Why companies should stop scaring employees about cybersecurity
Companies often turn to a powerful emotion to get employees to be vigilant about cybersecurity. They scare them. The problem is it doesn’t work. But fear not. Although scaring employees may not be an effective way to keep them vigilant, there are other tools that do work.
How Russian hackers infiltrated the US government for months without being spotted
To carry out the breach, the hackers first broke into the systems of SolarWinds, an American software company. There, they inserted a back door into Orion, one of the company’s products, which organizations use to see and manage vast internal networks of computers. For several weeks beginning in March, any client that updated to the latest version of Orion – digitally signed by SolarWinds, and therefore seemingly legitimate – unwittingly downloaded the compromised software, giving the hackers a way into their systems.
~18,000 organizations downloaded backdoor planted by Cozy Bear hackers
About 18,000 organizations around the world downloaded network management tools that contained a backdoor that a nation state used to install malware in organizations the used the software, the tools provider, SolarWinds, said on Monday.