If you are involved with cyber security, you must have heard log auditing. In this article we discuss the importance and benefits of log auditing and how it can help improving the security posture of your networks. The definition of audit log (also known as audit trail) is quite straightforward. When the system is applied a change, it leads to a parallel one in the behaviour of the system. This change in the behaviour must be recorded in an audit log.

The numbers are shocking. According to the 2019 The State of Work Report, employees spend just 40% of their workday on primary tasks. A Gallup poll showed that disengaged employees cost companies in the United States between $450 and $550 billion per year, and highly engaged teams are 21% more profitable than others. So how can an organization find out what employees are doing when they are on the clock so they can take steps to increase engagement and boost productivity?

The British holiday firm, Truly Travels, has admitted to suffering a data breach due to an unsecured Amazon Web Services server. The data in the unsecured AWS server was left open to the internet for over three years, exposing the personal details of over 200,000 customers.

As the digital economy has grown and changed, cybersecurity has become an integral part of operating nearly any successful business. The Chief Information Security Officer (CISO) is at the forefront of the modern cybersecurity organization, and CISOs have to adapt to the changing times in front of them.

Payment services that operate electronically should adopt technologies that guarantees the safe authentication of the user and reduces, to the maximum extent possible, the risk of fraud. In order to achieve this, the European Union in 2007 passed the Payment Services Directive (PSD). The aim of this legislation is to regulate payment services and payment service providers throughout the European Union (EU) and European Economic Area (EEA).

The number of fraudulent email circulations seems to grow with each passing day. Scammers use email fraud with the main motive of deceiving users for their gain. This is especially true in the financial institutions where attackers use domain spoofing schemes to send emails to employees or customers.

Logs are the cornerstone in today’s cybersecurity monitoring, investigation, and forensics. According to a Fortune 500 report, an organization’s IT infrastructure can generate up to 10 Terabytes of log data per month. In this post, we will learn about log aggregation and monitoring; then analyze how they can help businesses to strength their cybersecurity posture.

A selection of this week’s more interesting vulnerability disclosures and cyber security news. What a week of news this has been, more MageCart, a few large take downs, and some surprising breaches. We start with a first, the first ‘hack’ from space.

Google's Project Zero security researchers recently revealed that they found several malicious sites that planted malware onto people's iPhones for years. Researchers claim that if iPhone users visited one of the hacked websites, their messages, photos, and location data could have been compromised by hackers.