All about Virtualization and Cloud Security | Recent Articles:

• Household IoT devices face an ever-increasing risk without proper security
• Hackers compromise IoT devices and integrate them into botnets responsible for major DDoS attacks
• ISPs can do much more to protect their customers and infrastructure

IoT makes people's lives more comfortable, but for all the good it does, it's also a prime target for botnets and threat actors. Compromised IoT devices launch DDoS attacks against online services, companies, or even people. There's an entire industry built around the DDoS-as-a-Service principle, and the potential victims don't have many options for protection. A possible solution lies in the hands of ISPs when they choose to provide IoT security to their customers.

• SMBs are not prepared for security incidents but are looking for more protection
• Cybersecurity investment from SMB will likely rise
• A majority of SMBs believe that cybersecurity will be outsourced in the next five years

Small and medium businesses (SMB) know that cybersecurity is a priority, but their leaders also believe that their organization will be the target of an attack in the next six months, according to a new survey from ConnectWise.

• The main driver of the IoT market is not innovation and the final product suffers
• The IoT gold rush brings more and more unsecure devices because standards and regulations don’t really exit
• Security for IoT devices can still be achieved, even in these conditions, and the solution is in the ISPs’ hands

The IoT ecosystem is built on a sand foundation, with its devices always in the spotlight for their lack of security, vulnerabilities and other potential problems looming on the horizon. With no solution in sight, even in the long run, the devices' security now falls into the users' or ISPs' responsibility.

• Criminals look for higher BEC payments
• Gift card frauds are the most common BEC incidents
• One Russian BEC operation tries to hit companies with $1.27 million attack

The average payments made through Business Email Compromise (BEC) attacks are increasing significantly, according to a new report APWG Phishing Activity Trends Report.

• Botnet activity is on the rise in Q2 2020
• Threat actors no longer interested in COVID-10 themes
• ZeroAccess botnet responsible for much of the current activity

Threat actors have changed their attack vectors and other techniques and procedures (TTP), shifting from COVID-19 themes to more timely subjects like the Black Lives Matter movement and the upcoming US election, according to a new report.

• Smart homes are already here
• Cybercriminals look for IoT vulnerabilities
• Smart home security is a job for ISPs

More and more people have smart homes these days, and the IoT industry's expansion will likely rapidly increase the number of smart homes. It's a situation that should make everyone happy, but the current state of IoT security should have ISPs a lot more worried.

The FBI and Cybersecurity and the US Infrastructure Security Agency (CISA) issued an advisory regarding a voice phishing, or vishing, campaign directly targeting employees working from home.

Companies continue to pay ransomware demands, and the latest data reveals a 60 percent increase in the average ransom payment in just three months.

An unknown cyber actor is spoofing the Small Business Administration (SBA) COVID-19 loan relief website, trying to trick people into entering their credentials, according to the Cybersecurity and Infrastructure Security Agency (CISA.)

CIOs are switching focus from the security of endpoints to the protection of identity access, which is a critical aspect of cybersecurity now that so many people work from remote locations.

Parental Control is something that parents will eventually come to consider when their children start to interact with technology and the online world. Not only can ISPs help with that, but ISPs should consider offering extra features to its customers to stay ahead of the competition.

Business email compromise (BEC) attacks tend to arrive from similar sources, affecting different companies. Barracuda's latest report reveals that 45 percent of all BEC attacks detected since April 1 come from malicious accounts.