Category: 2022

2022 News-EN

WHY CYBER SECURITY IS ONE OF THE BEST INVESTMENTS IN YOUR FUTURE

Post author By Sofia
Post date 16/02/2022

news

WHY CYBER SECURITY IS ONE OF THE BEST INVESTMENTS IN YOUR FUTURE

Recently I was so lucky to have the opportunity to speak at the third edition of “99eLode“, a training organized by Fastweb Digital Academy, Cariplo Factory and iO Donna, the weekly magazine of Corriere della Sera.

Designed for 99 recent graduates waiting to understand what to do with their future, the purpose of the training was to provide information about the most requested digital skills on the market.

Among these, Cyber Security, which I described with Women For Security colleagues, taking into consideration not only the technical, but also the legal, marketing and communication aspects.

So, why is Cyber Security one of the best investments for your future?

Here are 3 good reasons.

Fighting cybercrime will always be a priority

Cybercrime caused $6 trillion of damages in 2021, the double of the amount of six years earlier.

And it’s expected that in the next 3 years the cost for Cybercrime will exceed $10, with an exponential trend.

Moreover, for some years now, the profits of cybercrime have exceeded those of the drug market, so that several criminal organizations are deciding to invest in this sector.

The overall effect is that cyber defenses will face ever more numerous and aggressive enemies.

Cyber Security will become and will remain a priority to protect individuals, organizations and also nations.

There is a great shortage of jobs in the Cyber Security field

From 2013 to 2021 we have seen a growth of 350% in Cyber Security jobs, a trend never seen before.

There are currently 3.5 million cybersecurity job vacancies globally, 400,000 in Europe alone.

In 2014, vacancies globally were “only” 1 million.

Basically, there is no unemployment for those who decide to work in the Cyber Security sector (and it has been like that since 2011!)

Not only Cyber Security “technicians” are needed

Certainly, the technical jobs of Cyber Security are important.

Penetration Testers, Malware Analyst, Vulnerability Researchers and many others are key roles in this industry.

But they are not the only needed functions.

Important roles equally must be able to manage the legal issues, privacy, regulatory compliance, the governance of cyber security.

As well as project management, marketing, communication, pre and post-sales aspects, training, etc…

Cyber Security, ultimately, does not only concern those with technical skills but those who are able to commit themselves with their specific skills and abilities to protect companies, organizations and institutions from the threats and risks of the cyber world in constant increase.

Good job!

Latest news

HACKS OF TODAY 07/05/2024

Today's HOT includes 66 victims by the notorious Black Suit, Akira, BianLian, DarkVault, Play, RansomHub, INC Ransom, Qilin, Abyss and LockBit 3.0 gangs. The average...

HACKS OF TODAY 03-04-05-06/05/2024

Today's HOT includes 22 victims by the notorious BianLian, Ra World, RansomHub, INC Ransom, Ransomware Blog, Rhysida, Akira and Underground Team gangs. The average Cyber...

HACKS OF TODAY 02/05/2024

Today's HOT includes 22 victims by the notorious BianLian, Ra World, RansomHub, INC Ransom, Ransomware Blog, Rhysida, Akira and Underground Team gangs. The average Cyber...

2022 News-EN

FIVE RULES FOR BEING SAFER ON INTERNET

Post author By Sofia
Post date 09/02/2022

news

FIVE RULES FOR BEING SAFER ON INTERNET

Safer Internet Day (SID) is celebrated on February 8th, an initiative created by the European Commission to promote safer and more responsible use of technology.

Celebrated in 200 countries around the world since 2004, Safer Internet Day invites us to provide a safer digital environment, especially for young people.

Internet world offers enormous opportunities, possibilities for learning and for acquiring new knowledge, but it also carries several risks.

Thanks to initiatives such as SID it is possible to raise awareness of risks and threats, but at the same time take to carry on concrete actions in order to protect users.

So, let’s see 5 rules to be safer on the Internet.

1) Systems and applications:
Update systems and applications you use and keep them constantly updated.
This rule applies to both PCs and mobile devices (smartphones, tablets, etc.).
Download and install applications only from official websites or app stores and be suspicious of unofficial stores: the risk it to install malware.

