Greetings <<First Name>>! This newsletter brings to your inbox every Friday:
🗞️ this week's most important cyber security news, 📅 next week's upcoming webinar trainings and 🛡️ most recent Cyberday development.
Takeways on ITRC's US data breaches in 2022 report:
⚠️ Only 34% of breach notices incl victim and attack details. Hard for people to estimate their risk.
Other info:
👥 422 million affected
🎣 Phishing and #ransomware popular vectors
💣 Malicious employees cause 20% of incidents. Insider attacks are on avg. 10x larger.
Companies can spot threats by spotting crooks after insider knowledge or disgruntled employees' unsavory comments - also on dark web.
#cybersecurity
Steady increase on data breaches on 2nd half of 2022.
⚠️ Attacks on supply chains are becoming a big trend:
- Supply chain attacks affected 10+ million people
- #Malware-based attacks affected 4.3 million people
☣️ New #malware dubbed PY#RATION is allowing threat actors to harvest sensitive information.
"Malware is unique in its utilization of WebSockets to avoid detection, communicate and exfiltrate data."
Attack details in article >>
Zendesk informed customers of a breach resulting from employee credentials stolen in "sophisticated sms #phishing campaign". No public notice yet.
Attack may be the same that already hit e.g. Twilio and Cloudflare before.
#cybersecurity
We will go through the basics of Cyberday and how ISO 27001 standard can support systematic information security management. We will also cover the 2022 update to the standard.
We're building a new Community-section to Cyberday, which will enable you to easily ask help from us, collaborate with your peers from similar roles / organizations and get ideas...
We have published a global quick search for Cyberday, which helps an admin to easily jump to the item he is looking for, whether it is a list, a report or any individual item...