July Risk Roundup: Cyber dinosaurs, new tools, and Security Week
Behind the times, antiquated, obsolete — words no one wants to hear, especially when applied to their IT environment and overall cybersecurity risk. In this week’s Risk Roundup, we selected four articles that shed light on why it's important to stay ahead of the trend, whether it be with your cyber hygiene or your cybersecurity toolset. But is early adoption the best policy? Or is a mix of modernization and best practices the solution?
1. Study finds insurance companies lack cyber hygiene
Insurers need to be model citizens when it comes to risk management - you’re unlikely to buy fire insurance from somebody who plays with matches! Coalition believes in and follows a data-driven approach to risk management for our own operations, our policyholders, and the world at large.
2. CISA adds ransomware module to cyber security evaluation tool
More tools = better security, right? Wrong. Having a tool to evaluate your security posture, particularly in light of the increased threat of ransomware, can offer a false sense of security — don’t let the busywork of performing an assessment or getting all your dashboard items to “green” get in the way of actually implementing best practices like offline backups, multi-factor authentication (MFA), and user training. Also, follow CISA, because they do awesome stuff.
3. New DNS name server hijack attack exposes businesses, government agencies
New IT is a mixed bag of security improvements and potential pitfalls. In this case a complicated mix of legacy and brand-spanking new cloud DNS features created an exploitable situation. Takeaways include: nothing is 100% guaranteed secure and we’re still trying to sort out the security mistakes we made in technology 30 years ago.
4. Coalition Security Week
Helping everyone solve cyber risk is why we made Coalition Control, our risk management platform, free to all. Additionally, we offer discounts through partners like Okta and SentinelOne to help policyholders implement better cybersecurity. Join us for Coalition Security Week to learn more about these tools and capabilities!
If you enjoyed this post be sure to check our blog weekly; the Risk Roundup runs Friday mornings in addition to more enlightening content we post related to the ever-evolving landscape of digital risk. Follow us on Twitter (@SolveCyberRisk) and LinkedIn (Coalition Inc). If you have any suggestions for content that we should be adding to our reading list, let us know!
Related blog posts
Palo Alto Networks: Patch Available for PAN-OS Zero-day
A patch is now available for a command injection zero-day vulnerability impacting Palo Alto Networks PAN-OS. Learn what actions you need to take.
LockBit Ransomware Used in Exploitation of ConnectWise ScreenConnect
Coalition Incident Response has discovered a link between the LockBit ransomware gang and the ConnectWise ScreenConnect vulnerabilities.
MFA Bypass Attacks: Weak MFA Implementation Welcomes Intrusion
Threat actors are increasingly targeting multi-factor authentication (MFA). Learn the most effective types of MFA and how to avoid MFA bypass attacks.
