Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

As an employer, you have both a moral and legal obligation to shore up sensitive information about your employees. Sensitive information includes genetic and biometric data, medical records, SNNs (social security numbers), and criminal history records, just to name a few. Fail to do so, and you will open yourself up to loads of risk. Hackers are constantly on the hunt for applicant and employee data that they can further sell on the dark web or use to perpetrate fraud.

According to the latest Ransomware Spotlight Year End report, 56% of the 223 older vulnerabilities identified prior to 2021 are still actively exploited and used as the entry points to ransomware attacks. This warrants the question of why enterprises aren’t patching vulnerabilities regularly.

On September 29, Microsoft Security Threat Intelligence reported two significant zero-day vulnerabilities being exploited in the wild. The two vulnerabilities, named “ProxyNotShell”, affect Microsoft Exchange Server 2013, Exchange Server 2016, and Exchange Server 2019.

October is Cybersecurity Awareness Month, which is a good time for everyone to re-evaluate their security procedures and technologies, and the role that they want in their personal and corporate cybersecurity practices. This year’s theme is “See Yourself in Cyber.” At WatchGuard, we take that to mean that all of us, regardless of our role or responsibility, can make a positive contribution to a safer and more secure online world.

Digitalization has catapulted customer purchasing transactions to an unprecedented level. Online transaction payment methods have become so convenient that they have led to an unstoppable buying spree by consumers. These days there is nothing that can stop a desirous buyer from purchasing, probably not even when ‘he is not carrying plastic money or cash, as he has the option to pay using card data.

There’s plenty of loaded terminology and buzzword bingo when it comes to the latest advances in cloud application delivery. Especially when it comes to multi-cloud – which should merely mean multiple cloud instances when modern cloud applications really leverage multiple hybrid IT operating models, atop both existing business silos and newer microservices application workloads.

Each business today requires user data to provide a better customer experience. The widespread use of data has triggered cyberattacks so much that they have become a part of software too. As per stats, there were 121 ransomware attacks in the first half of 2021. And these attacks are primarily in the form of fake software. This is where code signing and Enterprise Code Signing Certificate come into the picture.

The 1Password SCIM bridge is a powerful tool for businesses that want to use a password manager alongside an identity provider like Okta, Rippling, or Azure Active Directory. But if you haven’t used the SCIM bridge before, you might be wondering: What exactly is it? And does my company need a SCIM bridge?

With a growing number of organizations offering a remote or hybrid working option, many people are taking their workspaces home. Your team needs to know password hygiene best practices to ensure their home work environment is secure and protected. Sloppy employees who are not knowledgeable about password hygiene can pose a risk to themselves and their company. In fact, 82% of breaches involved a human element, according to Verizon’s 2022 DBIR.

Poor password practices are one of the biggest threats to enterprise cybersecurity. Stolen or compromised passwords cause over 80% of successful data breaches. When employees use weak passwords, reuse passwords across accounts, or store their passwords insecurely (sticky notes, spreadsheets, etc.), they put their employers at risk. Organizations often leverage enterprise password managers to alleviate poor employee password practices.