Articles and Comments By Saryu Nayyar

Expert Commentary
Is Uber's 'Security Incident' Just A Smoke Screen? Experts Weigh In
September 20 , 2022 by Saryu Nayyar
Well, looks like Uber's been taken for a ride - and this is a ride they will pay for dearly. All it...

Expert Commentary
Washington Licensing Dept Data Breach, Experts Reacted
February 08 , 2022 by Saryu Nayyar
While there are few details in the report, it appears that very sensitive personal data has been sto...

Expert Commentary
German Petrol Company Oiltanking Suffers Cyberattack
February 02 , 2022 by Saryu Nayyar
While there is a lot of discussion around ICS/OT security, the reality is that most operations are d...

Expert Commentary
More Than Half Of Ransomware Attacks Target Three Industries
February 01 , 2022 by Saryu Nayyar
It is not a surprise that these are the most targeted industries as they either have the most import...

Expert Commentary
Canada's Foreign Ministry Hacked, What Went Wrong
January 26 , 2022 by Saryu Nayyar
As Canada\'s own intelligence agencies have recommended just prior to the attack, organizations need...

Expert Commentary
DHS Issues Warning About Potential Russian Cyber Attack On The US
January 26 , 2022 by Saryu Nayyar
It is not surprising that the cyberattacks on the Ukraine were not going to be isolated to them base...

Expert Commentary
WhisperGate Reflects The Gray Area Of Destruction, Says Expert
January 25 , 2022 by Saryu Nayyar
Stolen credentials being abused continues to be a major factor in many malware campaigns. However, i...

Expert Commentary
Dark Souls Servers Taken Down Amid Hacking Reports
January 25 , 2022 by Saryu Nayyar
The risk of remote worker networks is very apparent from this attack. As we connect our gaming syste...

Expert Commentary
Microsoft Discovers Destructive Malware Targeting Ukraine
January 18 , 2022 by Saryu Nayyar
As noted, this is not atypical ransomware as it overwrites the master boot record. Nation state thre...

Expert Commentary
Belarusian Intelligence Behind Ukrainian Government Website Cyber Attacks
January 17 , 2022 by Saryu Nayyar
Nation state threat actors continue to take an active involvement in destabilizing infrastructure, g...

Expert Commentary
New RAT Targeting AWS, Azure
January 13 , 2022 by Saryu Nayyar
The new RAT variant is a perfect example of why it is important to have a cloud-native and multi-clo...

Expert Commentary
Google Drive Top App For Malware Downloads
January 12 , 2022 by Saryu Nayyar
This informative report highlights the need for cloud-native solutions that seamlessly monitor for,...

Expert Commentary
Elephant Beetle, NY OAG Finds 1.1M User Accounts Sold Online
January 07 , 2022 by Saryu Nayyar
The adaptability of the Elephant Beetle threat actor and subsequent exploits developed to evade dete...

Expert Commentary
Ransomware Shuts Down Albuquerque Government
January 07 , 2022 by Saryu Nayyar
Despite widespread deployment of traditional SIEM, endpoint solutions and now Endpoint-based XDR, wh...

Expert Commentary
Microsoft Updates Log4j Directive- Gurucul Comments
January 05 , 2022 by Saryu Nayyar
\"The Log4j vulnerability continues to be one of the largest and most serious security problems in r...

Expert Commentary
CISA Log4j Emergency Directive, Experts Weigh In
December 20 , 2021 by Saryu Nayyar
CISA has issued Directive 22-02, directing Federal agencies to address or mitigate the vulnerability...

Expert Commentary
What Experts Say On Critical Log4j Vulnerability?
December 15 , 2021 by Saryu Nayyar
Making the rounds along with COVID over the weekend was the so-called Log4Shell vulnerability, named...

Expert Commentary
Cyber-attack On Superior Plus Gas Distributor
December 15 , 2021 by Saryu Nayyar
Attackers continue to pound away at critical infrastructure, last weekend going after Superior Plus,...

Expert Commentary
IKEA Suffering Ongoing "Reply-Chain" Email Attack
December 01 , 2021 by Saryu Nayyar
If you get an email from someone you know, or that seems to continue an ongoing conversation, you ar...

Expert Commentary
Booz Allen Report On CISOs And China Quantum Computing Risks, Expert Weighs In
November 25 , 2021 by Saryu Nayyar
While much of the cybersecurity world wasn’t looking, quantum computing has quietly moved from fan...

Expert Commentary
NCSC Issues Black Friday Warning To Tetailers
November 23 , 2021 by Saryu Nayyar
As if one hack isn’t bad enough, the UK National Cyber Security Centre (NCSC) has warned more than...

Expert Commentary
How The Zelle Fraud Scam Steals Your Bank Credentials
November 23 , 2021 by Saryu Nayyar
Despite widespread publicity of the scams involving the Zelle money transfer service, hackers contin...

Expert Commentary
Study - Most Online Shoppers Remain With Retailer After A Breach, Experts Weigh In
November 19 , 2021 by Saryu Nayyar
After a data breach, consumers are often faced with difficult challenges of understanding where the...

Expert Commentary
Commentary On The Return Of Emotet
November 17 , 2021 by Saryu Nayyar
It seems to be hard to tell your malware without a scorecard these days. Systems infected with Trick...

Expert Commentary
New BotenaGo Botnet With 30+ Exploits Targets Millions Of IoT Devices
November 15 , 2021 by Saryu Nayyar
Yet again we see attack vectors on non-computer devices that can be just as harmful as going after s...

