Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

October 2022

The 443 Podcast Episode 215 - CISA's Cybersecurity Performance Goals

This week on the podcast we cover CISA's freshly-released Cybersecurity Performance Goals (CPGs) designed to help smaller organizations bridge the gap between frameworks and practical implementation. After that, we discuss a new bill working its way through the US Senate designed to address open source software security risks. Finally, we end with a research post from Microsoft on the evolution of an interesting malware campaign.

Why Do You Need a Cybersecurity Vendor?

Cybersecurity is an issue that’s becoming more and more difficult for SMBs to manage on their own. As a result, MSPs are on the rise. Data from Canalys indicates that the cybersecurity managed services business grew by 18% in 2021, driven by the combination of the increasing sophistication of cyber threats and the shortage of dedicated cybersecurity personnel, which makes the situation unscalable for SMBs and midsize companies who often hire an external MSP to help solve these issues.

Webinar: Top Security Threats Worldwide: Q2 2022 - 20 October 2022

Join WatchGuard CSO Corey Nachreiner and Security Engineer Trevor Collins as they cover the latest Internet Security Report from the WatchGuard Threat Lab. In this session, Corey and Trevor will dive into the attack trends and latest malware variants targeting WatchGuard Firebox and Endpoint customers worldwide.

How MSPs can help clients keep their software up to date

Unpatched software vulnerabilities continue to be the most widely used attack vector. There are several factors behind this: SMBs are implementing new software applications in their infrastructure more than ever to simplify business operations and be more efficient. But this reality is changing their organizational landscape, adding more complexity to their security posture.

The 443 Episode 214 - Ransomware TTPs Deep Dive

This week on the podcast, we cover another remote code execution vulnerability that looks extremely concerning on the surface but might be less serious in reality. After that, we cover two research articles by Microsoft on ransomware campaigns including defensive takeaways for all organizations The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.

What are partner expectations regarding the growth of their managed cybersecurity services in 2022?

Cybercriminals are increasingly agile and organized – exploiting new technologies and tailoring attacks. The increasing complexity of cyber threats has driven the trend toward outsourcing one or more of an organization’s security operations.

Cybersecurity Awareness Month: Recognize and Report Phishing

While phishing attacks are nothing new, the methods used to execute them are constantly evolving. Today, hackers are taking advantage of automation and other advanced techniques to increase the scale of phishing campaigns and better target victims. In this video, we dive into the importance of recognizing and reporting phishing attempts.

Cybersecurity Awareness Month: The Importance of Recognizing and Reporting Phishing Attempts

The theme of this year’s Cybersecurity Awareness Month theme – “See Yourself in Cyber” – focuses on how both individuals and organizations can better protect themselves from cybercrime. One of the most important steps we can all take is learning to recognize and report phishing attempts.

Cybersecurity Insights: Secure Your Clients Against Ransomware

Ransomware attacks are dramatically increasing in number and frequency year over year, with high-impact, headline-making incidents continuously growing in volume and scope. Ransomware gangs are also looking at their primary victim’s business partners to pressure them into paying a ransom to prevent data leakages or business disruptions caused by the attack.

The 443 Podcast Episode 213 - Cyber Energy Star

This week on the podcast we cover a proposed program from the White House to create an Energy Star-like label for cybersecurity in consumer products. Before that, we cover two other updates from the federal government including a new open source tool from CISA and the latest reincarnation of Privacy Shield. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.

The 443 Podcast Episode 212 - Q2 Threats and Guilty CSOs

This week on the podcast, we focus on highlighting WatchGuard's Q2 Internet Security Report, covering the latest threat trends and what you can do to avoid them. However, we also pack in our security news segment, with an Optus breach update from an Australian IT and security expert and WatchGuard Partner, the latest on the UBER CSO trial, and a warning about the recent zero day Exchange exploit that some call ProxyNotShell. This week's episode is a long one, so grab a fresh coffee and listen during a long walk or drive.

90% of MSPs have suffered a cyberattack in the last 18 months

MSPs are being targeted by cybercriminals, as a single successful attack opens the door to multiple victims. This puts additional pressure on cybersecurity partners to step up the security services they offer their customers. The figures are worrying, as 9 out of 10 managed service providers state they have suffered a successful cyberattack since the start of the pandemic. This means MSPs are overtaking end users as the main target of malware, ransomware, phishing and other threats.

What do financial services look for in an MSP?

Data and money are two of the key assets that any industry needs to protect, and this is particularly important for financial institutions. Defending financial services against cyberattacks can be managed internally by relying on the organization's own systems; however, relying on an external cybersecurity provider offers a number of advantages that make a difference in the event of an attack.

WatchGuard's Firebox M690 Honored at the 2022 CyberSecurity Breakthrough Awards

We are proud to announce the WatchGuard Firebox M690 has been named “Next Generation Firewall Solution of the Year” in the sixth annual CyberSecurity Breakthrough Awards This prestigious awards program recognizes the world’s best information security companies, products and people.

Cybersecurity Awareness Month: The Importance of Strong Passwords, MFA, and Good Password Hygiene

A focus of this year’s Cybersecurity Awareness Month theme – “See Yourself in Cyber” – are the simple actions that individuals and organizations can take to better protect themselves against cybercrime. Two of those steps are using strong passwords and enabling multi-factor authentication (MFA). It’s easy to see why.

Universities take 207 days to detect a data breach

Although cyberattacks on higher education institutions date back years, there has been a spike in university cyberattacks over the last two years. Cybercriminals had taken advantage of the rapid transition to hybrid learning that higher education institutions have been forced to implement before they had time to strengthen their cybersecurity, which has left most of them exposed. This is yet another example of accelerated adoption of new technologies before security measures are in place.

WatchGuard Recognized at the 2022 TrustRadius Tech Cares Awards

We’re thrilled to share that, for the third year in a row, WatchGuard has been recognized in the 2022 TrustRadius Tech Cares Awards! This exclusive awards program honors companies that demonstrate compassion in every aspect of their organization and celebrates the best parts of the tech market and those working in the industry.

CRN Recognizes WatchGuard's Mark Villinski in its 2022 100 People You Don't Know But Should List

For the third year in a row, CRN has recognized a WatchGuard channel leader in its annual 100 People You Don’t Know But Should list. Mark Villinski, Field Marketing Manager of National Accounts, was included in this exclusive list that honors the IT channel’s unsung heroes who work tirelessly to support channel partners, while rarely stepping into the spotlight. CRN CEO Blaine Raddon has this to say.

See Yourself in Cyber - Welcome to Cyber Security Awareness Month

October is Cybersecurity Awareness Month, which is a good time for everyone to re-evaluate their security procedures and technologies, and the role that they want in their personal and corporate cybersecurity practices. This year’s theme is “See Yourself in Cyber.” At WatchGuard, we take that to mean that all of us, regardless of our role or responsibility, can make a positive contribution to a safer and more secure online world.

The 443 Podcast Episode 211 - Optus Opts Out of PII Protection

This week on the podcast, we cover an Optus data breach that could affect over 10 million Australian customers, and what they should do to protect themselves. We highlight a new malware-as-a-service (MaaS) information stealer that lowers the cost and technical bar for cybercriminals. Finally, we end with some good news about how the FBI was able to catch and arrest an ex-NSA insider trying to sell sensitive national security data to a supposed Russian adversary.