Launching in January 2021, the International Foundation for Protection Officers (IFPO) will host a series of monthly webinars on a series of topics relevant to today’s front-line security practitioners. 

Learn whether your organization has a false decline problem and change the way you conduct fraud prevention to increase sales.

How can security leaders get the most out of their security and non-security IoT devices? Read on to learn more.

According to the first national survey conducted in Singapore regarding sexual harassment, two in five workers in the country report being sexually harassed at the workplace in the past five years. 

Duval County Public Schools in Florida have a 15-year priority plan to use a half-penny sales tax increase to improve the school through safety and security measures and major renovations.

Microsoft has addressed companies who have not yet updated their systems to address the critical Zerologon flaw, a vulnerability in the cryptography of Microsoft's Netlogon process that allows an attack against Microsoft Active Directory domain controllers, making it possible for a hacker to impersonate any computer, including the root domain controller.

President-elect Joe Biden has announced the American Rescue Plan to "build a bridge towards economic recovery," during the coronavirus pandemic. The $1.9 trillion plan also aims to modernize federal information technology to protect against future cyberattacks. 

In 2020, we adapted. So did bad guys. The FBI saw a 400% increase in cyberattacks as adversaries probed the new landscape for vulnerabilities. We haven’t even begun to see the results of these attacks. 2020 blew up expectations, and we should expect more of the same in the coming years.

In the age of heightened public cloud adoption and widespread cloud Software-as-a-Service (SaaS) usage, cybercriminals are making use of OAuth – a permissions delegation and authorization protocol – to compromise cloud environments. As such, controlling which applications users interact with has become a business imperative. Let’s take a closer look at what OAuth is, the role it plays in allowing users to access resources across environments, the ways attackers are abusing OAuth and what organizations can do to better protect their cloud data.

The National Security Agency (NSA) has released an information sheet with guidance on adopting encrypted Domain Name System (DNS) over Hypertext Transfer Protocol over Transport Layer Security (HTTPS), referred to as DNS over HTTPS (DoH). When configured appropriately, strong enterprise DNS controls can help prevent many initial access, command and control, and exfiltration techniques used by threat actors.

On average, organizations experience 180 incidents involving sensitive data, or one every 12 working hours, according to Egress. The three top causes of outbound email data breaches include: the wrong recipient added, wrong file attached or replying to a phishing scam.

Finding and implementing a cybersecurity risk framework is a challenge every organization faces. Time has shown that this endeavor almost always calls for the heavy lifting to be carried by chief information security officers (CISOs) and their staff. So where do you start?

The city of Katy in Texas will be installing a security camera at the City of Katy Dog Park after seeing a rise in "dog dumping" or the abandonment of dogs at the park since the COVID-19 pandemic began. 

What are some current trends in cybersecurity threat research? To get some insight, we spoke to Aamir Lakhani, cybersecurity researcher and practitioner with FortiGuard Labs. 

In one report this week, Wisconsin hospitals are making sure their locks and other precautions to keep its COVID-19 vaccines are safe and effective, after members of the National Guard apparently walked into the wrong hospital asking to pick up COVID-19 vaccines.

Vitaliy Panych has officially been appointed CISO to the state of California after spending the past two years as California’s acting chief information security officer.

Consumers can easily identify opportunities to opt out of sharing personal data through the first-of-its-kind “Opt-Out Easy” browser plug-in developed by researchers from Carnegie Mellon’s CyLab Security and Privacy Institute. The plug-in makes opt-out choices more accessible to users, automatically extracting privacy information from websites’ policies and presenting it in a user-friendly way. 

Cobalt Robotics’ security robot solves several physical security challenges for today’s organizations, helping protect people, assets and intellectual property.

AeroDefense’s AirWarden offers fixed and mobile (in-motion) solutions to detect drones and pilots at airports, correctional facilities, stadiums, critical infrastructure and other high-value targets.

Facilitate security operations or mitigate drone threats with these automated solutions.

Telehealth was an unexpected technology bright spot in 2020, as the Office for Civil Rights (OCR) relaxed enforcement of certain aspects of HIPAA, helping to reduce COVID exposure via virtual rounding and virtual visits. The following three high-level recommendations provide a basis for defense in depth for healthcare organizations in 2021.

 

The Cybersecurity and Infrastructure Security Agency (CISA) has launched a new cybersecurity effort:  The Systemic Cyber Risk Reduction Venture on developing actionable metrics to quantify cyber risk. This information will be used to reduce shared risk to the nation's security. 

The average employee is the greatest risk to an organization’s security. Here’s how to rethink enterprise-wide training to fight cybercrime and utilize gamification to make it stick.

What is the best path forward? Should companies upgrade their existing platforms or replace them entirely? What makes the most sense both financially and for the security of your data? 

In all, taking into account the months that students are in the buildings, the district will have 10 emergency drills, eight of them mandated.

San Diego's Metropolitan Transit System has hired Al Stiehler as Director of Transit Security and Passenger Safety.

How do you lead a great security team to overall mitigate risks across the entire enterprise? To find out, we talk to Ellen Benaim, Chief Information Security Officer at Templafy. In her role, Benaim is responsible for overseeing company-wide information security and governance program and ensuring the entire organization follows necessary protocols to keep the enterprise secure.

Ransomware attacks were on the rise long before the pandemic. Over the last two years, ransomware attacks have risen by 200%  – they are becoming more frequent, more expensive, and more sophisticated. This issue is anticipated to continue throughout 2021 and why businesses must be proactive to manage threats and other actionable steps to mitigate any damage.

Gun safety isn’t a new issue in the U.S., of course — it’s a hot-button political issue, to say the least. Regardless, there is no debate that every organization wants to keep its community safe. So, like almost every other aspect of life that has undergone transformational change over the past decade, the main driver of change in the immediate term will be cutting-edge technology.

In a new alert, the Cybersecurity and Infrastructure Security Agency (CISA) announced that it is aware of several recent successful cyberattacks against various organizations’ cloud services. Threat actors are using phishing and other vectors to exploit poor cyber hygiene practices within a victims’ cloud services configuration.