Trend Micro warns that the Russian state-sponsored threat actor Earth Koshchei (also known as “APT29” or “Cozy Bear”) is using spear phishing emails to trick victims into connecting to rogue Remote Desktop Protocol (RDP) relays. “Earth Koshchei’s rogue RDP campaign reached its peak on October 22, when spear-phishing emails were sent to governments and armed forces, think tanks, academic researchers, and Ukrainian targets,” Trend Micro explains.

Loyalty programs are so ubiquitous today that most of us would be hard-pressed to count how many we’ve signed up for. Earning a complimentary service or item is always a friendly reminder that you are valued as a client. However, that warm feeling could quickly change when you find that not only was the freebie already redeemed by someone else, but all your account details have been compromised. At that point, you will likely not have any warm feelings left towards that brand.

In today’s rapidly evolving digital landscape, IT leaders are under constant pressure to deliver outcomes that align directly with business value. Gone are the days when technology decisions were made in isolation. Today, every IT investment must contribute to operational efficiency, cost savings, security, and scalability—all while empowering the business to innovate and grow.

In today’s competitive job market, employees are increasingly seeking a sense of purpose and belonging in their work environments. As McKinsey reports, purpose has become a pivotal factor in employee retention. IT leaders who fail to connect their teams’ day-to-day tasks to a broader mission risk losing top talent to organizations that do.

The modern world relies on Application Programming Interfaces (APIs). They allow applications to communicate with each other, servers, and consumers to facilitate data sharing and simplify application development. Without them, the internet would be unrecognizable. However, APIs also present a considerable risk to organizations. If left unsecured, they can be a gateway for attackers to access critical data and services. Protecting APIs is extraordinarily important, but it can be expensive.

Employees often need to access various online services for work and personal purposes. Whether signing up for industry newsletters, registering for webinars, or using online tools, a corporate email address is a convenient way to manage professional communication. However, this seemingly harmless habit can expose employees and their organizations to significant risks.

Mock data is an essential tool in software development and testing, offering realistic and secure alternatives to sensitive production data. Beyond traditional testing, mock data is now a cornerstone for AI development, where large datasets are critical for training and validation. By mimicking the properties of real-world data while ensuring privacy and compliance, mock data enables organizations to innovate without compromising security or trust.

As we get to the end of 2024, we thought we’d look at all the significant updates Cyberint (now known as Check Point Infinity External Risk Management) has introduced over the year. These new features are designed to help you better manage your cyber risks and improve your overall security posture.