blog-slider.jpg

KnowBe4

Security Awareness Training Blog


Keeping You Informed. Keeping You Aware.

Not_so_Happy_New_Year.jpg

The Massive Cyber Attacks Slated For 2018 Will Make You WannaCry

If you think 2017 was bad, hold on for dear life because 2018 is going to be the worst yet when it comes to cyber attacks, with new and better coordinated attacks looming large.

Why? Three forces are going to be combined by the bad guys:

  1. The massive amount of stolen personally identifiable information from breaches will be harnessed through commercial-strength merge/purge/append processes with social-media info into a rich, granular dataset ready for spear-phishing with stunning precision using social engineering tactics.
  2. Machine learning has become a well-honed science. Online advertisers and political campaigns have become very good at applying data analytics to large data sets. The bad guys are using this very same technology now to target your end-users using all the data breach "take", including Equifax.
  3. Botnets continue to proliferate, which allow bad actors to bypass your filters using hundreds of thousands of personal computers.
ponemon-globalscape1

Complex regulations and sophisticated cyber attacks inflate non-compliance costs

The cost of non-compliance has significantly increased over the past few years, and the issue could grow more serious. 90 percent of organizations believe that compliance with the GDPR would be difficult to achieve, according to a new study conducted by the Ponemon Institute.

GDPR is considered by respondents to be the most challenging among other data compliance regulations such as Health Insurance Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley Act (GLBA) and Federal Information Security Management Act (FISMA).

Non-compliance costs 2.71 times the cost of maintaining or meeting compliance requirements.

Here are some highlights:

phishing-mcshark.jpg

Which of Your Employees Are Most Likely to Expose Your Company to a Cyber Attack?

Kon Leong at Harvard Business Review wrote an excellent article about the problem of employees exposing your organization to cyberthreats through human error. Here is a short qoute:

EU_Flag.jpg

EU to Declare Cyber-Attacks “Act of War”. USA likely to follow

"European Union member states have drafted a diplomatic document which states serious cyber-attacks by a foreign nation could be construed as an act of war.

The document, said to have been developed as a deterrent to provocations by the likes of Russia and North Korea, will state that member states may respond to online attacks with conventional weapons “in the gravest circumstances."

The framework on a joint EU diplomatic response to malicious cyber activities would seem to raise the stakes significantly on state-sponsored attacks, especially those focused on critical infrastructure.

Subscribe To Our Blog

Phish Your Users

Recent Posts




Get the latest about social engineering

Subscribe to CyberheistNews