So, you’re a healthcare organization that’s started using Slack? Chances are, you want to help your employees communicate and collaborate more effortlessly, and you’ve heard on the grapevine that Slack is the collaboration tool to use. We’ve heard the same. Slack adoption is soaring. The company generated $902 million in revenue between March 2020 and […]

Data loss has long been a challenge for organizations. Even in the good old days when company data was stored on-premises, worries about data loss kept IT and security leaders up at night.  Today’s waking nightmare, of course, is the threat of data loss through SaaS applications and cloud infrastructure. In this environment, securing data […]

Over the weekend, the popular password management tool, LastPass, published a blog post, letting its customers know that it suffered a data breach. Here’s everything you need to know. What’s LastPass? LastPass is a very well known security tool used by individuals and organizations alike to streamline password management.  Essentially, LastPass works by storing all […]

You’d think that a technology company as large and influential as Twitter would be hot on the case of data privacy and cyber security. Well, recent allegations claim the opposite is true.  This week, an 84-page whistleblower report hit the headlines, featuring damning allegations about Twitter’s security practices. This is a report with weight. It […]

VPN stands for Virtual Private Network. There are two types of VPNs: personal ones and corporate ones. Personal VPNs are the likes of NordVPN and Surfshark, which enhance users’ privacy as they browse the internet. These services can also be used to unblock geo-restricted applications and websites.  Then there are corporate VPNs – which are […]

Background on Cozy Bear Cozy Bear is a Russian cyber-espionage group classified by the United States federal government as advanced persistent threat 29 (APT29).  It’s responsible for several high-profile data breaches over the last few years, including the SolarWinds attack and recent Google Drive phishing scams.  While APT29 is notorious in the public domain, the group’s infamy hasn’t […]

Overview of the Cisco data breach  On Wednesday, August 10th, 2022, the networking giant, Cisco, confirmed that it suffered a data breach on 24th May of this year. Below, we’ll talk you through how the hack happened, what data was lost and who was responsible.  We’ll also discuss key learnings from the incident, so you […]

We all know what a traditional phishing scam is, where a cyber-criminal sends a fraudulent email to their victim in a bid to trick them into sharing sensitive information or downloading malware.  Phishing scams are so widespread that most email providers have now installed impressive features that block standard phishing emails. However, just because email […]

Over the weekend, the US-founded communications company, Twilio, disclosed that it suffered a data breach, after some of its employees fell for a sophisticated phishing scam. Below, we’ll give you an overview of the security incident: what happened, who was impacted and how you can prevent the same thing happening in your organisation. Quick background: […]

On top of this, frameworks like ISO 27001 and SOC 2 are fast becoming expectations for companies that supply goods and/or services to other organizations.  With so much to consider, many compliance and security leaders may feel like they’re fighting an uphill battle. For all their efforts to meet compliance demands, they’re always a step […]

What is UEBA? UEBA is an acronym for User and Entity Behavior Analytics. This breed of security solution harnesses the power of technologies like machine learning and artificial intelligence to monitor your users’ behavior for signs of compromise.  Essentially, UEBA solutions analyze your users and other entities – like endpoints and routers – to create […]