Information security threats

Mitigating information security threats is an ongoing battle. Here you'll find information on the latest malware and cyberattacks facing enterprises, from viruses and Trojans to social engineering techniques, as well as news, expert advice and learning tools to address these threats.

December 01, 2020 01 Dec'20
Ransomware attack shuts down Baltimore County schools

Ransomware incapacitated Baltimore County Public Schools' network just before Thanksgiving, but the school system said students' Chromebooks and Google accounts were not impacted.
December 01, 2020 01 Dec'20
Online education vendor K12 hit with ransomware, pays ransom

A spokesperson for K12 told SearchSecurity that based on the current status of the investigation, the attack did not affect student devices or school networks.
November 20, 2020 20 Nov'20
Risk & Repeat: Christopher Krebs out as CISA director

This week's Risk & Repeat podcast discusses President Trump's firing of CISA Director Christopher Krebs, which was a controversial move in the infosec community.
November 18, 2020 18 Nov'20
Sophos: Ransomware 'heavyweights' demand sky-high payments

Sophos principal research scientist Chet Wisniewski explains the presence of 'weight classes' in ransomware and offers his thoughts on its future.

Bring yourself up to speed with our introductory content

Try this cybersecurity quiz, test your cyberdefense smarts

Based on the November 2020 issue of Information Security magazine, this 10-question quiz lets you check your comprehensive knowledge of current security issues and earn CPE credit too. Continue Reading
malware

Malware, or malicious software, is any program or file that is harmful to a computer user. Continue Reading
Using the Office 365 Recommended Configuration Analyzer

Learn how this free PowerShell-based utility digs into your Office 365 security setup and offers guidance for administrators looking to stop the latest online threats. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

Security automation tools and analytics reshape SecOps efforts

To transition from being reactive to proactive in terms of cybersecurity threats, check out how SecOps teams can use security analytics and automation tools to make the change. Continue Reading
Technology a double-edged sword for U.S. election security

Technologies are being weaponized to undermine the 2020 U.S. presidential election, but IT systems will also help identify fraud and verify results in a contested election. Continue Reading
Microsoft 365 E3 vs. Office 365 E3: What admins need to know

The rumors of Office 365's death have been greatly exaggerated. Microsoft still offers an Office 365 E3 plan, but how does it stack up to the Microsoft 365 E3 plan? Continue Reading

Learn to apply best practices and optimize your operations.

8 benefits of a security operations center

A security operations center can help lessen the fallout of a data breach, but its business benefits go much further than that. Here are eight SOC benefits to consider. Continue Reading
Red team vs. blue team vs. purple team: What's the difference?

Red team-blue team exercises simulate attacks on enterprise networks. What does each team do? Where do purple teams fit in? Find out here. Continue Reading
COVID-19 cybersecurity data shows rising risk during remote pivot

When enterprises quickly pivoted to remote work during the pandemic, it prompted a wave of new threats while also widening existing gaps in cybersecurity postures. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

Prevent cloud account hijacking with 3 key strategies

The ability to identify the various methods of cloud account hijacking is key to prevention. Explore three ways to limit potential consequences of cloud credential compromise. Continue Reading
3 key phishing prevention strategies for MSPs

MSPs need a solid phishing prevention strategy for protecting clients against evolving threats. Learn about the key pieces of anti-phishing arsenals: tools, policies and training. Continue Reading
AI security concerns keeping infosec leaders up at night

Conversations about 'AI as a solution' may overlook potentially grave AI security issues. Explore the potential infosec implications of the emerging technology in this video. Continue Reading