It’s hard to comprehend living in a world where flawed or buggy code can take down so many critical systems and drain $5 billion in direct losses from Fortune 500 companies. And, it’s true that there’s no easy fix to this kind of problem.
But whether it’s preventing bad software updates or maintaining compliance among constant requirements and changes, organizations can implement several practical measures to improve their cybersecurity hygiene and reduce their risk exposure.
Read more…
Source: TechRadar
Related:
- Washington County implements cybersecurity policy to combat potential ransomware attacks
December 27, 2024
The Washington County commissioners approved a new “business continuity and disaster recovery policy and plan” designed to take a proactive approach in guarding against another cyber attack like the one that crippled the county government for nearly three weeks earlier this year. The policy, which was drafted with the help of outside cyber consultants and the ...
- UN General Assembly adopts milestone cybercrime treaty
December 24, 2024
The General Assembly on Tuesday adopted the United Nations Convention against Cybercrime, a landmark global treaty aimed at strengthening international cooperation to combat cybercrime and protecting societies from digital threats. The agreement on the legally binding treaty marked the culmination of a five-year effort by UN Member States, with inputs from civil society, information security experts, ...
- US consumer watchdog sues big banks over ‘widespread’ fraud on Zelle payment app
December 20, 2024
The U.S. Consumer Financial Protection Bureau said on Friday it filed a lawsuit against JPMorgan Chase, Bank of America and Wells Fargo for failing to protect consumers from alleged “widespread fraud” on payments platform Zelle. The lawsuit was initiated as the watchdog moves ahead with an aggressive agenda in the final weeks of Joe Biden’s Democratic ...
- How the ransomware attack at Change Healthcare went down – a timeline
December 18, 2024
A ransomware attack earlier this year on UnitedHealth-owned health tech company Change Healthcare likely stands as one of the largest data breaches of U.S. health and medical data in history. Months after the February data breach, a “substantial proportion of people living in America” are receiving notice by mail that their personal and health information was ...
- BeyondTrust security advisory addresses a vulnerability in the Remote Support and Privileged Remote Access systems
December 17, 2024
BeyondTrust has released a security advisory that addresses a vulnerability in the Remote Support and Privileged Remote Access systems. Remote Support allows authorised individuals such as IT Helpdesk staff to connect to remote systems. Privileged Remote Access facilitates just-in-time secure access to enterprise environments. CVE-2024-12356 has a CVSSv3 score of 9.8 and if exploited could ...
- Proof-of-Concept Released for Critical Apache Struts Vulnerability
December 17, 2024
Apache has released a security bulletin addressing a critical vulnerability in Apache Struts 2. Apache Struts is an open-source model-view-controller (MVC) framework for creating Java web applications. CVE-2024-53677 is a ‘Unrestricted Upload of File with Dangerous Type’ vulnerability and has a CVSSv4 score of 9.5. This vulnerability exists in the File Upload Interceptor, which allows developers ...