2) Account and identity:
Protect your accounts with a strong and enough complex password (over 8 characters, with upper and lower case, numbers and special characters).
Do not use the same password for all accounts, especially for emails and logins to important applications.
Use a password manager to remember all the passwords and protect the access with a master password (the only one you’ll need to remember by heart!)

3) Email and SMS:
Be wary of suspicious emails and SMS, from senders you don’t know or who refer to transactions and activities that don’t concern you.
Do not fall into the trap of Phishing and avoid clicking on suspicious links or opening attachments that could be harmful.

4) Antivirus and antimalware:
Install antivirus and antimalware on the devices you use.
Again, this rule applies to PCs but also to mobile devices (smartphones, tablets, etc.).
Install the antivirus on all devices you use to browse the Internet and keep it up to date.

5) Caution and security
Beware of websites where you can download free software and content: the risk of running into malware is very high.
Do not share credentials, passwords or login information with anyone.
Do not leave PCs and smartphones unattended.

Happy Safe Internet!

Latest news

HACKS OF TODAY 07/05/2024

Today's HOT includes 66 victims by the notorious Black Suit, Akira, BianLian, DarkVault, Play, RansomHub, INC Ransom, Qilin, Abyss and LockBit 3.0 gangs. The average...

HACKS OF TODAY 03-04-05-06/05/2024

Today's HOT includes 22 victims by the notorious BianLian, Ra World, RansomHub, INC Ransom, Ransomware Blog, Rhysida, Akira and Underground Team gangs. The average Cyber...

HACKS OF TODAY 02/05/2024

Today's HOT includes 22 victims by the notorious BianLian, Ra World, RansomHub, INC Ransom, Ransomware Blog, Rhysida, Akira and Underground Team gangs. The average Cyber...

2022 News-EN

HOW AN ASSESSMENT OF IT SYSTEMS CAN PROTECT YOUR BUSINESS

Post author By Sofia
Post date 02/02/2022

news

HOW AN ASSESSMENT OF IT SYSTEMS CAN PROTECT YOUR BUSINESS

After having seen which assessments should be performed periodically on IT systems to identify the problems exploited by cyber criminals, let’s see instead how one of these checks allowed a company to save itself from a series of threats it did not know.

Our customer, with over 100 locations and stores around the world, had reports on their systems vulnerabilities.

In a company of this size, however, there are countless systems that could be affected by problems, not only servers, but also employees’ PCs, mobile devices, network devices, printers, etc.

It is not easy, therefore, in the presence of such a complex and constantly evolving architecture, to be able to highlight the critical issues.

Our task every year was to carefully analyze the last report, identify the most serious vulnerabilities and, subsequently, carry out a Penetration Test on these, or a verification of how they could have been actively exploited by a cyber criminal to violate the company’s systems.

We also added some extra assessments such as verifying the company’s Social profiles, a phishing or Social Engineering test.

Certainly, a complex and ambitious project, carried out regularly starting 10 years ago, when such activities were not widespread at all, but which allowed the company to avoid various problems, to implement new countermeasures and to verify thir improvements over time.

So much work, but also great satisfaction.

For example, when we checked Social profiles, we came across a fake customer care from the company offering customer support.

The criminals intercepted the comments of customers who needed support directly from the official company page, then diverted them to a fake profile.

In addition to the damage to customers, the situation presented clear risks to the brand’s online reputation.

Our prompt identification of the problem has certainly averted the worst scenario.

On another occasion, we identified instead a malicious websites that, using domains similar to our customer’s one, were selling counterfeit products.

With a thorough research we were able to find several sites of this type, one of which, of Chinese origin, was selling fake products from the new collection.

The customer had developed the design months before, but the collection, intended for sale only later, had not yet completed the production phase.

The Chinese fake site, on the other hand, was already selling the products well in advance, a clear indicator that the company’s servers had been hacked to steal the collection design.

Thanks to our business, the customer has therefore obtained two advantages.

First, he was able to file a complaint with the relevant authorities, making sure that the malicious site was closed.
It also carried out a thorough investigation of its systems to assess how and when the attack occurred.

With this information it was possible to reassess the company’s cyber defenses, updating them in light of the violation suffered.

Ultimately, systems assessments allow companies to uncover issues that could be exploited maliciously.

But it is also often possible to identify indicators of cyber attacks that have already occurred, mitigating their effects and preventing further damage.

Definitely a major benefit!

Latest news

Tags CYBER ATTACKS