-
2 weeks ago | 
itbrief.com.au | Scott Hesford
The digital landscape for businesses has been fundamentally reshaped by the widespread adoption of cloud computing and Software-as-a-Service (SaaS) solutions.
Organisations across diverse sectors are increasingly leveraging the cloud's inherent scalability and cost-efficiency to drive innovation and streamline operations.
-
4 weeks ago | 
kbi.media | Scott Hesford
Countering Pockets of Resistance to Cybersecurity Action Cybersecurity is commonly considered to involve users or people as a key part of the problem, and more than that, it’s an ‘everyone’ problem. Everyone has both a stake and role to play in securing an organisation, having mindset and awareness, and reflecting those in their actions and behaviours.
-
Dec 15, 2024 | 
kbi.media | Scott Hesford
As cybersecurity threats become more sophisticated, businesses find themselves facing attackers who exploit increasingly complex identity trusts. The proliferation of digital transformation, accelerated by cloud adoption and remote work trends, has expanded organisational attack surfaces and complicated cybersecurity efforts. Today, identity-based attacks are so prevalent that roughly 90%[1] of organisations have experienced a breach linked to compromised identities during the past year.
-
Nov 21, 2024 | 
securitybrief.asia | Scott Hesford
Data breaches and cyberattacks are a constant threat in today's digital world. At the same time, organisations of all sizes grapple with a silent security threat known as privilege creep.
Privilege creep, also called permission sprawl or access creep, describes employees' unintended accumulation of access rights beyond what's necessary for their current job duties.
This typically occurs when employees change roles or departments.
-
Sep 24, 2024 | 
frontier-enterprise.com | Scott Hesford
- Advertisement -During the past few years, identity has become the most common attack vector for threat actors. This is because it is easier for a cybercriminal to log into a system than to hack their way in. Threat actors essentially need two things to penetrate an organisation: an identity and a means of accessing it, and there are numerous ways they can obtain that access. Identity-based attacks are becoming both more sophisticated and more frequent.
-
Jul 3, 2024 | 
bworldonline.com | Scott Hesford
By Scott HesfordRECENTLY, the Department of Information and Communications Technology announced that the Philippine Health Insurance Corp. (PhilHealth) and the Department of Science and Technology suffered cyberattacks, which were confirmed as ransomware attacks. Faced with an increasing number of sophisticated cyberattacks, government agencies in the Philippines are racing to strengthen their security measures to protect their core systems and data.
-
Jun 11, 2024 | 
frontier-enterprise.com | Scott Hesford
The world of security is a constant chase. Remember when a strong castle wall, our network perimeter, kept the bad guys out and everything inside safe? Those days are long gone. The rise of cloud computing, mobile devices, and the ever-expanding Internet of Things (IoT) has shattered that perimeter into a million pieces. This shift in landscape is forcing security to adapt. We are no longer guarding the castle gates but instead securing every doorway, the endpoints accessing our data.
-
Jun 5, 2024 | 
itwire.com | Scott Hesford
GUEST OPINION: Passwords, the longstanding gatekeepers of digital security, remain a crucial yet vulnerable element in today's cybersecurity landscape. Hackers continuously develop new techniques to crack passwords, often leveraging automation and artificial intelligence (AI) to bypass defences. While the dream of a password-less future persists, businesses must prioritise robust password security practices in the meantime.
-
Jun 5, 2024 | 
kbi.media | Scott Hesford
A recent wave of large-scale password spray attacks has cybersecurity firms scrambling to warn their clients around the world. These attacks exploit weak credentials to gain unauthorised access to critical systems, potentially causing significant financial and reputational damage. Password spray attacks involve automated attempts to gain access to accounts using common passwords across a large number of usernames.
-
May 24, 2024 | 
securitysolutionsmedia.com | Scott Hesford
The digital landscape is undergoing a seismic shift and gone are the days when patching software vulnerabilities was the sole concern of cybersecurity professionals. Today, a cunning adversary armed with stolen credentials can potentially pose as a greater threat than a zero-day exploit. This change necessitates a fundamental revamp of security strategies, with identity taking centre stage. Why identity mattersFor decades, the cybersecurity narrative revolved around the ‘castle and moat’ approach.
