In Forbes today, Dr. Ryan Aung highlights the struggles SMBs have in defending against cybersecurity threats. As you well know, SMBs are often easier targets for cybercriminals, considering they often lack the resources and infrastructure needed to appropriately bolster their systems, and many more advanced protection solutions are only targeted to enterprises.
Fortunately, there are plenty of cost-effective ways that SMBs can protect their assets effectively without compromising their safety, Aung said.
One of his first suggestions is to consult with experts (looking at you, MSSPs!), including security consultants, and also creating a solid strategy, conducting risk assessments and more. It's a great piece!
Now, here's today's MSSP update. Drop me a line at [email protected] if you have news to share or want to say hi!
Today's MSSP Update
1. Cynomi's new CISO: vCISO platform Cynomi has appointed Dror Hevlin as the company’s Chief Information Security Officer (CISO). Hevlin, who was previously CISO at CyberArk, will be responsible for overseeing Cynomi’s information security strategy for safeguarding client data and mitigating cyber risks. He will drive the development and implementation of Cynomi's internal and external security strategies, oversee the company’s cybersecurity risk management practices and vCISO product methodologies, and ensure alignment with evolving industry regulations and standards. Hevlin will also assume field CISO responsibilities.
2. Cymulate acquires CYNC Secure: Threat exposure validation company Cymulate has acquired CYNC Secure, an Israel-based cybersecurity startup focused on improving operational efficiency for exposure management programs. This acquisition will accelerate time-to-market for Cymulate's Continuous Threat Exposure Management (CTEM) platform, set to launch in 2025, incorporating CYNC Secure’s unique approach to consolidating diverse vulnerability datasets.
3. Cyberattacks surging: Nearly half of IT directors at global enterprises predict cybercrime costs will exceed $15 trillion by 2030 -- equivalent to the combined GDP of Germany, Japan, and the United Kingdom -- with 9% predicting it will hit $20 trillion. Yikes! That compares with industry estimates that the cost of cybercrime will be $10.5 trillion by 2025, according to new research from post-quantum decentralized security pioneer Naoris Protocol.
4. Cyberattacks hit school districts: Threat actors have deployed separate cyberattacks against Maine and Tennessee school districts during the holiday season, reports The Record, a news site by cybersecurity firm Recorded Future. Maine's South Portland Public Schools had its network shut down on Sunday following a weekend intrusion against its firewall facilitated by a Bulgarian IP address. Tennessee's Rutherford County Schools disclosed that some of its employees' personal details were compromised in a Thanksgiving attack causing continuous network and systems interruptions.
5. Rhysida ransomware operation hits Montreal North: Montreal North had its data purportedly stolen in a weekend attack by the Rhysida ransomware operation, which threatened to expose the exfiltrated information unless a $1 million Bitcoin ransom is paid.
