Companies covered under the EU mandate can get policies for up to $10 million for fines, penalties, and other costs. Cyber insurance provider Coalition has announced new policies explicitly designed to cover fines and costs stemming from violations of the EU’s General Data Protection Regulation (GDPR). The policies are targeted primarily at small and midsize companies […]
SOC security analysts shoulder the largest cybersecurity burden. Automation is the way to circumvent the unavoidable human factor. Third in a six-part series. We all make mistakes sometimes, which is why we need to factor in human error as part of the cybersecurity process. This series explores the human element of cybersecurity from six perspectives […]
Cybercriminals see formjacking as a simple opportunity to take advantage of online retailers – and all they need is a small piece of JavaScript. Source: https://www.darkreading.com/threat-intelligence/formjacking-compromises-4800-sites-per-month-could-yours-be-one/d/d-id/1333908?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple
In an unusual development, the group known for its attacks against companies in countries viewed as geopolitical foes is now going after companies in a country considered an ally, Check Point Software says. Source: https://www.darkreading.com/attacks-breaches/north-koreas-lazarus-group-targets-russian-companies-for-first-time/d/d-id/1333912?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple
These programs are now an essential strategy in keeping the digital desperados at bay. Back in the Old West, sheriffs tacked up parchment “Wanted” posters offering cash bounties to help them catch lawless gunslingers like Billy the Kid and Butch Cassidy. Today, corporations and governments are paying high-dollar bounties to combat a new generation of […]
No longer can privacy be an isolated function managed by legal or compliance departments with little or no connection to the organization’s underlying security technology. Recent advancements in machine learning and big data analytics have made data more important today than ever before. Companies are now investing heavily in protecting their customers’ data; for instance, […]
With attackers operating more aggressively and stealthily, some industrial network operators are working to get a jump on the threats. Source: https://www.darkreading.com/threat-intelligence/ics-scada-attackers-up-their-game/d/d-id/1333893?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple
The industry needs to keep in mind the realities of hardware limits and transitional growing pains, according to Microsoft, Utimaco researchers. Source: https://www.darkreading.com/iot/post-quantum-crypto-standards-arent-all-about-the-math/d/d-id/1333892?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple
Businesses don’t have sufficient staff to find vulnerabilities or protect against their exploit, according to a new report by Ponemon Institute. Source: https://www.darkreading.com/threat-intelligence/staffing-shortage-makes-vulnerabilities-worse/d/d-id/1333897?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple
A “very realistic-looking” login prompt is designed to capture users’ Facebook credentials, researchers report. Source: https://www.darkreading.com/threat-intelligence/hackers-found-phishing-for-facebook-credentials/d/d-id/1333896?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple
A new strain of MacOS malware hides inside a Windows executable to avoid detection. Source: https://www.darkreading.com/cloud/windows-executable-masks-mac-malware/d/d-id/1333876?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple
Hacking by external actors caused most breaches, but Web intrusions and exposures compromised more records, according to Risk Based Security. Source: https://www.darkreading.com/threat-intelligence/2018-was-second-most-active-year-for-data-breaches/d/d-id/1333875?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple
New data from the credit reporting firm shows the sheer scale of online activity in the US also has made businesses and consumers there prime targets. Consumers and businesses in the United States appear to be experiencing substantially more online fraud than their counterparts in other regions of the world. The situation is driving an […]
Adantium, developed by Google, brings communication encryption to bear on storage security. Android devices come in a wide range of CPU power and memory configurations. Until recently, those on the lower end of the range weren’t required to offer encrypted storage. The reason? The most common encryption scheme, AES256, requires too much from the CPU: […]
Security has become a stand-alone part of the corporate IT organization. That must stop, and transparency is the way forward. In college, I was assigned to write a paper for a political science class to argue what would be the greatest national threat our upcoming generation would face. I wrote what I believed to be […]
Officials believe a nation-state is to blame for the incident, which took place Thursday night into Friday morning. The Australian Parliament today disclosed a cyberattack targeting its network from Thursday night into Friday morning. So far, evidence does not indicate any information was taken. This network contains lawmakers’ email archives, which officials indicate may have […]
