositories.
Hackers who compromised Mimecast networks as part of the SolarWinds espionage campaign have swiped some of the security firm’s source code repositories, according to an update by the company.
The email security firm initially reported that a certificate compromise in January was part of the sprawling SolarWinds supply-chain attack that also hit Microsoft, FireEye and several U.S. government agencies.
Attackers were found initially to have stolen a subset of Mimecast customers’ email addresses and other contact information, as well as certain hashed and salted credentials. However, in the most recent part of its investigation into the SolarWinds hack, Mimecast said it has found evidence that a “limited” number of source code repositories were also accessed.
Sponsored by: minute read
Share this article:
At SafeDNS, we see three entangled hurdles for MSPs in 2021 and the coming years tied with the current economic uncertainty and somewhat linked to the pandemic.
If one searches for ‘the top MSP challenges’ between 2017 and 2020, there are mainly five things that are more likely to emerge from the search results: adopting cloud-based solutions, sales margins, satisfying complex client’s needs, employee turnover, and the scalability of the IT security solutions offered.
Things haven’t changed much in 2021. However, at SafeDNS, we see apart from those points three entangled hurdles for MSPs in 2021 and the coming years tied with the current economic uncertainty and somewhat linked to the pandemic 1) More attacks at the MPSs’ clients’ DNS-level, 2) growth issues for MSPs and their clients, and 3) remote working vulnerabilities.
Researchers from Sucuri discovered the tactic, which creatively hides malicious activity until the info can be retrieved, during an investigation into a compromised Magento 2 e-commerce site.