Phishing Mitigation Can Cost Businesses More Than $1M Annually

One of the oldest tactics in cybercrime is still one of the most widely feared — and with good reason, as campaigns are expected to increase and become more sophisticated over the next 12 months. [TechWeb]( Follow Dark Reading: [RSS]( October 19, 2022 LATEST SECURITY NEWS & COMMENTARY [Phishing Mitigation Can Cost Businesses More Than $1M Annually]( One of the oldest tactics in cybercrime is still one of the most widely feared — and with good reason, as campaigns are expected to increase and become more sophisticated over the next 12 months. [CISA Offers Free RedEye Analytics Tool for Red Teams]( The tool helps red teams manage their activities, analyze the data from their campaigns, create reports, and better present results to organizations. [Treat Essential Security Certificates as Valuable Assets]( Manage the company's often-overlooked security certificates as the valuable assets they are, essential for security hygiene and to prevent issues. [Shared Responsibility or Shared Fate? Decentralized IT Means We Are All Cyber Defenders]( With the IT universe expanding, collaboration, thoughtfulness, and discipline can ensure a more secure future. [German Cybersecurity Boss Sacked Over Kremlin Connection]( Head of German national cybersecurity agency was fired over ties to a member of Russian intelligence once honored by Vladimir Putin. [Gen Z, Millennial Workers Are Bigger Cybersecurity Risks Than Older Employees]( Younger workers surveyed are less likely to follow established business cybersecurity protocols than their Gen X and baby boomer counterparts, a new survey finds. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Cybersecurity's Hiring Spree Requires a Recruiting Rethink]( Just 65 cybersecurity professionals are in the workforce for every 100 available jobs, new study shows. [4 Stakeholders Critical to Addressing the Cybersecurity Workforce Gap]( A cross-disciplinary effort of change is needed to attract new professionals in the coming decade. [Microsoft 365 Message Encryption Can Leak Sensitive Info]( The default email encryption used in Microsoft Office's cloud version is leaky, which the company acknowledged but said it wouldn't fix. [MORE]( EDITORS' CHOICE [Researchers Keep a Wary Eye on Critical New Vulnerability in Apache Commons Text]( There's nothing yet to suggest CVE-2022-42889 is the next Log4j. But proof-of-concept code is available, and interest appears to be ticking up. LATEST FROM THE EDGE [What Is the Difference Between Identity Verification and Authentication?]( Identity verification and identity authentication are neither synonymous nor interchangeable, and implementing both is essential to fighting fraud. LATEST FROM DR TECHNOLOGY [Patching-as-a-Service Offers Benefits, Challenges]( Organizations without the time or talent to patch may find patching-as-a-service a way to improve security. WEBINARS - [Penetration Testing, Red Teaming, and More: Improving Your Defenses By Thinking Like an Attacker]( Enterprises are increasingly discovering that the best way to expose vulnerabilities in their defenses is to think like an attacker. Penetration testing, red teaming, threat hunting, and other offensive strategies are helping organizations quickly find the holes in their cyber ... - [Strategies for DDoS Resilience and Response]( There are few things more disruptive than a distributed denial-of-service (DDoS) attack. The criminals behind these attacks have one objective: to bring everything to a stop so you can't conduct business as usual. How can you ensure business continuity during ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [State of Email Security]( - [State of Ransomware Readiness: Facing the Reality Gap]( - [Addressing Cyber Risk Starts with Understanding Cyber Risk]( - [Top Cloud Threats to Cloud Computing: Pandemic Eleven]( - [BotGuard Supplements CDN and WAF Case Study]( - [Ransomware in Focus: New Research on CISO Perceptions, Perspectives, and Plans]( - [10 Ways a Zero Trust Architecture Protects Against Ransomware]( [View More White Papers >>]( FEATURED REPORTS - [Breaches Prompt Changes to Enterprise IR Plans and Processes]( - [Implementing Zero Trust In Your Enterprise: How to Get Started]( - [6 Elements of a Solid IoT Security Strategy]( [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [AutoRABIT Accelerates Release Management Processes with Automation and Key Integrations]( [Mastercard To Bring Crypto Trading Capabilities To Banks]( [New Research Report Predicts Blockchain and Quantum Threat Will Quickly Spread Beyond Cybercurrencies; Surge in New Product and Services Opportunities to Come]( [Imprivata Expands Its Integrated Digital Identity Platform to Defragment Identities Across Disparate Applications]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [Building the SOC of the Future]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2022]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)