Tag: common | Page 4

Cyber security expert explains 5 common hacking scams

October 12, 2022/in Computer Security

Social media scams are becoming more and more common.

Yes, we all struggle with keeping up with our ‘upgraded’ password.

LISTEN: Exclusive interview with Mybroadband editor Jan Vermeulen

Lately there seems to be a growing trend where hackers gain access to people’s social media accounts.

On Tuesday, we had the opportunity to speak with Jan Vermeulen about what these hackers want when they hack your social media pages.

Listen to the full discussion below:

Source…

10 common developer misconceptions about web application security

September 2, 2022/in Internet Security

Where it all begins: The troubled relationship between software innovation and security

Software development is all about making things work and creating new functionality that solves problems and unlocks new possibilities. That creative buzz is part of the appeal of web development – and yet Invicti research shows that 32% of web developers spend at least five hours a day addressing security issues. All too often, inefficient communication and inadequate tools reduce cause developers to treat security-related requests as a chore and distraction that has no clear reason and brings no visible results. This mistrust is reinforced by common misconceptions about web application security – many not exclusive to developers.

Misconception #1: Security is not a development problem

Reality: Application security is a crucial part of modern web development, especially as you move towards DevSecOps.

Let’s start with the mother of all application security misconceptions: that security is someone else’s problem. Whether you’re putting your trust in tools, external systems, or the security team, it’s tempting to put security out of mind and focus only on building software. In reality, web applications are now so complex and can be attacked in so many ways that the only way to truly secure them is to make security everyone’s business – starting but also ending with development. After all, whenever vulnerabilities are found in your custom web applications, the fix requests eventually end up in development, so efficiently dealing with them as they arrive is crucial to avoid bottlenecks and prevent professional burnout.

Misconception #2: Our web framework takes care of security

Reality: A good quality framework can prevent many security flaws but is nowhere near enough on its own.

Web frameworks and libraries have revolutionized development, providing the scaffolding to build production sites and applications using only a fraction of the time and resources that it would take to develop from scratch. Choosing a framework with a solid security record is a must as it helps you entirely avoid some classes of technical vulnerabilities – but only some classes, and only when using…

Source…

5 common myths about ransomware

August 31, 2022/in Internet Security

Ransomware attacks are a near-daily threat to businesses of all sizes. In 2021, US businesses lost nearly $160 billion (opens in new tab) to ransomware attacks, and that number is expected to grow in the years ahead.

While many companies may be aware of the threat posed by ransomware, the vast majority are still vulnerable to attack. This is in part because companies easily fall for myths about ransomware, which leads to being underprepared for attacks.

In this article, we’ll debunk five common myths about ransomware that could be leaving your organization exposed to cybercrime.

Myth #1: It won’t happen to my organization

One of the most common myths about ransomware is that it only affects enterprise-scale businesses with huge cash flows or highly sensitive data. This couldn’t be further from the truth. In fact, small businesses with a hundred or fewer employees are three times as likely (opens in new tab) to face ransomware attacks as larger corporations.

From the perspective of cybercriminals, small businesses (and even individuals) are the perfect target. This is because they often don’t have large IT teams, nor advanced network monitoring software that enterprise-scale companies use. Small businesses may also be less likely to use identity management software (opens in new tab) that could help prevent an attacker from moving through their networks.

Even though cybercriminals might earn less money from a ransomware attack on a small business, the higher likelihood of success makes small businesses attractive targets.

Small business owners should never assume that they’re too small or too unknown to be the target of a ransomware attack. Every organization is a potential target, and it’s critical to take proactive steps to defend your network.

Myth #2: The ransom is the only cost of an attack

Another common myth about ransomware is that businesses can simply pay the ransom and make the whole thing go away. The ransom may be expensive, this reasoning goes, but it’s part of the cost of doing business.

The reality is that the costs of a ransomware attack can extend far beyond the ransom itself. First, there are costs related to work disruption. Even if your organization…

Source…

9 Most Common Password Mistakes That Leave Your Accounts Vulnerable

July 15, 2022/in Internet Security

What was the inspiration for the last password you created for an online account?

It’s human nature to reflect fondly on memorable events, dates, people or pets when it comes time to “fill in the blank” on a new account password.

But it’s those personal details that can get us in trouble when nefarious characters try to steal our information online.

Internet security company ExpressVPN recently conducted a survey that revealed many of us are making poor cybersecurity decisions by including our personal details in passwords.

In this article, I’ll explore the most common password mistakes people are making, according to ExpressVPN’s findings, as well as some other tips provided by the firm’s cybersecurity experts.

9 Most Common Personal Details in Passwords According to the Survey

Including personal details isn’t the only mistake you can make with a password, but it definitely is a common one.

According to the survey, the most common personal detail included in a password is a date of birth. That’s followed closely by other easily identifiable things such as first and last names.

The trouble with this, of course, is that an identity thief can easily compile this type of information on you and put it to use as they attempt to crack the code on your passwords.

And while it may not be such a big deal if they get the password for your favorite online message board, it could be life-changing — in a bad way — if they’re able to figure out a password to your banking, investing, Social Security or other pertinent personal financial accounts.

Here’s a look at the top nine personal details survey takers were using in their passwords.

Ranking	Personal Detail	Passwords Containing These Details
1	Date of birth	43.9%
2	Pet’s name	43.8%
3	First name	42.3%
4	Last name	40%
5	Child’s name	37.5%
6	Phone number	32.2%
7	Middle name	31.6%
8	Social Security number	30.3%
9	Ex-partner’s name	26.1%

Survey statistics provided by ExpressVPN

That’s Not All! We’re Also Making These Password Mistakes

Remember when I said personal details aren’t the only problem? The survey unveiled some more common missteps that people make in efforts to secure their personal information.

ExpressVPN provided these…

Source…

Tag Archive for: common

Where it all begins: The troubled relationship between software innovation and security

Misconception #1: Security is not a development problem

Misconception #2: Our web framework takes care of security

9 Most Common Personal Details in Passwords According to the Survey

That’s Not All! We’re Also Making These Password Mistakes