Insights Archives - Page 5 of 38

Vulnerability Alert: Windows Zero-Day Actively Exploited by Ransomware Group

Michelle Drolet

What You Need to Know: A zero-day vulnerability (CVE-2023-28252) was found in the Windows Common Log File System (CLFS) and is being actively exploited. The vulnerability allows attackers to gain SYSTEM privileges on target Windows systems and deploy Nokoyawa ransomware payloads. CISA’s Known Exploited Vulnerabilities catalog now includes CVE-2023-28252, which impacts all versions of supported

1 Minute 15 Second Read

Why Zero Trust Is Necessary In The Fight Against Ransomware

Michelle Drolet

The rising number and increasing severity of ransomware attacks are sufficient to prove that current cybersecurity strategies are simply not working. The fact is, today’s security approaches are far too focused on the network perimeter and too lenient when it comes to internal traffic. And since most users, devices and cloud-based applications operate outside of the corporate

4 Minute 56 Second Read

Recent Bank Failures May Result in an Increase Wire Fraud

Michelle Drolet

Recent bank failures are creating opportunities for cybercriminals to readily access your personal and company bank accounts. With the vast uncertainty, cybercriminals are posing as representatives from banks, requesting account information and gaining immediate access to remove your money and change your login information. We encourage you to be vigilant and verify all communication you may

1 Minute 17 Second Read

10 Things I know about … ChatGPT

Michelle Drolet

Editor’s Note: All the text in bold below was written by the ChatGPT artificial intelligence. Those sections were verified as accurate by a human editor, but they have not been changed. 10) ChatGPT is a language model developed by OpenAI, a research organization dedicated to creating and promoting friendly artificial intelligence (AI). Free for now,

1 Minute 45 Second Read

Vulnerability Alert: Apple Patches Two Vulnerabilities, Including a Zero-Day

Michelle Drolet

What You Need to Know: In response to attacks aimed at hacking iPhones, iPads, and Macs, Apple issued urgent security updates that address two vulnerabilities, one of which is a zero-day vulnerability. The first vulnerability, tracked as CVE-2023-23529 [1,2], is a WebKit confusion zero-day that can lead to OS crashes and the execution of arbitrary

1 Minute 47 Second Read

5 Reasons to Hire a Virtual Chief Information Security Officer in 2023

Janelle Drolet

Janelle Drolet was recently named The Most Admired Women Leaders in Business, 2023 by CIO Views It’s a sad fact of doing business – criminal hackers are continuously evolving their tactics to breach defenses, steal intellectual property and deploy ransomware. To combat them, a business needs leadership capable of keeping the company’s security controls

4 Minute 33 Second Read

Success is measured by integrity and passion

Michelle Drolet

Michelle Drolet was recently named The Most Admired Women Leaders in Business, 2023 by CIO Views Many people equate money with success. Although, money is not a bad indicator, but it is not the end all be all. To me success is being blessed with a beautiful family, my Towerwall team members and our

7 Minute 10 Second Read

What is the MIPSA? And what the new Massachusetts Information Privacy and Security Act means for business

Michelle Drolet

The Commonwealth of Massachusetts may soon approve a data privacy bill called the Massachusetts Information Privacy and Security Act, which will make the state a national leader in regulation of data privacy and security. There are extensive fines and penalties for non-compliance, and the ruling will allow individuals to sue organizations for data breaches. Who

2 Minute 15 Second Read

Vulnerability Alert: High-Severity JsonWebToken Library Vulnerability

Michelle Drolet

What You Need to Know: A vulnerability was found in the open source JsonWebToken (JWT) library. According to Palo Alto Networks Unit 42, CVE-2022-23529 it could allow an attacker to achieve remote code execution (RCE) on a server verifying a maliciously crafted JSON web token request. The vulnerability impacts JsonWebToken package version 8.5.1 and earlier.

1 Minute 59 Second Read

6 Cybersecurity Trends You Can Expect In 2023

Michelle Drolet

It’s that time of year again when we try to predict what’s ahead of us in terms of cybersecurity. 2022 has already become a record-breaker for the sheer volume of phishing scams, cyberattacks, data breaches and crypto heists. There was also a rise in hacktivism cases where state-sponsored cyber legions disrupted critical infrastructure and services,

4 Minute 28 Second Read

Our Cybersecurity Solutions

Virtual Security Officer

We Advise

Industries

Trends & Threats

Knowledge Hub

Our Company

Resource Category: Insights

Why Zero Trust Is Necessary In The Fight Against Ransomware

Recent Bank Failures May Result in an Increase Wire Fraud

10 Things I know about … ChatGPT

5 Reasons to Hire a Virtual Chief Information Security Officer in 2023

Success is measured by integrity and passion

What is the MIPSA? And what the new Massachusetts Information Privacy and Security Act means for business

6 Cybersecurity Trends You Can Expect In 2023

Talk with us now about:

Your security needs.

Call 774.204.0700

Email Us