Search results for: sophos


How do I select a data encryption solution for my business?

It is a mathematical certainty that data is more protected by communication products that provide end-to-end encryption (E2EE). Yet, many CISOs are required to prioritize regulatory requirements before data protection when considering the corporate use of E2EE communications. Most Fortune 1000 compliance and security teams have the ability to access employee accounts on their enterprise communications platform to monitor activity and investigate bad actors. This access is often required in highly regulated industries and E2EE … More

Jim Pflaging joins Cloudentity board of directors

Cloudentity announced the appointment of renowned cybersecurity expert Jim Pflaging to its board of directors. Following its Series A funding round, led by prominent cybersecurity investors ForgePoint Capital and WestWave Capital, Pflaging’s appointment to the board marks another significant milestone. Pflaging joins Cloudentity’s expanding leadership team to support the accelerated market demand for API authorization and governance solutions. He has a proven track record of translating cybersecurity technology and market dynamics into competitive advantage. This … More

magnifying glass

A perspective on security threats and trends, from inception to impact

Sophos published a report which flags how ransomware and fast-changing attacker behaviors, from advanced to entry level, will shape the threat landscape and IT security in 2021. Increased gap between ransomware operators The gap between ransomware operators at different ends of the skills and resource spectrum will increase. At the high end, the big-game hunting ransomware families will continue to refine and change their tactics, techniques and procedures (TTPs) to become more evasive and nation-state-like … More

Fidelis Cybersecurity appoints Anup Ghosh as CEO

Fidelis Cybersecurity announced the appointment of cybersecurity industry veteran, Anup Ghosh as CEO. Ghosh leaves his post as Managing Director at Accenture Security to drive Fidelis Cybersecurity through its next growth stage following the company’s acquisition by Skyview Capital late last year. “Anup is extremely well-qualified to lead Fidelis in the next stage of its growth”, said Darryl Smith, President of Global Portfolio Operations at Skyview Capital. “His deep knowledge of the cybersecurity industry coupled … More


Attacked by ransomware? Five steps to recovery

Ransomware has been noted by many as the most threatening cybersecurity risk for organizations, and it’s easy to see why: in 2019, more than 50 percent of all businesses were hit by a ransomware attack – costing an estimated $11.5 billion. In the last month alone, major consumer corporations, including Canon, Garmin, Konica Minolta and Carnival, have fallen victim to major ransomware attacks, resulting in the payment of millions of dollars in exchange for file … More

LogRhythm 7.5 and Open Collector simplify and accelerate threat detection and mitigation

LogRhythm announced the launch of version 7.5 of the LogRhythm NextGen SIEM Platform, as well as the inaugural release of its Open Collector technology. LogRhythm 7.5 provides enhanced analyst workflow experiences and visibility, while Open Collector simplifies the process of onboarding cloud data sources for more holistic monitoring. “Organizations produce more data today than ever before, so security teams need comprehensive visibility across their environment,” said Sue Buck, chief technology officer of LogRhythm. “But we … More


70% of organizations experienced a public cloud security incident in the last year

70% of organizations experienced a public cloud security incident in the last year – including ransomware and other malware (50%), exposed data (29%), compromised accounts (25%), and cryptojacking (17%), according to Sophos. Organizations running multi-cloud environments are greater than 50% more likely to suffer a cloud security incident than those running a single cloud. Europeans suffered the lowest percentage of security incidents in the cloud, an indicator that compliance with GDPR guidelines are helping to … More


Fake “DNS Update” emails targeting site owners and admins

Attackers are trying to trick web administrators into sharing their admin account login credentials by urging them to activate DNSSEC for their domain. Scam emails lead to fake login pages The scam was spotted by Sophos researchers, when the admin of their own security marketing blog received an email impersonating WordPress and urging them to click on a link to perform the activation (see screenshot above). The link took them to a “surprisingly believable” phishing … More

Qualcomm unveils program to help small businesses convert to a mobile-first work environment

Qualcomm Technologies unveiled the Qualcomm Small Business Accelerator Program, designed to help small businesses convert to a mobile-first work environment necessary to thrive in today’s business climate. The comprehensive program will provide small businesses with products powered by Qualcomm Technologies solutions, along with collaboration tools and technical and integration support, so they can continue to maintain operations throughout the current global pandemic and beyond. Qualcomm Technologies recognizes the challenges that small businesses across the United … More


Paying the ransom = paying double

Paying cybercriminals to restore data encrypted during a ransomware attack is not an easy and inexpensive path to recovery, a Sophos survey reveals. In fact, the total cost of recovery almost doubles when organizations pay a ransom. The survey polled 5,000 IT decision makers in organizations in 26 countries across six continents, including Europe, the Americas, Asia-Pacific and central Asia, the Middle East, and Africa. 51% of organizations had experienced a significant ransomware attack in … More

UltraWarm now available for Amazon Elasticsearch Service

Amazon Web Services (AWS), an company, announced the general availability of UltraWarm for Amazon Elasticsearch Service, a new, highly performant, fully managed, low-cost warm storage tier that provides fast, interactive analytics of log data at one-tenth the cost of existing storage options. Amazon Elasticsearch Service makes it simple to collect, analyze, and visualize machine-generated log data from websites, mobile devices, and sensors. UltraWarm for Amazon Elasticsearch Service gives Elasticsearch customers a warm storage tier … More

RSA Conference

Week in review: API security basics, the future of infosec conferences, Sophos firewalls under attack

Here’s an overview of some of last week’s most interesting news, articles and podcasts: Is the future of information security and tech conferences virtual? While RSA Conference USA – the largest information security conference in the world – managed to take place mere weeks before the World Health Organization declared COVID-19 a pandemic, European countries started closing borders and airlines started suspending routes and grounding planes, most infosec and tech events scheduled to take place … More