Articles of interest from the week of October 18, 2021
Attack Surface Larger Than Ever As Organizations Shift to Remote and Hybrid Work With end-users working from anywhere – in some cases using personal...
24/7/365 Monitoring & Alerting
Compromise Assessments
Threat Hunting
Vulnerability Management
CMMC Preparation & Assessment
Cybersecurity Assurance Readiness (CSAR®/RMF Pro)
ATO/RMF Support
If you are concerned about a potential threat or are experiencing a breach, contact our 24/7/365 emergency hotline at 888-860-0452.
Sign up to receive our biweekly newsletter that covers what's happening in cybersecurity including news, trends, and thought leadership.
At our core, Ingalls is a company that strives to be helpful to our clients while continuously innovating and evolving our technology and solutions. Since 2010, we have been dedicated to building a team and product that can stay steps ahead of threats, attacks, and vulnerabilities in an ever-changing landscape.
1 min read
John Frasier : Apr 18, 2022 12:00:00 AM
Some 75% of SMBs polled in a recent survey said they’d be able to survive only three to seven days following a ransomware attack. A successful ransomware attack can devastate any size organization. But small- and mid-sized businesses are often more vulnerable as they have more limited financial and technical resources to help them recover. This new report also reveals why SMBs may not be able to withstand an attack and offers advice on how they can better protect themselves. (By Lance Whitney, TechRepublic)
According to a new report on incident response (IR) investigations, the data found that companies have tuned their detection capabilities to find the most dangerous attacks quickly, with ransomware detected within five days on average; non-ransomware attacks remained active for 36 days in 2021, down from 45 days in 2020. But the quicker detection of ransomware attacks may not necessarily be positive, instead being due to the activation of the payload, says Steven Stone, senior director of adversary operations for Mandiant. (By Robert Lemos, Dark Reading)
The number of publicly reported data breaches in the US increased by double digits year-on-year in the first three months of 2022, according to the Identity Theft Resource Center (ITRC). (By Phil Muncaster, Infosecurity Magazine)
Researchers have found that LinkedIn forgeries made up over half of all phishing attacks in Q1 2022. (By Josh Breaker-rolfey, IT Security Guru)
The Cybersecurity and Infrastructure Security Agency (CISA) has added three new security flaws to its list of actively exploited bugs, including a local privilege escalation bug in the Windows Print Spooler. This high severity vulnerability (tracked as CVE-2022-22718) impacts all versions of Windows per Microsoft's advisory and it was patched during the February 2022 Patch Tuesday. The only information Microsoft shared about this security flaw is that threat actors can exploit it locally in low-complexity attacks without user interaction. (By Sergiu Gatlan, BleepingComputer)
Attack Surface Larger Than Ever As Organizations Shift to Remote and Hybrid Work With end-users working from anywhere – in some cases using personal...
20 Percent of Companies Working Remotely Have Suffered a Breach Since organizations have shifted to a work from home model, the potential for...
As Remote Work Becomes the Norm, Security Fight Moves to Cloud, Endpoints A majority of firms expect to keep more employees working remotely...