A security consultancy discovered Facebook user data exposed in two different places online without authentication or encryption. The data, which is now offline, came from an Android app that purported to offer statistical information to logged-in users.
As the use of artificial intelligence tools and robotics continues to grow, it's crucial for organizations to assess the potential security risks posed, says attorney Stephen Wu, who reviews key issues in an interview.
Banks can drive real value to their fraud prevention strategies with machine learning and analytics if they cut through the hype. Machine learning can be made intuitive and available directly to fraud experts. A multi-faceted strategy can turn fraud prevention expertise into a revenue generator for the business.
A famed British computer security researcher has lost several key motions in a federal hacking case that stems from his alleged contribution to two types of banking malware. The rulings could complicate the challenges for the defense team of Marcus Hutchins, who remains in the U.S.
The latest edition of the ISMG Security Report highlights how thieves can use "deep fake" photos in an attempt to steal cryptocurrency. Also featured: A discussion of the implications of "data gravity" and an analysis of whether the era of mega-breaches is ending.
Red Hat, Amazon and Google have issued fixes for a serious container vulnerability. The flaw in the "runc" container-spawning tool could allow attackers to craft a malicious container able to "break out" and gain root control of a host system, potentially putting thousands of other containers at risk.
Security practitioners looking to deploy blockchain in their network to support authentication must look for an application that can be implemented easily and effectively, says Prasanna Lohar, head of IT at DCB Bank.
What are some of the hottest issues that will be discussed at this year's RSA Conference, to be held March 4-8 in San Francisco? Britta Glade, content director for the world's largest data security event, says DevSecOps - as well as third-party risk and cloud-related issues - are emerging as key themes.
Cryptocurrency exchanges are seeing fraudsters submit doctored photos in an attempt to reset two-step verification on accounts. The ruse appears to have some degree of success, underscoring the difficulties around verifying identity on the internet.
Cyber criminals are taking relentless aim at financial institutions. Cargills Bank is taking a proactive approach to better safeguarding customers with a cognitive security solution, IBM QRadar Advisor with Watson. Analysts can readily examine a broad range of threat data and gain actionable insights to make decisions...
Whether you have a security team of two or 100, your goals are to ensure the business thrives. And that means protecting
critical systems, users, and data, detecting and responding to threats, and staying ahead of cybercrime. But there are a number of serious challenges plaguing today's SOC that may impede your...
In the 30-criteria evaluation of security analytics platforms providers, Forrester identified the 13 most significant ones and researched, analyzed, and scored them. IBM is identified as a leader. This report shows how each provider measures up and helps Security & Risk professionals make the right choice.
Security teams are leveraging incident response (IR) orchestration to face these growing threats because it empowers
analysts to make intelligent decisions and act quickly. Advanced incident response orchestration coordinates people, process and technology both within the Security Operations Center (SOC) and across...
A SOC provides centralized and consolidated cybersecurity incident prevention, security event monitoring, detection and response capabilities, and supports other business unit requirements. This research helps security and risk management leaders identify the best SOC model for their organization.
Leveraging new security technologies and implementing proven security basics enables enterprise scale security operations without big budgets and large teams of security resources.
Download this eBook and learn how to:
Understand your environment and know what matters;
Focus on and prioritize security...