Cloud technology can be difficult to understand. Being fairly abstract in meaning, it’s easy to forget that there isn’t just one deployment that’s compatible with cloud computing. In fact, not every cloud computing solution is right for every type of company.
You probably have a list of websites you access on a daily basis, either personally or for work; these might include email domains, internal portals, or your accounts with vendors. Over the course of a day, you likely access these services numerous times, resulting in anywhere from hundreds to thousands of interactions per year. You probably trust these websites, but it’s important not to let your guard down. Cyberattackers commonly ‘stake out’ a network ecosystem before attacking, and through observation, they may notice a vulnerability in a location that is accessed by numerous people in an organization. This can be the beginning of a watering hole attack, even if your computer isn’t infected.
One of the things you probably do the most when on the internet is using a search engine. These websites scan millions of pages for your query terms, all within a matter of seconds. Businesses spend time and money on search engine optimization, a set of methods by which they can improve their ranking in search engine results. A better ranking in search engines can translate into more web traffic for businesses, and in turn more revenue.
In the cybersecurity field, we often focus on the technical causes and methods by which cyberattacks are carried out, new developments, and vulnerabilities that need to be addressed. However, that’s only half the battle when addressing (or preferably, preventing) a cyberattack.
If you take a look at the number of tabs open in your browser, you might realize that you have way more open than you’re actually using. Some might open automatically when you open a link, whereas others may be older tabs that you haven’t closed yet. Most of us don’t pay too much attention to our open tabs as we browse, and with the evolution of browsers, operating systems, and computer hardware, our computers become more capable of handling activities such as having a dozen web pages open simultaneously.
Some cyberattacks can be fairly easy to notice. A phishing email might be identified by the sender address, formatting, or the address of a link, while vishing could be identified by someone asking prying questions over the phone. Some attacks, however, may be tougher to spot. There are a few types of these, one of the most notable being pharming.
You’ve probably heard of phishing, the infamous practice by which a hacker may try to trick you into giving away sensitive information via email. However, there is much more to phishing than just a suspicious email here or there; as individuals and businesses become more savvy about threats like those that may come via email, cybercriminals expand their arsenal of tools to cost you precious time and money. One example of this is smishing.
Phishing is a widely known cybersecurity risk; you’ve probably heard of it. A cybercriminal sends a convincing email, complete with a link to what looks like a company’s website at first glance, only to attempt to obtain your login credentials for their own use. Over the past decade, consumers and businesses alike have been taking steps to protect themselves from this threat. What you may not know, however, is that there are various types of phishing attacks beyond those carried out exclusively over email. One such type is vishing.
Imagine the following scenario. You’re sitting at a coffee shop, getting some work done. While you look away, someone comes by and steals your computer. You probably wouldn’t be too happy about this; that computer is worth a lot of money, and you need it to get important things done. Now what if you’re sitting at a coffee shop, getting some work done, and instead of stealing your computer, someone in the coffee shop is stealing information about what you’re doing? What could that data be worth?
Topics: Data Protection
High profile data leaks and security breaches have been commonplace in the past few years, with instances of high-profile breaches of large tech companies often making the news. However, it’s not just tech giants who are at risk of having their business’ or their customers’ data accessed by outside entities; small and medium-size organizations across all industries can be at risk as well. Recently, such an example manifested at Georgia Tech University, where an unauthorized user of a university web application exposed information like names, birth dates, and social security numbers for up to 1.3 million people. The implications of these leaks can range from an outside actor simply viewing the data to find anything of use, to using the information they extract to discover perceived weaknesses at your firm, or even demanding a ransom for disposing of the data.