In the first installment of our series on cyber resilience, we discussed what being a resilient organization means. In this installment, we'll explore why organizations need to consider how to become resilient, who's responsible for achieving this, and the processes organizations must have to prioritize actions and effectively spend their budgets.

In 2022, the Security team at Microsoft published a cybersecurity awareness campaign named “#BeCyberSmart”. Even though that was two years ago, the same best practices still apply. Cybersecurity is an important part of our daily lives and can enable us to accomplish more while keeping our data and identity protected.

In April 2023, the Office of the Superintendent of Financial Institutions (OSFI), Canada’s agency responsible for regulating financial institutions, released their Intelligence-led Cyber Resilience Testing Framework (I-CRT)1. Canada’s I-CRT framework is based on similar intelligence-led frameworks which have been used in other countries, such as the Bank of England’s CBEST framework2 and the European Union’s TIBER-EU3.

Innovative analysis of data breaches shows which attack vectors are being used and how they’re enabled, highlighting the roles phishing and credentials play. In light of the recent release of the Verizon Data Breach Investigations Report this week, we have delved into the findings to continue our coverage of important cybersecurity issues, specifically data breaches and phishing.

New data from Verizon makes it clear that the Education sector is under attack, but also breaks down which threat actions and patterns are used most. We’ve seen Education institutions become a major focus for cybercriminals and entities like the New York State Education Department and the FBI have issued warnings.

Sun Tzu once said, “If you know the enemy and know yourself, your victory will not stand in doubt.” Yet, despite global cybersecurity investment crossing $188 Billion and 93% of companies feeling cyber-secure, the data breaches in the US alone were up by 78% in 2023.

We’re excited to announce that Indusface has once again been recognized as a 2024 Gartner® Peer Insights™ Customers’ Choice for Cloud Web Application and API Protection (WAAP) for three consecutive years. What’s more, with a rating of 4.9, Indusface is the highest-rated WAAP and the only vendor to achieve a 100% customer recommendation rating, as reviewed by 102 large enterprises and midsize businesses worldwide.

Travel fraud is a growing concern within the industry, posing significant challenges to businesses and consumers alike. As travel becomes increasingly digital, the opportunities for fraudsters to exploit online transactions and reservations have also expanded. Research from global Edgar, Dunn & Company, on behalf of eNett, said in total, fraud costs the travel industry over $21 billion dollars annually, including $6 billion dollars in damages and $15 billion in overheads.

Data breaches are a constant threat these days. One click on a malicious link could send tons of customer information flying out the window. Even with all the strategies and tools to prevent them, unauthorized people keep gaining access to sensitive data. So, maybe it’s not a matter of whether your company will ever experience a data breach but about when. The million-dollar question is: will you be ready to respond effectively against hackers when the time comes?

‍The process of achieving goals, whether long-term, short-term, personal, or professional, starts with harnessing the available relevant data. In fact, the more information gleaned beforehand, the more likely the mission will be a success. However, the details required for devising an effective plan exist at various granular levels, some overarching, focusing on the broader elements, and others more minute.