Preparing for Unknown Risks: How to Better Prepare for Risks You Can’t See Yet


As security professionals we’re used to dealing with unknowns and unpredictability. We understand that it’s impossible to always know what’s around the corner. It’s not just about external threats and the big breaches splashed across the news headlines.

On one hand, we’re combating threat actors attempting to steal information, money or simply trying to cause havoc. On the other, we’re trying to better understand employee behavior amidst the myriad of applications they use on a daily basis; always vigilant for any suspicious activity. And while it certainly makes our jobs interesting, unpredictability runs contrary to how the organisations we protect prefer to operate.

Read more…
Source: Rapid7


Sign up for our Newsletter


Related:

  • Pakistan: Government establishes National CERT to counter cyber attacks

    March 26, 2024

    The federal government announced on Tuesday the formation of a National Computer Emergency Response Team (CERT). This initiative aims to fortify the country’s defenses against the growing threat of cyber attacks, providing essential awareness and protection measures to safeguard digital assets and critical infrastructure. The Ministry of Information Technology and Telecommunication has issued a notification regarding ...

  • Secure by Design Alert Eliminating SQL Injection Vulnerabilities in Software

    March 25, 2024

    SQL injection – or SQLi – vulnerabilities remain a persistent class of defect in commercial software products. Despite widespread knowledge and documentation of SQLi vulnerabilities over the past two decades, along with the availability of effective mitigations, software manufacturers have continued to develop products with this defect, which puts many customers at risk. CISA and the ...

  • Ring doorbell owners warned of bank raiding attack as thieves target Brits

    March 21, 2024

    Home security gadgets like Ring doorbells are increasingly being targeted by cyber crooks and their nasty phishing campaigns. Cybersecurity experts at Trustwave have warned Ring customers – and owners of similar gadgets from other brands – that home security tech is being used against the people its supposed to protect. Read more… Source: The Sun  

  • China’s MSS publicizes typical case to remind public of overseas cyber ransom attacks

    March 21, 2024

    China’s national security authorities publicized on Thursday a typical case of cyber ransom attacks to help raise public awareness over online blackmail and attacks from overseas, which not only affects social stability and economic development but also threatens China’s national security and interests. A Chinese high-tech company recently filed a report through the hotline 12339 about ...

  • Mandatory cyber requirements after Change Healthcare attack opposed by health sector

    March 18, 2024

    The American Hospital Association has opposed mandatory cybersecurity requirements proposed for the healthcare sector following the ransomware attack against Change Healthcare, which has resulted in widespread prescription processing outages across the U.S. “Imposing fines or cutting Medicare payments would diminish hospital resources needed to combat cybercrime and would be counterproductive to our shared goal of preventing ...

  • Southeast Asia’s three-nation partnership to fight cyber threats

    March 17, 2024

    From rampant job scams to sophisticated e-commerce attacks, cyber threats in Southeast Asia are skyrocketing. Singapore reportedly had more than 46,000 cybercrime cases in 2023, including job scams and e-commerce scams, the highest since 2016. Things were almost as bad in Malaysia. Cases involving social media scams reportedly increased by 37 percent from January to November 2023 ...