Digital identity verification now facilitates many processes. By using physical ID attributes digitally, documents can be checked online and the person verified in this way. There are now numerous solutions for this – a wide range of methods can be found on ident platforms that can be used for different use cases. However, digital verification …
Ransomware attacks on healthcare organizations are noticeably on the rise. However, paying the ransom is no guarantee of getting encrypted data back. Hacking attacks on the healthcare industry pose a real threat. This is now confirmed once again by Sophos’ industry analysis, “The State of Ransomware in Healthcare 2022.” According to the report, there has …
The threat situation for companies has never been so high and at the same time so complex – not least due to the effects of the war of aggression in Ukraine. Almost daily, news about data breaches and hacker attacks can be found in the national media, but these only represent a fraction of what …
With cloud databases, much of the responsibility for security lies in the hands of the using company. Those who choose the right options directly during configuration stay on the safe side. The use of cloud databases is commonplace in many companies, and the advantages are compelling: the performance of the database systems is easily scalable, …
What does it cost when hackers steal a company’s data or ransomware renders systems unusable? That’s the question IBM’s annual Cost of a Data Breach study attempts to answer. The latest report shows that costs keep rising and customers are footing the bill. That’s because 60 percent of companies that experienced a security incident raised …
APT hackers avoid verifiable events, error messages, or service interruptions and target data theft or system monitoring over an extended period of time. After that, they usually disappear again unnoticed. Is it possible to detect something that should remain silent and unnoticed? APT hackers and malware are more widespread and sophisticated than ever. For some …
JFrog introduces new integrations for JFrog Xray with ServiceNow’s Lightstep Incident Response and Spoke products for IT service management. IT executives will use them to gain real-time visibility into security vulnerabilities and compliance issues. Given the high velocity of today’s business operations, successfully securing the software supply chain requires efficient cross-team collaboration to address security …
Faster Response to Software Security Vulnerabilities Read More »
Much data is still sent within and between companies by e-mail or “old-fashioned” via FTP. It travels from one recipient to the next via cloud applications from the “shadow IT” category or ends up on some server on the Internet. Without this “data in motion” there is no collaboration – solutions like the Qiata appliance …
Security expert Sophos has found that the average duration of undetected, attackless sneak peeks by cybercriminals on corporate networks has risen to 34 days. Smaller businesses and the education sector were particularly affected, it said. Sophos has published its “Active Adversary Playbook” for 2022. It details the behavior of cybercriminals observed by the “rapid response …
From the EU Commission’s point of view, NIS 2 (Network and Information Security Directive 2) will lead to a strengthening of EU-wide cyber security and resilience. However, business associations are critical of the planned directive and are calling for adjustments to the reporting requirements. What is needed, they say, is an unbureaucratic reporting system for …
Who will be responsible for cyber security in the future, and what measures are appropriate to ensure it? The German Federal Ministry of the Interior (BMI) today presented its cybersecurity agenda. It certainly offers a lot of fuel for the fire. Federal Minister of the Interior Nancy Faeser (SPD) has proposed an amendment to the …
In IT security, a constant battle rages between attack and defense. Attackers are constantly presenting us with new threats and challenges. Among other things, hackers like to use trusted platforms and protocols, pentesting tools as well as LOLBINs to cleverly bypass security controls. With steganography, people usually don’t realize that other, encrypted information is hidden …
The Russia-Ukraine conflict is not a purely military confrontation but marks the beginning of a new generation of cyberattacks. The cyberwar also affects state organizations and financial institutions outside Ukraine, which need to arm themselves against any attacks in the short term. On February 24, Russia started a war with Ukraine. At least the visible …
To ensure successful and sustainable digitization in companies and public authorities, it is not only essential to secure technical and organizational measures relating to IT systems and processes, but also to adequately secure buildings and premises. The BSI’s Management Report 2021 shows that “information security is the prerequisite for successful and sustainable digitization.” BSI …
Physical Protection – Protect Your Data and Information! Read More »
Virtual Private Networks – VPNs for short – have experienced a boost with the Corona crisis: Ideally, home office employees should have encrypted and secure access to the corporate network. However, this only works if the VPN provider is trustworthy. VPN connections have great advantages: they disguise data traffic on the Internet and protect against …
Privacy and data protection on the Internet: Eyes on the VPN choices Read More »
Conventional security solutions often cannot adequately detect advanced cyber attacks because the attackers remain inconspicuous for a long time and only strike visibly when they have worked with relevant systems. Extended Detection and Response (XDR) solutions help detect intruders early – but they are only effective when used with experienced security analysts. Corona, disrupted supply …
Security vulnerabilities are one of the most important gateways for cybercriminals, yet companies often take days or weeks to close them. The reason is usually vulnerability management that offers too little automation and takes up too many network resources – especially with remote work, this is a major problem. Solutions with peer-to-peer (P2P) technology provide …
Since the outbreak of the Ukraine war, states and companies have not only been alarmed by military maneuvers. Concerns about politically motivated cyberattacks are also spreading in the digital space – and there are constant reports of new attacks. Attacks on U.S. utility companies and industrial facilities and Ukrainian energy companies are just two of …
Three Measures to Strengthen IT Security and Resilience Read More »
In its new Entra product family, Microsoft is focusing on secure access to networked worlds. To this end, Entra includes identity and access management, cloud infrastructure entitlement management, and identity verification. According to a blog post by Joy Chik, corporate vice president of identity at Microsoft, Entra is intended to pursue a new, comprehensive understanding …
Identity and Access Functions Combined: Microsoft Introduces Entra Product Family Read More »
In the modern workplace, data is the lifeblood for businesses and protecting it is correspondingly important. And database backups are one of the common methods database administrators (DBAs) use to ensure the continued availability of data: This involves copying data and schemas from a database and storing them in another location from which they can …
Database Security: Costs, Benefits and Risks of Database Backups Read More »