Expert Commentary
Zelle Scams Increasing For The Holidays
November 12 , 2021 by Saryu Nayyar
Heralding in the era of the cashless society is revealing some significant bumps in the road. In par...

Expert Commentary
State Hackers Breach Nine After CISA Alert Warns Of Exploits
November 09 , 2021 by Saryu Nayyar
This clever attack with its origins in China has to be a nightmare for any organization, especially...

Expert Commentary
Robinhood Data Breach - Expert Comments
November 09 , 2021 by Saryu Nayyar
This must be a hacker with a sense of humor, although the actual loss of data is by no means funny....

Expert Commentary
3 Experts- CISA Requires Agencies To Patch Known Exploited Vulnerabilities
November 04 , 2021 by Saryu Nayyar
Patching software and operating systems should be at the top of the IT priority list. Now CISA is st...

Expert Commentary
2 Experts: Black Shadow Dumps 290,000 Medical Records & Entire LGTBQ Dating Database
November 04 , 2021 by Saryu Nayyar
The most dangerous of breaches are those that have a medical connection, and the Black Shadow group...

Expert Commentary
FBI Warns Ransomware Actors Using Financial Events, Stock Valuation To Target Companies, Experts Weigh In
November 03 , 2021 by Saryu Nayyar
It’s no surprise that ransomware attackers follow the stock market in choosing their victims. The...

Expert Commentary
AbstractEmu Malware Roots Android Devices, Evades Detection
November 01 , 2021 by Saryu Nayyar
If you thought your phone was safe from malware, think again. There is a rootkit for Android that is...

Expert Commentary
Russia Escalates Cyber-attacks Despite Promises - Cybersecurity Experts Reacted
October 26 , 2021 by Saryu Nayyar
Not content with resting on its laurels in the wake of the largely successful SolarWinds attack, Rus...

Expert Commentary
CISA Alert – Critical Discourse Bug
October 26 , 2021 by Saryu Nayyar
Discourse continues to make news after researchers discovered a vulnerability that enabled attackers...

Expert Commentary
2 Experts: Aussie Govt. Would Control "Critical Infrastructure" During Cyber-attacks
October 21 , 2021 by Saryu Nayyar
The Australian government is set to pass laws requiring “essential industries” to report cyber-a...

Expert Commentary
Sinclair TV Confirms Cyber Attack – Expert Comments
October 19 , 2021 by Saryu Nayyar
Sinclair TV seems to be the victim of a ransomware attack, with multiple channels going off the air...

Expert Commentary
MysterySnail RAT Uses MSoft Zero-day – 3 Experts Comment
October 13 , 2021 by Saryu Nayyar
The colorfully named MysterySnail exploit is the latest to burn a hole in Microsoft Windows’ pocke...

Expert Commentary
4 Experts - Atom Silo grp Attacks Confluence Servers
October 06 , 2021 by Saryu Nayyar
If you think you are safe once a vulnerability has been publicly reported, think again. Even if th...

Expert Commentary
Senate Bill Requires Critical Infrastructure Organisations To Report Cyberattacks - Security Expert Comments
September 30 , 2021 by Saryu Nayyar
The United States Senate is considering a bill to open the window on ransomware and other hacking at...

Expert Commentary
Senate Bill Requires Critical Infrastructure Organisations To Report Cyberattacks - Security Expert Comments
September 30 , 2021 by Saryu Nayyar
The United States Senate is considering a bill to open the window on ransomware and other hacking at...

Expert Commentary
4 Experts Comment - Deloitte Calls For Integration Of Cybersec And ERM Functions At Federal Agencies
September 27 , 2021 by Saryu Nayyar
Thanks at least in part to recent ransomware attacks, cybersecurity remains at the top of the priori...

Expert Commentary
Port Of Houston Cyber Attack - Experts Weigh In
September 27 , 2021 by Saryu Nayyar
There are rarely publicized success stories in cybersecurity; usually we hear about damaging breache...

Expert Commentary
Malicious URLS Slipping Past Security Vendors, Experts Weigh In
September 23 , 2021 by Saryu Nayyar
As individual computer users, we like to think that our anti-virus software protects us from all kno...

Expert Commentary
MoD Shares Afghanistan Interpreter’s Emails & PII
September 22 , 2021 by Saryu Nayyar
When we add up the costs of data breaches, rarely do we consider human lives. But that’s exactly w...

Expert Commentary
Marketron Suffers BlackMatter Attack, Shuts Down All svcs. – 5 Experts Comment
September 21 , 2021 by Saryu Nayyar
BlackMatter strikes again, this time hitting Marketron, a firm that manages billions of dollars of a...

Expert Commentary
Deloitte Poll: C-suite Expects Ransomware Uptick But Orgs. Aren’t Trained – 5 Cyber Experts Respond
September 15 , 2021 by Saryu Nayyar
Security through obscurity. That\'s what most organizations believe, or at least hope for. They...

Expert Commentary
New SOVA Android Trojan Promises the Moon, Experts Insight
September 14 , 2021 by Saryu Nayyar
This appears to be dangerous malware, and people putting more and more sensitive information on thei...

Expert Commentary
Olympus Tech Giant Hit By BlackMatter Ransom Attack
September 14 , 2021 by Saryu Nayyar
Organizations are kept up at night by the prospect of being hit by ransomware, and now Olympus, an i...

Expert Commentary
New "Plague" DDoS Attack Hits Internet Giant Yandex
September 13 , 2021 by Saryu Nayyar
DDOS remains an unsophisticated but popular way of preventing access to select Web destinations. Co...

