National Counterintelligence and Security Center’s Post

If you thought a brief technology outage cause by an update was bad, imagine a targeted cyber attack. It may be annoying, but take steps to safeguard your network, especially when teleworking. That starts with always using a strong password with multi-factor authentication. Make good use of a VPN whenever possible as well.

Is your telework platform secure? Increased use of these platforms has given threat actors more opportunities to exploit vulnerabilities and access data. See NCSC's bulletin on risks and mitigation steps to help you telework more securely.

Smash-and-Grab Extortion https://ift.tt/UOP3uBm The Problem The “2024 Attack Intelligence Report” from the staff at Rapid7 [1] is a well-researched, well-written report that is worthy of careful study. Some key takeaways are:  53% of the over 30 new vulnerabilities that were widely exploited in 2023 and at the start of 2024 were zero-days. More mass compromise events arose from zero-day vulnerabilities than from n-day vulnerabilities. via The Hacker News https://ift.tt/vNDXpeL July 10, 2024 at 06:30AM

Defend against unpredictable threats and software vulnerabilities with Sotero. Our real-time threat detection and response technology offer a failsafe way to protect your data, even from third-party risks. Read more in our latest blog post. #CyberResilience #DataSecurity #ThirdPartyRisk https://lnkd.in/eSA_NfHw #datasecurity #DSPM #DDR

Defend against unpredictable threats and software vulnerabilities with Sotero. Our real-time threat detection and response technology offer a failsafe way to protect your data, even from third-party risks. Read more in our latest blog post. #CyberResilience #DataSecurity #ThirdPartyRisk https://lnkd.in/eSA_NfHw #datasecurity #DSPM #DDR

Defend against unpredictable threats and software vulnerabilities with Sotero. Our real-time threat detection and response technology offer a failsafe way to protect your data, even from third-party risks. Read more in our latest blog post. #CyberResilience #DataSecurity #ThirdPartyRisk https://lnkd.in/eSA_NfHw #datasecurity #DSPM #DDR

It can seem like securing systems is all about new threats and zero-day issues. However, our latest research shows that older issues can still be a problem. Read the full article by Betanews, Inc.: https://bit.ly/4boEihv #CybersecurityNews #EASM #ManageYourExposure

Defend against unpredictable threats and software vulnerabilities with Sotero. Our real-time threat detection and response technology offer a failsafe way to protect your data, even from third-party risks. Read more in our latest blog post. #CyberResilience #DataSecurity #ThirdPartyRisk https://lnkd.in/eSA_NfHw #datasecurity #RansomwareProtection #DSPM

🔐 New Blog Post: Discover common authentication bypass methods and learn how to protect your systems. From SQL injection to password reset exploits, get insights on safeguarding against these vulnerabilities. Check it out!

This year, Rapid7 has upped the ante with the Attack Intelligence Report, a 14-month look at attacker behaviors pulling data from our research, managed detection and response, and threat intelligence teams to give you the clearest picture yet of what practitioners face day to day. Key findings include: 👉 For the second time in three years more mass compromise incidents stemmed from zero-day vulnerabilities 👉 36% of the widely exploited vulnerabilities Rapid7 tracked involved network edge technology 👉 Between January 2023 and February 2024 some 5,600 ransomware incidents were reported (this doesn’t include those that go unreported)