With the abundance of PII available on the dark web, there has been an explosion of synthetic identity fraud. Michael Lynch of InAuth discusses how device and user data can be leveraged to combat the fraudulent opening of new accounts.
Those of you who are CISOs and have been conducting awareness programs for years realize that ''the devil is in the details" when building a successful program. Initial attempts to get an awareness program started are usually done by trial and error- but this hit-and-miss approach is often ineffective or frustrating....
Police in India have made seven arrests of suspected money mules involved in the theft of $13.5 million from Cosmos Bank. Authorities continue to investigate the heist in hopes of identifying those who led the attack.
Online retailer Newegg is investigating a malware attack that may have stolen customers' payment card details for more than a month. Security firms have traced the heist to Magecart, a loose affiliation of cybercrime gangs also tied to payment card data breaches at British Airways and Ticketmaster.
As healthcare records have steadily gone digital, the industry
has had to play catch-up with cybersecurity. But that is starting
to change as healthcare companies pay a steep toll in data
breaches: records replacement, remediation, downtime, bad
reputation, fines and even stock prices. The damage happens
It was a cunningly crafted phish...
Employees at a healthcare company were going about their day when they received an email from their CEO - and it wasn't a typical meeting invitation. The email asked them to read and agree to a company policy. Simple. Just click on a link, login with their credentials and go to...
Want to Avoid Attacks? Think Like a Marine
The Marines are tough and they're smart, too. That's why they anticipate risks to stay "left of bang" on the battlefield and reduce their losses. This eBook uses similar thinking to help strengthen your phishing defense and keep your company "left of breach."
Coordinated police raids in Germany and Sweden have resulted in the arrest of two Syrian nationals suspected of running a cyber fraud operation that purchased stolen card data to book hundreds of airline and train tickets to help smuggle people from the Middle East into Europe.
The latest edition of the ISMG Security Report features an analysis of a new Government Accountability Office report on the causes of last year's massive Equifax breach. Also: An update on the role of tokenization in protecting payments.
Russian national Peter Levashov, who was arrested in Spain last year and extradited to the U.S., has admitted to a two-decade crime spree that included running multiple botnets that harvested online credentials while also pumping out spam, banking Trojans and ransomware.
Over the past year, financial services organizations have seen an 87% increase in credential leakage, 149% increase in stolen credit cards, 151% increase in cyber-attack indications, and a 48% increase in fake social media accounts. In addition, state-sponsored APT groups with little to no financial motivation have...
The British Airways breach, in which up to 380,000 website and mobile users' payment card details were stolen, traces to card-scraping code injected into a script on the airline's website by the cybercrime group called Magecart, says security firm RiskIQ.
British Airways has been threatened with a class-action lawsuit in U.K. court after warning that a hacker stole payment card data associated with 380,000 transactions. A law firm says that under GDPR, the airline should compensate victims for "inconvenience, distress and misuse of their private information."