Our mission
Coalition is the leading provider of cyber insurance and security, combining comprehensive insurance and proactive cybersecurity tools to help businesses manage and mitigate cyber risk. We believe every organization should be resilient to cyber attacks and technology failures.
Search
Categories
RDP
FTF
Ransomware
EDR
Passwords
Data Breach
Phishing
Remote Access
Email Security
MFA
Backups
Acronyms
Engineering Jobs
See all engineering jobs
July Risk Roundup: Cybersecurity shiny objects — don’t overlook the basics

July Risk Roundup: Cybersecurity shiny objects — don’t overlook the basics

The Risk Roundup is our weekly collection of curated content that relates to all things digital risk management. Members of the Coalition team have pulled together their favorite posts from the week that highlight relevant trends in cybersecurity and cyber insurance. Enjoy our TL;DR and useful snippets on topics we’re keeping a close eye on.
Featured Image for July Risk Roundup: Cybersecurity shiny objects — don’t overlook the basics
A healthy dose of skepticism is never a bad idea in cybersecurity. People will try to take advantage of chaotic situations, bad ideas will be expressed when people have ulterior motives, and sometimes a flashy headline is designed to sell you ads rather than give you useful information.

1. Fake Kaseya VSA security update backdoors networks with Cobalt Strike

Attacker’s creed: never let a good disaster go to waste. The lesson for defenders? Chaotic conditions demand extra vigilance – when things go wrong, it’s helpful to have defined procedures and team members trained via exercises/drills to respond.
View tweet here

2. RSA sponsored content issues

Kudos to RSA for (retroactively) policing their sponsored content and dunking on the “blame the interns” meme. But how did an article about blockchain fixing TCP/IP security issues that didn’t demonstrate a solution at all make it through editorial reviews?
View tweet here

3. Headline-driven threat landscape

Media sensationalism is nothing new, and the problem is worse in tech and infosec due to unfamiliar vocabulary. It takes time and effort to contextualize cyber risk, so both infosec and business leaders need to allocate that time rather than following clickbait headlines.
View tweet here
If you enjoyed this post be sure to check our blog weekly; the Risk Roundup runs Friday mornings in addition to more enlightening content we post related to the ever-evolving landscape of digital risk. Follow us on Twitter (@SolveCyberRisk) and LinkedIn (Coalition Inc). If you have any suggestions for content that we should be adding to our reading list, let us know!