With people and data moving everywhere, security has to be agile to keep up. Now, the key issue facing many organizations is how to most effectively provide safe access to corporate resources on the web, in cloud apps and in internal, private apps anywhere, while keeping data safe everywhere.
SASE has rapidly...
Unrivaled visibility into early activity on
users’ computers prevents data theft
and loss by hijacked systems, rogue
insiders, or negligent end users.
Forcepoint Insider Threat has been identifying
and stopping threats from within for
government and Fortune 100 customers for
more than 15 years. With more than...
Driving Office 365 adoption is an important goal 87% of IT professionals say it's a top priority. Yet few have fully migrated their users and apps due to concerns around security, compliance, and poor user experience caused by network architecture limitations and constraints.
Forcepoint's Office 365 solution can...
In a business world without perimeters and dominated by remote work, finding a balance between easy collaboration and data security can be challenging. Users and data are operating outside of traditional IT defenses that implicitly trust people who are inside of their network. With a mantra of “Never Trust, Always...
One of the biggest trends in 2020 was the rise of complex, multi-staged cyberattacks. These attacks used new delivery mechanisms - like macros and other legitimate app functionality - to evade detection by antivirus software, hide data exfiltration actions (e.g., steganography), and coordinate multi-staged maneuvers...
In 2020, the pandemic tremendously impacted public-sector organisations all over the world. As every public-facing service organisation was forced to start pivoting to digital alternatives from the traditional “in-person & paper” model, a new set of challenges were created.
The digital transformation taking...
Criminals continue to target on-premises Microsoft Exchange servers that have not yet been updated with four critical patches, including for a ProxyLogon flaw, which is now being targeted by Black Kingdom ransomware. One expert describes the attack code as being "rudimentary and amateurish" but still a threat.
There has been a spike in web shells being detected as ransomware gangs and other attackers increasingly target vulnerable on-premises Microsoft Exchange servers following publication of proof-of-concept attack code for ProxyLogon, which is one of four zero-day flaws patched by Microsoft in early March.
This edition of the ISMG Security Report features an analysis of the Microsoft Exchange on-premises server hacks – from who might have leaked the vulnerability exploits to how ransomware gangs are taking advantage of the flaws. Also featured: Tackling the cybercrime business model; assessing "zero trust."
Love it or hate it, email remains an essential business and productivity tool. Many organizations have now migrated to cloud-based Office 365 email for their employees. But while cloud-based approaches offer easier procurement, manageability and better cost savings, certain email facts of life won't change.
As the Biden administration makes final preparations to respond to the attacks against SolarWinds, it's been confronted by a second major cyberthreat: the hacking of Microsoft Exchange servers throughout the U.S. The response to this incident, however, will likely be much different.
It has been an open question as to how a half-dozen hacking groups began exploiting Exchange servers in an automated fashion in the days leading up to Microsoft's patches. But there are strong signs that the exploit code leaked, and the question now is: Who leaked it?
The latest edition of the ISMG Security Report features cybercrime deterrence lessons learned from the disruption of the Emotet botnet operation. Also featured: An update on attacks tied to Microsoft Exchange flaw exploits; a discussion of the need to update business continuity plans.
Computer security researchers have acquired an enormous list of compromised email servers from the perpetrators of the mass Microsoft Exchange compromises. But a big question looms: How bad is this situation going to get?