The age-old adage, “Better the devil you know than the devil you don’t,” often implies that familiarity with risks is preferable. However, in the realm of cybersecurity, this perspective presents significant pitfalls. The “devils” we are familiar with are known vulnerabilities—documented flaws in software and applications that are on the…
Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development Experts Caution on White House AI Initiative: Innovation Gains Shadowed by Data Risks Chris Riotta (@chrisriotta) • April 24, 2025 Deployment of AI in education significantly increases cybersecurity vulnerabilities for K-12 institutions. (Image: Shutterstock) The proposal from U.S. President Donald…
The Federal Bureau of Investigation (FBI) has unveiled its Internet Crime Report for 2024, highlighting a remarkable escalation in losses attributed to cybercrime, which now stand at approximately $16.6 billion. This staggering sum stems from a wealth of complaints received by the Internet Crime Complaint Center (IC3), which operates as…
The Cybersecurity and Infrastructure Security Agency (CISA), the U.S. government body responsible for securing the nation’s vital infrastructure, announced a significant policy change. Effective April 20, 2025, CISA will prohibit its threat hunting team from using VirusTotal, a popular tool in the cybersecurity arsenal. This decision aligns with CISA’s evolving…
The dynamics between insurance providers and their clients are often seen as contentious: one entity hesitates to pay premiums while the other is equally reluctant to make payouts when necessary. However, the realm of cyber insurance can break this mold. In light of a rapidly evolving threat landscape, cyber insurance…
Marks & Spencer Faces Cybersecurity Incident Disrupting Payment Systems Marks & Spencer (M&S), a venerable British retailer with over 140 years in the food and clothing sectors, has recently been the victim of a significant cyberattack that unfolded during the Easter period. The incident disrupted vital services, impacting customers’ ability…
As businesses navigate an increasingly digital landscape, the importance of cybersecurity has escalated from a mere IT concern to a fundamental pillar of operational strategy. The proliferation of cyber threats, including ransomware, phishing attacks, insider threats, and advanced persistent threats (APTs), has made safeguarding digital infrastructure imperative rather than optional.…
Government, Industry Specific Senior Advisers Depart CISA Amid Workforce Reductions, Impacting ‘Secure by Design’ Initiative Chris Riotta (@chrisriotta) • April 22, 2025 Recent resignations from CISA may signal turbulent times for the agency’s cybersecurity efforts. The Cybersecurity and Infrastructure Security Agency (CISA) is experiencing a significant transition as a number…
Numerous small and medium-sized businesses (SMBs) maintain a misguided belief that they are unlikely targets for cybercriminals, mistakenly assuming that their data and systems lack sufficient value to attract hackers. Generally, these enterprises cannot afford the substantial ransoms that interest cyber attackers. As a result, this line of thinking is…
