blog-logo.png

A BLOG ABOUT CYBER SECURITY

Wombat Security is a leader in security awareness and training. Our blog covers the latest cyber security news, insights, and best practices. We arm infosec professionals with the knowledge and tools they need to improve end-user behaviors and reduce organizational risk.

Risk Management

Rethinking Patch Management Strategies to Balance Security and Uptime

Posted by Kurt Wescoe on Jun 21, 2017 12:42:04 PM

Recently I was part of a panel discussion on combatting ransomware at the SecureWorld Atlanta event. An interesting conversation developed around the old stalwart of patching computers and systems. A solid patching process is one of the most elementary parts of an organization’s security program — or at least it should be.

Read More »

Ransomware and Phishing Attacks: Why Anti-Virus Software Can't Save You

Posted by Gretel Egan on Jun 13, 2017 2:50:53 PM

Installing and keeping anti-virus software up to date on computers and mobile devices has become a de facto cybersecurity best practice — and for good reason. Like other technical safeguards, anti-virus software has come a long way in its sophistication since its early days in the late 1980s and early 1990s. There are many reliable and reputable options for anti-virus and anti-malware protection for corporate organizations and personal devices, and they provide an important layer of security for data, devices, and systems.

But you cannot count on them to stop ransomware infections, and they absolutely cannot prevent phishing emails from reaching your inbox.

Read More »

Five Tips from CISOs for Managing Emerging Cybersecurity Threats

Posted by Gretel Egan on Jun 8, 2017 10:54:11 AM

I recently had the opportunity to visit SecureWorld Atlanta 2017, where I met a number of industry experts and attended several sessions. One of those sessions was a panel discussion titled, “Hazards on the Horizon – Emerging Threats.” The panel of CISOs discussed both the current cyber threat landscape and offered advice for keeping networks and systems as secure as possible during this era of frequent cyberattacks. Each of the five panelists was asked to provide their one key piece of advice. Here’s what they said:

Read More »

Was WannaCry the Harbinger of a Black Swan Cyberattack?

Posted by Kurt Wescoe on Jun 6, 2017 1:00:56 PM

Now that we’re almost a month past the WannaCry ransomware attack, it seems like a good time to reflect on it and examine some of the bigger-picture takeaways this attack may be signaling. I want to say upfront this is not meant to be a conspiracy theory or doomsday post. But with that said, WannaCry and some of the other more recent attacks show that the ingenuity and resourcefulness of cybercriminals continue to grow. And as far as ransomware goes, the WannaCry attack is the King of the Hill (at least for now); it will be fingered as the harbinger should a larger, more damaging attack be waiting in the wings.

Read More »

Verizon’s 2017 DBIR Shows Phishing Is Still a Big Factor in Data Breaches

Posted by Gretel Egan on May 9, 2017 11:56:17 AM

The recently released 2017 Data Breach Investigations Report (DBIR) is Verizon’s tenth look at real-world security events that are impacting organizations around the globe.* We again contributed to this report, and looked forward to seeing what this year’s study would reveal about the state of data security.

Read More »