Expert Commentary
WFH Is A Cybersecurity "Ticking Time Bomb", Expert Weighs In
September 10 , 2021 by Saryu Nayyar
Eighteen months into the work from home era of the Covid-19 pandemic, many IT shops still don’t ha...

Expert Commentary
Malware Hides In CLFS To Evade Detection – Expert Reaction
September 08 , 2021 by Saryu Nayyar
Log files represent fertile ground for attacking data on systems and networks. Few organizations st...

Expert Commentary
Win 10 Admin Escalation With Razor Bug - Expert Insight
August 24 , 2021 by Saryu Nayyar
Once used, forever vulnerable. All you have to do is plug in a Razer mouse dongle and Windows 10 wi...

Expert Commentary
100 Million User T-Mobile Breach? – Multiple Comments
August 17 , 2021 by Saryu Nayyar
T-Mobile is investigating a breach involving 100 million accounts, all with highly personal informat...

Expert Commentary
MITRE Releases List of Top 25 Bugs, Experts Weigh In
July 23 , 2021 by Saryu Nayyar
MITRE has updated its list of the 25 most dangerous vulnerabilities, and it contains few surprises....

Expert Commentary
HiveNightmare Windows Zero-Day Vuln Allows Privilege Escalation
July 23 , 2021 by Saryu Nayyar
Zero-day attacks continue to be among the most alarming for enterprise security analysts. Not only d...

Expert Commentary
MosaicLoader Malware Drops Facebook Stealers and RATs, Research Finds – Expert Comments
July 21 , 2021 by Saryu Nayyar
Malware attackers continue to demonstrate that they remain one or more steps ahead of those who are...

Expert Commentary
Mint Mobile Customer Data Breached, Experts Weigh In
July 13 , 2021 by Saryu Nayyar
Mint Mobile, a regional mobile communications firm, has announced that “a small number of users”...

Expert Commentary
Fashion Retailer Guess Data Breach, Experts Insight
July 13 , 2021 by Saryu Nayyar
Guess what? Your data is compromised. Your personal information is available on the dark web. Let’...

Expert Commentary
New Malspam Disables Msoft Office Macro Security
July 12 , 2021 by Saryu Nayyar
As pervasive as anti-malware software is, malware developers continue to come up with innovative app...

Expert Commentary
Morgan Stanley Data Breach – Experts Reaction
July 09 , 2021 by Saryu Nayyar
Look out Morgan Stanley! The bigger they are, the harder they fall. Earlier this year, Kroger suffer...

Expert Commentary
Thousands Scammed with Fake Android Crypto Mining apps
July 09 , 2021 by Saryu Nayyar
Thanks to the run-up in the value of cryptocurrencies over the past several months, there has been a...

Expert Commentary
Expert Comment on Joint Advisory Around Russian Military Hackers Compromising Passwords
July 05 , 2021 by Saryu Nayyar
A growing number of ransomware attacks against infrastructure and critical industries, especially th...

Expert Commentary
CISA Ransomware Assessment Tool Released
July 02 , 2021 by Saryu Nayyar
Ransomware represents a rapidly growing threat as attackers target organizations for money. Many o...

Expert Commentary
Expert React: McAfee Mobile Threat Report: C-19 Vax Appointment Trojans, Etinu Billing Fraud Malware
July 01 , 2021 by Saryu Nayyar
Malware embedded as a Trojan horse in mobile apps is becoming more prevalent as users take advantage...

Expert Commentary
1.1 Bil Pieces Of User Data Scraped From Alibaba's Taobao Shopping Site
June 17 , 2021 by Saryu Nayyar
Two things about this breach are concerning. First, 1.1 billion users is an ENORMOUS number! So many...

Expert Commentary
Hackers Steal Wealth of Data from Game Giant EA
June 11 , 2021 by Saryu Nayyar
This sort of breach could potentially take down an organization. Game source code is highly propriet...

Expert Commentary
Experts React: White House Open Letter To Companies Re Ransomware
June 04 , 2021 by Saryu Nayyar
These are all excellent recommendations. However, there is a missing element of proactive defense he...

Expert Commentary
DOJ Charges Woman With Political Candidate Phishing Attacks
June 02 , 2021 by Saryu Nayyar
This is an unexpected phishing campaign outcome in that the charging document does not indicate Lebe...

Expert Commentary
Russia Phishing Attack On USAID, Other Human Rights Groups
May 31 , 2021 by Saryu Nayyar
This proves yet again that one bad apple can spoil the whole bunch. A single user clicking on a sing...

Expert Commentary
4.5 Million Passengers' Data Stolen In Air India Cyber Attack
May 25 , 2021 by Saryu Nayyar
Once again, cybercriminals are flying off with millions of personally identifiable data of airline p...

Expert Commentary
NZ District Health Board Attack Slows 5 Hospitals
May 20 , 2021 by Saryu Nayyar
Yet another organization suffers a full shutdown because someone opened an infected attachment in a...

Expert Commentary
Continuing Attack on Ireland’s HSE and Threatened Patient Data Release
May 19 , 2021 by Saryu Nayyar
This is yet another troubling ransomware attack on the healthcare industry. Medical records hold hig...

Expert Commentary
~200K US Military Vets’ Medical Records Leaked by 3rd Pty – Cyber Experts' Perspectives
May 13 , 2021 by Saryu Nayyar
If the researcher found this database of 200,000 medical records, then who knows who else may have a...

