Cyber Security News of the Month - May 2023
Welcome to our latest looking back at May 2023.
We are almost at the halfway point of the year and it has been quite the year when it comes to cyber security and information security that’s for sure.
Latest Cyber Security News
Zyxel have warned of critical vulnerabilities in their firewall and vpn devices. https://www.bleepingcomputer.com/news/security/zyxel-warns-of-critical-vulnerabilities-in-firewall-and-vpn-devices/
TikTok's two-year effort to appease US lawmakers and defend its commitment to protecting the privacy of US-based TikTokers has culminated in an effort called Project Texas. This $1.5 billion initiative is a collaboration among TikTok, the US government, and Austin, Texas-based Oracle.
A peek under the hood of a cybercrime operation and what you can do to avoid being an easy target for similar ploys. https://www.welivesecurity.com/2023/05/30/tricks-trade-cybercrime-ring-fraud-scheme/
Security Breaches
Microsoft detected stealthy and targeted malicious activity carried out by Volt Typhoon, a state-sponsored actor based in China that typically focuses on espionage and information gathering. Read more on the Microsoft blog here: https://www.microsoft.com/en-us/security/blog/2023/05/24/volt-typhoon-targets-us-critical-infrastructure-with-living-off-the-land-techniques/
An apparent ransomware attack on one of America’s largest dental health insurers has compromised the personal information of almost nine million individuals in the United States. https://techcrunch.com/2023/05/31/ransomware-attack-on-us-dental-insurance-giant-exposes-data-of-9-million-patients/
The Philadelphia Inquirer was hit with a cyberattack that resulted in significant disruptions to its operations. It was unable to print its Sunday paper on May 14, and it had to scramble to restore several systems. https://www.informationweek.com/security-and-risk-strategy/cyberattack-takes-down-systems-at-philadelphia-inquirer-
Hot Topic Of The Month
On the Secora blog, ISO 27001 (ISO/IEC 27001:2013) is an internationally recognised and widely adopted standard which outlines best practices and requirements for an organisation's Information Security Management System (ISMS).
The ISMS is designed to preserve the confidentiality, integrity and availability of information by applying a risk management process with the aim of assisting organisations in keeping their information secure.
We dive into 7 reasons why organisations are certifying to the standard. https://www.secoraconsulting.com/blog/2023-05-29-iso-27001-7-reasons-why-organisations-are-certifying-to-the-standard/
How Our Experts Can Help
Secora Consulting was set up to assist you with your cyber security requirements. We understand the challenges of security testing and keeping your business secure. Our goal is to improve your cyber security operations, providing peace of mind in an ever-evolving threat landscape.
As your trusted security partner, our team brings years of experience in securing high-risk sensitive environments. Using a consistent methodology, we highlight any failing security controls and underlying issues to help protect your systems, reducing your overall risk.
At Secora Consulting we are invested in the success and growth of our clients. We take your security as seriously as our own.
Contact us today by emailing sales@secoraconsulting.com or calling: Ireland: +353 74 970 7876 / UK: +44 20 4538 2818
Our services
All of Secora Consulting's assessments are tailored to our client's needs.
Using our experience, we can help you determine which services are right for you.
