For any cybersecurity or data protection strategy to succeed, organisations need to rely on strong internal collaboration and communication processes. In particular, the CIO/CISO dynamic can have a significant impact on both short- and long-term decision making, from strategic investment decisions to leading the response to security incidents. This content is for members only. Visit the site and log in/register to read. The post The Dynamic Duo – Why Modern Businesses Need the CIO and CISO to Collaborate appeared first on Cyber Protection Magazine ..read more

It seems like the insurance industry is turning the corner on cyber insurance and making a decent profit in the process. But not every industry watcher is optimistic. Three years ago, the insurance industry was reeling from claims due to multiple natural disasters, rising costs of automobile repairs, and more specifically, data breaches. Ransomware was a small but very expensive part of the debacle, but nothing as costly as social engineering and human ignorance driving lucrative phishing attacks. Large insurance companies abandoned cyber insurance policies entirely leaving the market to small ..read more

From our predictions issue: AI dominated the news in 2023. For 2024, our experts predict that AI will mature further, resulting in more AI-driven solutions in the cybersecurity industry. This content is for members only. Visit the site and log in/register to read. The post How will AI change the cybersecurity industry? appeared first on Cyber Protection Magazine ..read more

As companies make cybersecurity a core focus going into 2024, cybercriminals are adapting by developing sophisticated social engineering tactics, using AI to launch more effective attacks, and targeting new attack vectors. This content is for members only. Visit the site and log in/register to read. The post Five critical cybersecurity trends for 2024 appeared first on Cyber Protection Magazine ..read more

When it comes to technology, politicians and lawyers usually chime in on technology problems years after a product is on the market and well-adopted. But in 2024 government regulation, legislation and lawsuits, both criminal and civil, will influence the development of security and AI technology more than any innovation or market demand. And that’s just fine with industry… for the most part. This content is for members only. Visit the site and log in/register to read. The post Legislation and lawsuits influence development in 2024 appeared first on Cyber Protection Magazine ..read more

As the use of AI continues to grow in the business world, so too do the risks of cybercriminals exploiting these technologies for their own gain. A recently published research analysis by Darktrace revealed an 135% increase in social engineering attacks using generative AI. One such threat comes from generative AI tools like ChatGPT, a language model trained by OpenAI, which can be used by hackers to penetrate corporate systems and disrupt business operations. As CISOs must be aware of any vulnerability in their systems, the potential for tools like ChatGPT to allow threats to permeate their s ..read more

The SEC lawsuit against SolarWinds Corporation and CISO Tim Brown may upend an industry push for consolidation. It also questions whether large public companies providing security tools and services are any more up to the task than smaller, innovative companies. Moreover, the argument put forward by SolarWinds against the suit brings into question whether their public statements can be trusted, according to industry sources. Considering how big a presence they have, their positions could damage trust in the industry overall. The background The suit is one of a string of securities fraud action ..read more

This year’s Cybersecurity Awareness Month marks the twentieth anniversary of the event. Every year for the past twenty, October has reminded us about the importance of digital security and empowered everyone to protect their data from digital forms of crime. Towards the end of Cybersecurity Awareness Month we’ll take a look back – and ahead. But over the past two decades, a lot has changed in the world of cybersecurity – new technologies have transformed the industry, the threat landscape has increased, and cybercriminals have grown in sophistication, forcing organisations to step up too. As H ..read more

An August report from the Canadian Centre for Cyber Security said over the next two years, Canada is going to face significant threats from state-supported cyberattacks from Russia, China and North Korea. “We assess that Russian intelligence services and law enforcement almost certainly maintain relationships with cybercriminals and allow them to operate with near impunity,” the centre said. Canada? What the heck did Canada do to earn the ire of those folks. Canadians are arguably the nicest people in the world. So we called up our favorite Canadian “cybersleuth”, Ian Thornton-Trump, Cyjax’s C ..read more

But SMEs are on their own The use of the law to shut down malicious use of Cobalt Strike is progressing apace, but for now, small businesses are on their own. In March 2023, the U.S. District Court for the Eastern District of New York allowed Microsoft, Fortra, and Health-ISAC to disrupt criminal activity using cracked copies of Microsoft’s Cobalt Strike security software. Since then the three organizations have made a significant dent in the activity. The efforts have detected malicious infrastructure in China, the United States, and Russia and identified threat actors acting in the interests ..read more