Expert Commentary
Babuk Ransomware Gang Again Threatens DC Police Data Release
May 12 , 2021 by Saryu Nayyar
Just when you thought it couldn’t get worse, this ransomware attack happens. At a time when discri...

Expert Commentary
CISA/NCSC Issue Joint Alert to Patch, Re Russian Foreign Svc Cyber Ops
May 10 , 2021 by Saryu Nayyar
Once again, we see Russian cyber attacks targeting vulnerabilities in popular networking and web ser...

Expert Commentary
Experts Comments on World Password Day
May 06 , 2021 by Saryu Nayyar
Passwords are the bane of the security team\'s existence. Users use weak passwords, reuse the same p...

Expert Commentary
Experian Leaked Consumer Credit Scores – Expert Commentary
April 30 , 2021 by Saryu Nayyar
The credit score data exposed as well as risk factors can be very successfully used to socially engi...

Expert Commentary
Elekta Cyberattack Took Some Us Cancer Radiation Services Offline
April 30 , 2021 by Saryu Nayyar
Here again we see the healthcare market being targeted by cybercriminals. In this case it\'s a suppl...

Expert Commentary
Data Security Expert Comment On Geico Admits Fraudsters Stole Customers’ Driver’s License Numbers For Months
April 21 , 2021 by Saryu Nayyar
This is infuriating. Geico is essentially skirting blame for this breach, and worse - making the vic...

Expert Commentary
Expert Insights: Dir Nat'l Intelligence Releases Annual Threat Assessment Thursday
April 16 , 2021 by Saryu Nayyar
Cyberattacks are not slowing down. The recent cyber-espionage attacks involving Russia and China tha...

Expert Commentary
Industry Leaders On Android.Joker Malware
April 13 , 2021 by Saryu Nayyar
Sadly the Joker Malware is no joke. And even more depressing, no dark knight is going to ride in to...

Expert Commentary
Experts Perspectives On Verizon Mobile Sec Index: WFH The New Normal
April 08 , 2021 by Saryu Nayyar
Most IT departments are not structured to be mobilized. Sending a member of your IT staff out into t...

Expert Commentary
Experts Insight On Facebook Data Leak
April 06 , 2021 by Saryu Nayyar
This is a huge blow to Facebook. Leaking the personal data of 533 million Facebook users is a data b...

Expert Commentary
Patient PHI Inadvertently Added To GitHub Artic Code Vault – Expert Perspective
April 05 , 2021 by Saryu Nayyar
The revelation that personal information involved in a 2020 breach has wound up in a code archive, o...

Expert Commentary
Experts Insight On Babuk Locker Ransomware Gang Leaks Military Contractor's Data
March 26 , 2021 by Saryu Nayyar
The attack against PDI follows a common pattern with hybrid ransomware attacks. The attackers exfilt...

Expert Commentary
UK Clothing Retailer Breached, Tells Customers Not To Disclose It
March 26 , 2021 by Saryu Nayyar
The breach of UK clothing retailer FatFace is interesting more for their response than the incident...

Expert Commentary
CNA Ins. Cyber Attack- Expert Comments
March 25 , 2021 by Saryu Nayyar
There is little information about the attack against CNA insurance as yet, but insurance agencies ar...

Expert Commentary
BlackKingdom Targets Msoft Exchange- Experts Comment
March 23 , 2021 by Saryu Nayyar
As long as there are still unpatched Microsoft Exchange servers accessible on the open internet, we...

Expert Commentary
RAT Targets US Taxpayers - Experts Insight
March 19 , 2021 by Saryu Nayyar
Malicious actors know that users are the weak link in the security chain. They know that a timely an...

Expert Commentary
Experts Reaction On FBI Alerts Rise In PYSA
March 18 , 2021 by Saryu Nayyar
For malicious actors, the education sector is a prime target. IT budgets are often limited and cyber...

Expert Commentary
Msoft Exchange Exploit Leads To 10X Attack Increase
March 16 , 2021 by Saryu Nayyar
This flood of activity targeting the Microsoft Exchange exploits should come as no surprise. Cyber...

Expert Commentary
Fake Icon Delivers NanoCore Trojan – Experts Perspectives
March 12 , 2021 by Saryu Nayyar
The recently reported phishing campaign that spreads the NanoCore trojan is a variation on an old th...

Expert Commentary
Experts Reaction On Verkada Hack Affecting 150,000 Of Its Security Cameras
March 11 , 2021 by Saryu Nayyar
The Verdaka breach appears to stem from inadvertently leaving an Admin level password exposed. If...

Expert Commentary
EU Banking Reg. Hit By MS Exchange Attack– Experts Reaction
March 10 , 2021 by Saryu Nayyar
While many organizations have moved their business to the cloud in general, and their office product...

Expert Commentary
ObliqueRAT Trojan Lurks On Compromised Websites - Experts Comments
March 03 , 2021 by Saryu Nayyar
The evolution of the ObliqueRAT trojan is a good example of how malicious actors are constantly upda...

Expert Commentary
Sequoia Capital Discloses Data Breach – Expert Insights
February 26 , 2021 by Saryu Nayyar
The Sequoia Capital data breach announcement is short on detail, beyond it being an employee\'s emai...

Expert Commentary
The Rise Of Initial Access Brokers- Expert Offers Perspective
February 25 , 2021 by Saryu Nayyar
The emergence of so-called Initial Access Brokers in the cybercriminal world is not surprising, and...

Expert Commentary
Security A Glaring Issue For Chatroom App Clubhouse After Conversations Were Breached
February 24 , 2021 by Saryu Nayyar
The data leakage from audio chat app Clubhouse appears to hinge on a lack of proper authentication a...

