An analysis on rethinking where awareness programs fit in cyberdefense strategies leads the latest edition of the ISMG Security Report. Also, James Comey's cybersecurity legacy at the FBI.
All ML technology isn't created equal. Learn how the CrowdStrike® ML-based Engine Defends Against Unknown Malware. While many organizations are guarding the front door with yesterday's signature-based antivirus (AV) solutions, today's unknown malware walks out the back door with all their data. What's the answer?
A...
The frequency of "mega breaches" continues to rise at an alarming rate. In fact, crippling incidents involving tens of millions of customer records, theft of highly valuable intellectual property, and related criminal activity have become commonplace.
This report asserts that many such breaches could be prevented...
Organizations are scrambling to identify security weaknesses before their adversaries do. Having a consistent, systematic, and scalable methodology to properly assess your environment is essential. To begin you need a solid understanding of the organization, its components, what it relies on, and what could cause it...
Another day, another data breach in the news. Ransomware at a hospital, the latest IRS breach, a phishing scam at Snapchat . . . you tune out the details. For every breach that makes headlines, dozens of other organizations have had data stolen or corrupted by hackers...or even their own users. Cyberthreats become...
This monthly Security Agenda will highlight some of the most recent additions to our course library. March's edition features Visa's SVP Risk Services, Margaret Reid discussing how to keep CNP fraud at Bay. Other industry influencers like University of Michigan's Kevin Fu, Target's Chief Information Security Manager,...
Any organization that deals with credit card information must secure payment card data in accordance with PCI standards.
Merchants and service providers are required to validate compliance by assessing their environment against 12 major control categories applicable to applications and data in the data center and the...
Hybrid cloud security is a hot topic, especially with the massive growth of public cloud providers like Amazon Web Services (AWS), Microsoft® Azure™ and Google Cloud. With the emergence of the hybrid cloud, where workloads are deployed across physical, virtual, and cloud, security professionals are constantly...
Hybrid clouds represent the new normal for data centers, which, in turn, warrants a new security model that needs to be grounded in an understanding about what is different about cloud infrastructure. IT and security professionals are well aware of the need to retool for this new normal.
Given strong adoption of...
Concern about privacy spurs consumers to work more closely with their banks, says Robert Zerby, vice president and financial crimes manager within the Community Banking Risk Management division at Wells Fargo Financial Crimes Risk Management.
The first quarter of 2017 brought with it some significant changes to the threat landscape, and we aren't talking about heavy ransomware distribution either. New threats and infection techniques have forced the security community to reconsider collection and analysis efforts.
This report takes a deep look at which...
In 2016, there were two contenders for king of ransomware: Locky and Cerber. So far in 2017, we've seen a massive shift in the battle between these two families, with Locky basically dropping out entirely and Cerber expanding its market share by a significant amount. New families such as Spora are emerging as well,...
March saw the arrival of a new, so-called "Fappening/ Celebgate" scandal, where leaked images and videos of naked celebrities found their way onto the web...prime real estate for scammers who started peddling numerous links across sites like Reddit and all social networks. Likewise in February, Fortune reported a tech...
Park a police car beside a road, and traffic slows down. David Pollino of Bank of the West takes a similar approach to mitigating the insider threat at the institution. What is the bank's 'noisy' program, and how does it discourage rogue behavior? Pollino explains.
Cyberattacks are evolving at a much faster pace than the traditional security solutions can adapt to...so we must run to catch up. Machine learning and artificial intelligence (AI) assist a behavioral model of threat detection in an industry-leading alternative to traditional methods of endpoint security test suites....
