Preparing for Unknown Risks: How to Better Prepare for Risks You Can’t See Yet


As security professionals we’re used to dealing with unknowns and unpredictability. We understand that it’s impossible to always know what’s around the corner. It’s not just about external threats and the big breaches splashed across the news headlines.

On one hand, we’re combating threat actors attempting to steal information, money or simply trying to cause havoc. On the other, we’re trying to better understand employee behavior amidst the myriad of applications they use on a daily basis; always vigilant for any suspicious activity. And while it certainly makes our jobs interesting, unpredictability runs contrary to how the organisations we protect prefer to operate.

Read more…
Source: Rapid7


Sign up for our Newsletter


Related:

  • The Obvious, The Normal, And The Advanced: A Comprehensive Analysis Of Outlook Attack Vectors

    December 4, 2023

    Outlook, the desktop app in the Microsoft Office suite, has become one of the world’s most popular apps for organizations worldwide for sending and receiving emails, scheduling conferences, and more. From the security perspective, the app is one of the critical “gateways” responsible for introducing various cyber threats into organizations. Even a minor security problem in ...

  • NATO deepens cyber coalition with Asian partners

    December 1, 2023

    NATO countries wrapped up one their signature cybersecurity exercises in Estonia this week, welcoming South Korea and Japan to the proceedings as alliance officials seek like-minded governments to harden their collective virtual defenses. The Cyber Coalition 2023 event in the country’s capital of Tallinn focused on sharing threat intelligence and responding to attack scenarios on virtual ...

  • Medical test company’s ‘serious and systemic failures’ led to cyber-attack, watchdog says

    November 29, 2023

    Medical testing company Australian Clinical Labs had “serious and systemic failures” that resulted in a cyber-attack that led to more than 200,000 customer health records and credit card details being published on the dark web, the Australian information commissioner has alleged. In October last year, in the midst of the Medibank and Optus cyber-attacks, Medlab’s parent ...

  • Singapore cyber defenders fend off simulated attacks against cellular, gas and airport systems

    November 24, 2023

    As simulated attackers tried to overload an electrical system, cripple a water distribution network and shut down a gas plant, cyber defence operators across 26 national agencies sprung into action to neutralise the assaults on a fictional state’s critical infrastructure. These were among the scenarios that more than 200 participants went through from Nov 22 to ...

  • Cisco aids Ukraine in cyber defense with modified switches to counter Russian attacks

    November 23, 2023

    Cisco has proactively shipped modified switches to Ukrenergo, the state-owned electricity grid operator in Ukraine, to bolster its defenses against Russian cyberattacks targeting energy infrastructure. These attacks have included the use of GPS-jamming tactics, which disrupt the high-voltage energy subsystems crucial for power distribution and damage assessment. The reliance of Ukraine’s substations on GPS for time ...

  • FCC wants to improve cyber protections for schools, libraries

    November 21, 2023

    Ransomware attacks and cybersecurity threats against schools are multiplying and have led to some dramatic consequences. Last year, the Los Angeles Unified School District was hit by a ransomware attack that resulted in hackers posting 500 gigabytes of stolen data online, after the district’s superintendent refused to pay the ransom. The attack compromised about 2,000 student ...