Expert Commentary
CEOs Comments On Report: Rise In Healthcare Attacks
February 19 , 2021 by Saryu Nayyar
The recent Healthcare Breach report highlights what security professionals have been saying for a wh...

Expert Commentary
Experts Reaction On Kia Motors Suffers Ransomware Attack
February 19 , 2021 by Saryu Nayyar
Cybercriminals are becoming more sophisticated and, as they do, they are becoming bolder. They are...

Expert Commentary
Malvertisers Redirecting To Scam Sites Via Browser Zero-day
February 17 , 2021 by Saryu Nayyar
The recent revelation of a Malvertising group leveraging an exploit in the commonly used WebKit fram...

Expert Commentary
Singtel Cyberattack Via 3rd Party Accellion File Sharing System – Experts Perspective
February 12 , 2021 by Saryu Nayyar
The data breach at Singtel appears isolated to the Accellion FTA (File Transfer Appliance) but it hi...

Expert Commentary
Experts Reaction On 2021 Credential Stuffing Report Highlighting Poor Security Practices
February 11 , 2021 by Saryu Nayyar
The recent report from F5 on the state of credential theft volumes and their use in cyberattacks ove...

Expert Commentary
mHealth App APIs Vulnerable To Attacks Exposing PII & PHI - Experts Insight
February 10 , 2021 by Saryu Nayyar
This report is telling in how little attention is given to application security for mobile applicati...

Expert Commentary
RDP Attack Escalation & Domestic Kitten APT – Expert Perspective
February 09 , 2021 by Saryu Nayyar
The massive increase in RDP (Remote Desktop Protocol) attacks against remote workers over the course...

Expert Commentary
Hacker Breached Florida Treatment Plant To Poison The Water Supply
February 09 , 2021 by Saryu Nayyar
The cyberattack against the water supply in Oldsmar, Florida, last week should come as a wakeup call...

Expert Commentary
Expert Insight: Bykea Delivery Svc. Unencrypted Server Leaks 400 Million Customers’ Data
February 01 , 2021 by Saryu Nayyar
The reported data breach from Bykea in Pakistan is not so much a breach as a lapse of basic system a...

Expert Commentary
Cyber Criminals Left Stolen Phishing Credentials Exposed To Google Searches
January 22 , 2021 by Saryu Nayyar
The report of malicious actors having their stolen user IDs and passwords revealed by a simple Googl...

Expert Commentary
A Chinese Hacking Group Is Stealing Airline Passenger Details
January 22 , 2021 by Saryu Nayyar
The revelation that advanced attackers, apparently based in China, have been targeting airline trave...

Expert Commentary
Expert Commentary: Hacker Posts 1.9 Million Pixlr User Records For Free On Forum
January 21 , 2021 by Saryu Nayyar
While the revelation of details on almost two million Pixlr user accounts did not include financial...

Expert Commentary
FreakOut Botnet Targets Linux- Experts Offer Perspective
January 20 , 2021 by Saryu Nayyar
Historically, Linux systems have been reasonably secure and received patches quickly when a vulnerab...

Expert Commentary
Mimecast Compromised By Threat Actor
January 13 , 2021 by Saryu Nayyar
The attack against Mimecast and their secure connection to Microsoft\'s Office 365 infrastructure ap...

Expert Commentary
Experts Insight On UN’s Environmental Program Breach-100K+ Employee Records Leaked
January 12 , 2021 by Saryu Nayyar
Ethical Hacking group Sakura Samurai\'s exposure of the United Nations Environment Program\'s git re...

Expert Commentary
CISA Cites Likely Russian Solar Winds Involvement - Expert Perspective
January 06 , 2021 by Saryu Nayyar
The cold war isn\'t over. It just moved to the internet. And the SolarWinds attack is a perfect ex...

Expert Commentary
Experts Reacted On Payment Processor Juspay Leaks 100 Mil+ Cardholders' Data
January 05 , 2021 by Saryu Nayyar
The Juspay breach shows that 2021 is starting off Business as Usual for malicious actors, with long...

Expert Commentary
1 Mil Gamers’ Acctounts Compromised By Major Gaming Firms – Expert Perspectives
January 05 , 2021 by Saryu Nayyar
User credential theft is nothing new. Phishing and Social Engineering schemes have been targeting...

Expert Commentary
Multi-Platform Credit Card Skimmer Discovered- Expert Offers Perspective
January 04 , 2021 by Saryu Nayyar
Sansec\'s revelation of a Magecart style skimmer that can infect multiple platforms is another indic...

Expert Commentary
EU’s Digital Services Act And Digital Markets Act – Experts' Perspectives
December 17 , 2020 by Saryu Nayyar
The concept behind these two new pieces of legislation is sound. Sure, users should be able to unins...

Expert Commentary
Spotify Pushes Pw. Reset After Leak - Gurucul, Point3 And YouAttest Perspectives
December 14 , 2020 by Saryu Nayyar
The Data Breach Notification from Spotify and related password reset, highlights how software bugs a...

Expert Commentary
Randstad Attack - Expert Insights
December 08 , 2020 by Saryu Nayyar
The attack on Randstad follows a now-familiar pattern. The attackers get in, exfiltrate valuable dat...

Expert Commentary
Philly Food Bank Hit With $1m Cyber Attack
December 03 , 2020 by Saryu Nayyar
The cyber theft from Philabundance follows the classic Business Email Compromise model. It\'s unfor...

