The recent Equifax mega-breach demonstrates how essential it is to have a robust, well-tested incident response plan in place that includes a strong public relations component, says Heath Renfrow, CISO at U.S. Army Medicine
Leading the latest edition of the ISMG Security Report: an interview with NIST's Ron Ross about revised guidance on how to get C-suite executives to help shape information risk management. Also, DHS, FBI leaders outline goals for protecting the U.S. election system.
Now that the cloud is seen as a true business enabler, organizations must take steps to make sure they adequately address security as their use of the cloud continues to grow, says Nicolas Fischbach of Forcepoint.
Before the Internet, customers who wanted to perform a bank transaction had only one option - a visit to their local branch for a face-to-face transaction. Now, in the "mobile age," customers expect that their bank provide secure and easy access to the full suite of banking services via their mobile device. The...
Haryana has launched its own cybersecurity framework. But some security practitioners question whether it's really necessary, given the national policy in place. And they point to a lack of detail in the state policy, such as the failure to spell out penalties to be imposed if a firm fails to protect data.
French competitive beard-grower Gal Vallerius was arrested in Atlanta while traveling to the World Beard and Moustache Championships in Texas on charges that he's a darknet marketplace administrator and vendor of controlled substances known as "OxyMonster."
Organizations today take strong measures to guard against data breaches. With 91% of breaches starting with phishing emails, we find ourselves in an arms race against phishing attackers.
So, are we winning the war or just holding ground?
Download this report to learn the implications of phishing response data...
The attacker ecosystem is evolving rapidly and threat actors are making daring attempts to weaponize new attack types and new combinations of popular techniques. Large, global crises have dominated public discourse and news media and elevated the profile of software exploitation. These stories have, in turn, elevated...
How could attackers trick you, an intelligent professional, into handing over company funds?
They impersonate someone you know and trust.
According to the FBI's latest BEC/EAC alert, businesses worldwide experienced a 2,370% increase in actual and attempted dollar losses from BEC/EAC scams between January 2015...
Phishing, spearphishing, CEO Fraud/Business Email Compromise (BEC) and ransomware represent a group of critical security threats that virtually every organization will encounter at some point - and most already have. The logical evolution of phishing are increasing rapidly and costing organizations hundreds of...
Card issuers can view the merchants with whom a cardholder does business, the frequency of a cardholder's purchases, and the devices and IP addresses associated with that specific card. While this allows them to understand and assess certain patterns of behavior for individual cardholders, it restricts analysis to the...
When cardholder transaction and device data are disconnected, the potential for card issuers to more accurately detect and flag instances of fraud remains untapped. And as the connectivity of information in the real world continues to increase, so will related risks from fraudsters if issuers continue to rely solely...
Attackers are increasingly hacking into banks' networks to gain access to the IT infrastructure connected to their ATMs, security experts warn. Attackers push malware onto ATMs that's designed to allow money mules to "jackpot" or "cash out" the machines, then delete itself.
A survey of more than 420 small, mid and large-sized enterprises to understand attitudes towards and progress along the Office 365 journey has provided an insight into customer adoption of cloud technology.
Download this infographic to learn the key findings:
Cloud migration in EMEA is further along than predicted...
Requirements for Compliance and e-discovery will vary based on the industry in which each organization operates. For example,
heavily regulated industries such as financial services, healthcare and government have very specific requirements that have to be
complied with, and the penalties for non compliance can be...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing databreachtoday.in, you agree to our use of cookies.