Data security breaches

Get the latest information on enterprise security data breaches. Learn about data breach laws and regulations, best practices for data breach notification and response plans, the risks of exposed corporate data and personally identifiable information.

September 23, 2021 23 Sep'21
Autodiscover flaw in Microsoft Exchange leaking credentials

Guardicore found that exploiting a design flaw in Autodiscover allowed it to capture 372,00 Windows domain credentials and nearly 97,000 unique application credentials.
September 22, 2021 22 Sep'21
Turla deploying 'secondary' backdoor in state-sponsored attacks

Cisco Talos said hackers connected to the Russian APT Turla are using a new piece of malware to get persistent access on infected networks in the U.S., Germany and Afghanistan.
September 22, 2021 22 Sep'21
Marcus & Millichap hit with possible BlackMatter ransomware

The real estate firm confirmed in a SEC filing this week that it had suffered a recent cyber attack but claimed there was no 'material disruption' to its business.
September 14, 2021 14 Sep'21
SolarWinds CEO: Breach transparency 'painful' but necessary

SolarWinds CEO Sudhakar Ramakrishna discusses his company's ongoing breach investigation, shares lessons learned from the attack and cautions IT pros on zero trust.

Bring yourself up to speed with our introductory content

identity theft

Identity theft, also known as identity fraud, is a crime in which an imposter obtains key pieces of personally identifiable information (PII), such as Social Security or driver's license numbers, to impersonate someone else. Continue Reading
How to find ransomware cyber insurance coverage in 2021

It's harder to buy cyber insurance coverage for ransomware attacks in 2021. Our expert reviews what to look for in a policy, how to qualify and how to get the most out of it. Continue Reading
industrial espionage

Industrial espionage is the covert, and sometimes illegal, practice of investigating competitors to gain a business advantage. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

3 components to consider when selecting an MDR service

In the market for an MDR service? Read up on three considerations to keep in mind and questions to ask potential providers before making a decision. Continue Reading
Should companies pay ransomware, and is it illegal to?

It's not a question of whether a company will fall prey to ransomware, but when. Executives should focus on deciding to pay or not pay the ransom and on any legal fallout. Continue Reading
Why companies should use AI for fraud management, detection

AI is involved in many cybersecurity processes. Now it's making inroads in fraud management and detection. The benefits, however, are not without AI's nagging bias challenge. Continue Reading

Learn to apply best practices and optimize your operations.

4 healthcare risk management tips for secure cloud migration

From improving the security posture and updating threat modeling to securing cloud data, learn about four risk management tips for healthcare organizations migrating to cloud. Continue Reading
How to handle social engineering penetration testing results

In the wake of conducting social engineering penetration testing, companies need to have a plan ready to prevent or minimize phishing, vishing and other attacks. Continue Reading
How to ethically conduct pen testing for social engineering

Author Joe Gray explores his interest in pen testing for social engineering, what it means to be an ethical hacker and how to get started in the career. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

How to prevent ransomware: 6 key steps to safeguard assets

Ransomware can cost companies billions in damage. Incorporate these ransomware prevention best practices to keep attackers out. Continue Reading
How to remove ransomware, step by step

Prevention is key when it comes to ransomware infections. But there are ways to recover data if a device is compromised. Uncover four key steps to ransomware removal. Continue Reading
Top 3 ransomware attack vectors and how to avoid them

Adversaries use three common entryways to infect systems with ransomware. Learn how to prevent your organization from falling victim to an attack. Continue Reading