Expert Commentary
DarkIRC Bot Hits Oracle WebLogic vuln, Steals Bitcoin, Hijacks Browsers – Experts Perspective
December 02 , 2020 by Saryu Nayyar
Attackers are constantly evolving their methods, often incorporating exploits shortly after they\'re...

Expert Commentary
New Zealand's Privacy Laws 2020 - Expert Insight
December 01 , 2020 by Saryu Nayyar
New Zealand\'s new personal privacy laws went into effect on 30 November 2020. These new laws affec...

Expert Commentary
Experts Warning And Advice On Black Friday Threats
November 25 , 2020 by Saryu Nayyar
1. Malicious actors know people are more likely to open emails with timely subject lines, and the CO...

Expert Commentary
Worst Passwords Of 2020 – Experts Perspectives
November 19 , 2020 by Saryu Nayyar
The top 200 most common passwords report, sadly, has no real surprises. Security professionals have...

Expert Commentary
Resident Evil Developer Capcom Breached – Experts Perspective
November 17 , 2020 by Saryu Nayyar
The recent Capcom breach is damaging for them on multiple levels. The loss of customer information,...

Expert Commentary
US Mental Health Provider Email Breach; Experts Reaction
November 16 , 2020 by Saryu Nayyar
The recent breach of People Incorporated Mental Health Services follows an all too familiar pattern,...

Expert Commentary
Microsoft Advises To Stop Using Phone-Based 2FA – Security Expert Reaction
November 13 , 2020 by Saryu Nayyar
Microsoft\'s recommendation to move away from Phone and SMS based multi-factor authentication is tim...

Expert Commentary
Animal Jam Kids' Virtual World Hit By Data Breach, Impacting 46m Accounts: Expert Commentary
November 13 , 2020 by Saryu Nayyar
The data breach at Animal Jam is concerning mostly because many of the accounts belong to children....

Expert Commentary
CEO Perspective On Muhstik IoT Botnet Infecting Cloud Servers & Mining Crypto
November 12 , 2020 by Saryu Nayyar
Lacework\\\\\\\'s analysis of the Muhstik botnet is interesting on several levels, especially in its...

Expert Commentary
Experts Reaction On Latest Mashable Data Breach
November 10 , 2020 by Saryu Nayyar
The Mashable breach represents another case where potentially important data has fallen into the att...

Expert Commentary
Ransomware hits Brazil’s Superior Court & other Federal agencies – Security Experts Perspectives
November 09 , 2020 by Saryu Nayyar
The attack against Brazil’s Superior Court is another example of a high profile target suffering a...

Expert Commentary
New Gitpaste-12 Worming Botnet Spreads via GitHub And Pastebin – Experts Perspectives
November 06 , 2020 by Saryu Nayyar
The Gitpaste worm identified by Juniper Labs is interesting both in how it\'s deployed and it\'s tar...

Expert Commentary
Experts On RegretLocker Ransomware Strikes Windows Virtual Desktops
November 05 , 2020 by Saryu Nayyar
The newly discovered RegretLocker ransomware is another example of how sophisticated malware authors...

Expert Commentary
34 Mil Records Exposed Online; Attack On Gold Bullion Broker
November 03 , 2020 by Saryu Nayyar
The sale of 34 million stolen user records shows the kinds of business model cybercrime has evolved...

Expert Commentary
Home Depot Data Breach/Leak – Experts Insight And Next Steps
November 02 , 2020 by Saryu Nayyar
The data release from some of Home Depot\'s customers in Canada is unusual, in that the breach seems...

Expert Commentary
Finnish Psych Patients Blackmailed Following Breach - CEO Perspective
October 28 , 2020 by Saryu Nayyar
Ransomware and data theft attacks have become the norm for cybercriminals. Stealing patient records...

Expert Commentary
Experts Reacted On US Indicts Sandworm, Russia's Most Destructive Cyberwarfare Unit
October 20 , 2020 by Saryu Nayyar
Reports by the UK and US governments that Russia\'s GRU was conducting reconnaissance to enable cybe...

Expert Commentary
300 Million Credit Cards From Dickey’s BBQ Customers Sold On Dark Web – Expert Perspective
October 16 , 2020 by Saryu Nayyar
The Credit Card dump of Dickey\'s BBQ customers’ cards highlights a number of issues. The first i...

Expert Commentary
Microsoft take-down of Trickbot ransomware bot, Security Experts Reacted inline with Election Security
October 14 , 2020 by Saryu Nayyar
The coordinated effort to take down TrickBot shows that there is hope to counter malicious actors at...

Expert Commentary
Experts On News That Intcomex Suffers Breach
October 14 , 2020 by Saryu Nayyar
It is no secret that cybercriminals are becoming more sophisticated and more aggressive, leading to...

Expert Commentary
MosaicRegressor UEFI malware defies deletion - Experts Perspective
October 09 , 2020 by Saryu Nayyar
The ability to embed malware in the UEFI (Unified Extensible Firmware Interface) has existed for sev...

Expert Commentary
Emotet Malware Named One Of Today's Most Prevalent Threats
October 08 , 2020 by Saryu Nayyar
The Cybersecurity and Infrastructure Security Agency (CISA) warning about the surge in Emotet malwar...

Expert Commentary
New pastebin-like service used in multiple malware campaign - Expert comments
October 06 , 2020 by Saryu Nayyar
Malicious actors have been evolving rapidly, adopting commercial tools and business models to their...

