Articles of interest from the week of September 2, 2019

80 Percent of Businesses Experienced a Cybersecurity Incident in the Past Year

Eighty percent of companies surveyed experienced a cybersecurity incident in the past year, the most common being malware attacks, according to the Better Security And Business Outcomes With Security Performance Management Report by Forrester Consulting. (Security Magazine)

Potential Hurricane Dorian Cyber Scams

The Cybersecurity and Infrastructure Security Agency (CISA) warns users to remain vigilant for malicious cyber activity targeting Hurricane Dorian disaster victims and potential donors. Fraudulent emails commonly appear after major natural disasters and often contain links or attachments that direct users to malicious websites. Users should exercise caution in handling any email with a hurricane-related subject line, attachment, or hyperlink. In addition, users should be wary of social media pleas, texts, or door-to-door solicitations relating to severe weather events. (By CISA, Department of Homeland Security)

Hackers’ Latest Target: School Districts

Schools handle a lot of personal data and may not have strong technology teams, leaving them vulnerable to attacks, experts say. (By Brittany Greeson, The New York Times)

How to Get a Handle on Patch Management

As the number vulnerabilities hit a historic high, battle-worn security teams are upping their patching game. (By Tom Spring, ThreatPost)

Hackers Are Actively Trying to Steal Passwords from Two Widely Used VPNs

Got Fortigate or Pulse Secure? Now would be a good time to make sure they're patched. (By Dan Goodin, ArsTechnica)