New research by Nominet has found that heightened stress levels has led to mental and physical health issues, relationship problems, medication and alcohol abuse, and in some cases an eventual burnout, resulting in an average 26-month tenure before CISOs find new employment. The vast majority of interviewed CISO executives (88%) report high levels of stress, a third report having stress-caused physical health issues and half report mental health issues. https://twitter.com/VenueHomes_vn/status/1227685138265509893
ISBuzz Team
Around a tenth of Americans use stalkerware to track partners and exes, according to CNET. Men are more than twice as likely than women to use the apps, according to the poll, which NortonLifeLock conducted in partnership with the Harris Poll. As these apps run in the background, victims often have no knowledge that stalkerware has been installed on their phone. App stores have made some progress in taking down these apps, however they are often rebranded as child safety apps and continue to be sold.
It was recently reported that the majority of organisations (73%) continue to experience unplanned downtime and outages due to mismanaged digital certificates. More than half of respondents (55%) have experienced more than 4 certificate-related outages in the past 24 months alone according to this research. Two-thirds of respondents say their organization is adding additional layers of encryption to comply with industry regulations and IT policies; however, shorter certificate validity has doubled the management workload on short-staffed IT and security teams,” notes the study. An estimated average of 88,750 keys and certificates are used by organizations today to secure data and…
Within a few months, Google Nest users will be required to use two-factor authentication (2FA) to access their devices. Google has promised that the new process will integrate seamlessly into the Nest user experience.
A new phishing campaign involves scammers sending fake Chase and Amex fraud protection emails asking users if the listed card transactions are valid. Victims who click the “no” button in the message to dispute the transactions will be redirected to a fake yet legitimate-looking Chase or American Express login site where they will go through a fake verification process that invites them to enter their username, password, birth date, social security number, as well as their bank and credit card information.
Love is purportedly in the air again, but is it being harnessed and channelled in the right direction? This Valentine’s Day, are you doing all you can to lavish protective TLC on your apps? Do you have the right strategies and solutions in place to secure a mutually rewarding, long-term relationship with your apps and, by extension, customers? Let’s explore the top recommended security controls for 2020 in order of urgency. Use Strong Authentication to Limit Unauthorised Access Since access control attacks are prevalent and often the tip of the spear for most cyber-mayhem, it makes sense that strong authentication…
A government report is criticizing the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) for not completing strategic and operational plans to address security election infrastructure. CISA was to develop and roll out a plan well before elections especially to address concerns about incident response.
440 million records from the Estee Lauder company were exposed online according to security Researcher Jeremiah Fowler at Security Discovery who found the door wide open on an Internet Facing database. https://twitter.com/jhengstler/status/1227274308415709185
Iran has seemingly come under cyber-attack. Indeed, so powerful was the impact of this alleged attack that the internet was disrupted across the country. The NetBlocks internet observatory, which maps internet freedom in real-time, confirmed that there was extensive Iranian telecommunications network disruption on the morning of February 8. In a NetBlocks tweet, the national internet connectivity drop to 75% was said to be due to Iranian authorities activating the “Digital Fortress” cyber-defense mechanism, also known as DZHAFA. https://twitter.com/TEISS/status/1226800157905346560
Following the news yesterday that Chinese government hackers have been indicted for breaching Equifax in 2017, please see comment below from Sonatype CEO Wayne Jackson.