Expert Commentary
Ransomware Attack On Health Tech Firm Hits C-19 Clinical Trials - Security Experts Perspectives
October 06 , 2020 by Saryu Nayyar
Ransomware attacks are not slowing down, and the recent attack on eResearch Technology, shows that n...

Expert Commentary
Mirai Malware’s Source Code’s Evolved To Hit New Targets – Expert Perspective
October 03 , 2020 by Saryu Nayyar
Malware developers have been adapting commercial software development paradigms for a while. In a w...

Expert Commentary
KPMG poll: 4 in 5 consumers would abandon a co. that’s been breached, 9 in 10 “leery” of sharing data - experts perspective
September 29 , 2020 by Saryu Nayyar
The recent study by KPMG of Canadian users highlights a couple of important points. First, users ar...

Expert Commentary
Experts Reacted On Universal Healthcare Services Cyber Attack
September 29 , 2020 by Saryu Nayyar
The suspected ransomware attack against Universal Health Services is just another example of a high-...

Expert Commentary
Luxottica (Ray-Ban, Sunglass Hut, LensCrafters etc.) Confirms cyberattack – Experts Reaction
September 24 , 2020 by Saryu Nayyar
The apparent ransomware attack against Luxottica is more concerning for the likely infection vector...

Expert Commentary
CISA Warns Of LokiBot Uptick – Expert's Perspective
September 23 , 2020 by Saryu Nayyar
The recent advisory on the LokiBot malware is another indication of how malware authors have turned...

Expert Commentary
TikTok, WeChat Banned – Privacy And Cybersecurity Experts Reaction
September 21 , 2020 by Saryu Nayyar
The Executive Order to block TikTok and WeChat is no surprise, as it was announced some time ago. Th...

Expert Commentary
Razer data leak – Experts Reaction
September 15 , 2020 by Saryu Nayyar
The breach of Razer\'s database doesn\'t appear to have revealed any vital user information and they...

Expert Commentary
Experts Reaction On Staples Data Breach
September 15 , 2020 by Saryu Nayyar
While the Staples breach appears to be \"low impact\" in that no sensitive customer information was...

Expert Commentary
Expert Comment: Emotet Attacks
September 10 , 2020 by Saryu Nayyar
The warning from CERT-FR on the increased Emotet malware activity is another indication of how sophi...

Expert Commentary
Experts On American Payroll Assn attack; Fed. Acquisition Supply Chain Security Act
September 02 , 2020 by Saryu Nayyar
Government acquisition and supply contracts are a complex issue. Every organization needs to balanc...

Expert Commentary
Experts On American Payroll Assn attack; Fed. Acquisition Supply Chain Security Act
September 02 , 2020 by Saryu Nayyar
The American Payroll Association breach shows a number of places where the industry as a whole still...

Expert Commentary
BlueLeaks Exposed Some COVID-19 Patients’ IDs - Cybersecurity Experts Perspective
August 24 , 2020 by Saryu Nayyar
Security breaches are the \"Gift that keeps on giving\" in the worst possible way. It should come a...

Expert Commentary
Experts on News: Experian scam leaves critical data on over 24 million customers exposed
August 21 , 2020 by Saryu Nayyar
Experian is in the headlines again for suffering a major cyberattack. As a consumer credit reporting...

Expert Commentary
Experts Commentary: 235 Million Instagram, TikTok And YouTube User Profiles Exposed In Massive Data Leak
August 20 , 2020 by Saryu Nayyar
The data exposure at Social Data is another example of careless configuration management. Fortunate...

Expert Commentary
Konica Minolta ransomware attack - experts perspective
August 18 , 2020 by Saryu Nayyar
Hybrid attacks like the one Konica Minolta suffered present a different security challenge than the...

Expert Commentary
Canada Revenue Agency shuts down after cyberattack - hacked login credentials at fault
August 18 , 2020 by Saryu Nayyar
There are several lessons to be learned from this attack against Canadian government sites. Here, t...

Expert Commentary
US Commerce Dept. seeks enhanced EU-U.S. Privacy Shield
August 13 , 2020 by Saryu Nayyar
Europe\'s top court struck down Privacy Shield, and Safe Harbor before it, is really no surprise. T...

Expert Commentary
ProctorU Breach: Expert Commentary
August 11 , 2020 by Saryu Nayyar
This is a case of who’s watching the watchers! The organization charged with watching students to...

Expert Commentary
Experts Reaction On 900 Pulse Secure Enterprise VPN Passwords Leaked
August 06 , 2020 by Saryu Nayyar
The reported release of user information, IP addresses, and passwords from over nine hundred Pulse S...

Expert Commentary
Cyberattacks Costing Companies Nearly $4 Million Per Breach - Experts On Report
July 31 , 2020 by Saryu Nayyar
The latest edition of the IBM/Ponemon report shows that data breaches remain costly for organization...

Expert Commentary
Expert Commentary: Drizly Breach And Its Implications
July 29 , 2020 by Saryu Nayyar
The reported Drizly data breach is interesting for what it shows about attacker dwell time - the tim...

Expert Commentary
Cybersecurity experts on research findings on poor cybersecurity practices of US election Officials
July 28 , 2020 by Saryu Nayyar
With the stakes so high in the 2020 Election season, it is not a matter of \"If\" the election syste...

Expert Commentary
Expert Reaction On CouchSurfing Investigates Data Breach
July 24 , 2020 by Saryu Nayyar
The release of information from the popular CouchSurfing website is of some concern to their million...

Expert Commentary
Cybersecurity Experts on findings of Skybox Security 2020 Vulnerability and Threat Trends Report
July 23 , 2020 by Saryu Nayyar
The report from Skybox shows that cybercriminals are no stranger to the adage \'Don\'t waste a crisi...

Expert Commentary
Expert Reaction On Millions of LiveAuctioneers Passwords for Sale
July 14 , 2020 by Saryu Nayyar
Account compromise attacks continue to net profits to cybercriminals. You should always use unique u...

Expert Commentary
Experts On IBM's Cyber Resilient Org Report
July 01 , 2020 by Saryu Nayyar
There are some interesting takeaways from the latest Cyber Resilient Organization Report, done by Po...

Expert Commentary
Comment: Potentially Sensitive Data From Over 200 US Police Departments Exposed Online By 'BlueLeak's
June 23 , 2020 by Saryu Nayyar
It\'s no surprise that Law Enforcement was the target of this data breach. With the current civil a...

Expert Commentary
Ransomware/exfiltration Campaign Targets Remote Access, Resists Resolution Through Data Restoration
June 22 , 2020 by Saryu Nayyar
With the increase in personnel working remotely over VPN or remote desktop tools such as Citrix, RDP...

Expert Commentary
Cybersecurity Expert Reaction On Postbank Replaces 12 Million Bank Cards After Insider Theft
June 16 , 2020 by Saryu Nayyar
When it comes to insider threats, insiders with privilege inflict the most damage. In this case, pri...

Expert Commentary
70%~ of Organizations will increase post-COVID-19 cybersecurity budgets - 4 cybersecurity experts on LearnBonds findings
May 21 , 2020 by Saryu Nayyar
In the wake of COVID-19, businesses have had to quickly change their long-standing, limited remote w...

Expert Commentary
UK airline easyJet data breach impacts 9M customers - expert commentary
May 20 , 2020 by Saryu Nayyar
This data breach is another sobering lesson that should serve as a warning to forward-looking cybers...

Expert Commentary
Industry Experts On Verizon DBiR 2020
May 19 , 2020 by Saryu Nayyar
Looking these results, we see that organized crime is the top actor, credential theft remains a top...

Expert Commentary
Experts Comments On Cyberspace Solarium Commission Report - US At Risk Of A "Catastrophic cyber-attack"
March 13 , 2020 by Saryu Nayyar
This new report from The Cyberspace Solarium Commission comes as a stark reminder about the increasi...

Expert Commentary
Experts Reactions on CEOs Are deleting Their Social Media Accounts To Avoid Hacking
January 30 , 2020 by Saryu Nayyar
The fact that CEOs are becoming more aware of the danger of cyberattacks is encouraging. With the st...

Expert Commentary
Major Flaw In Windows 10 Discovered By The NSA - Experts Reactions
January 15 , 2020 by Saryu Nayyar
Unpatched vulnerabilities like this are actually some of the most dangerous types of cyber threats b...

Expert Commentary
Experts On 50K Exposed In Minnesota Hospital Breach
January 09 , 2020 by Saryu Nayyar
Medical records and other healthcare patient data are a treasure trove for criminals, and this is ju...

Expert Commentary
2020 Cybersecurity Landscape: 100+ Experts' Predictions
December 25 , 2019 by Saryu Nayyar
BEC impacts finance teams more than IT, so there are few, if any, controls in place to identify and...

Expert Commentary
Experts Comments: CyrusOne Hit By Ransomware Attack
December 06 , 2019 by Saryu Nayyar
The specifics of this attack are still not entirely clear, so the lessons learned are still to be id...

Expert Commentary
Experts Reaction On 1.2 Billion Records Were Found Online On An Exposed, Unsecure Single Server
November 25 , 2019 by Saryu Nayyar
At 1.2 billion records exposed, this is one of the largest data leaks ever, but of course they just...

Expert Commentary
Local Authorities Hit By 800 Cyber Attacks Every Hour
October 07 , 2019 by Saryu Nayyar
Local government networks are often seen as low hanging fruit by cyber criminals. Smaller government...

Expert Commentary
Ex-Yahoo Engineer Hacked Accounts To Steal Pornography
October 02 , 2019 by Saryu Nayyar
This is another blemish against Yahoo’s cybersecurity reputation. The reason that insider threats...

Expert Commentary
Experts Comments On 281 Arrested In Worldwide BEC Crackdown
September 12 , 2019 by Saryu Nayyar
One of the reasons that fraud is becoming increasingly difficult to detect is because of the vast di...

Expert Commentary
CirclCI Data Breach Exposed Customer GitHub And Bitbucket Logins
September 10 , 2019 by Saryu Nayyar
Third party vendors are a type of insider threat that some organisations never consider. Supply chai...

Expert Commentary
Texas Cyber Attack Has Taken 23 Government Agencies Offline
August 20 , 2019 by Saryu Nayyar
This is the latest reminder that ransomware attacks are so common because they’re usually profitab...

Expert Commentary
More Problems For British Airways - Now An e-ticketing Vulnerability Has Been Discovered
August 15 , 2019 by Saryu Nayyar
This incident, so soon after the devastating data breach that British Airlines recently suffered, sh...

Expert Commentary
700k Customer Records Leaked Choice Hotels Data Breach
August 15 , 2019 by Saryu Nayyar
This breach is a great example of the significant - and often underestimated - security risk that th...

Expert Commentary
Security Lapse Exposed Weak Points On Honda’s Internal Network
August 02 , 2019 by Saryu Nayyar
This attack is a reminder that, unfortunately, too many organisations are still not getting the cybe...
CEO