Latest

Cybercrime as-a-service

CISA's Krebs: 2016 US Elections Were Cyber 'Sputnik' Moment

Scott Ferguson  •  February 25, 2020

The 2016 U.S. presidential election served as a wake-up call for lawmakers and the public about the threat that cyber attackers can pose to the country's democracy, CISA Director Christopher Krebs told the 2020 RSA Conference. Election security and ransomware remain his agency's two biggest concerns.

►

Cloud Security

Closing the Tech Talent Gap

Tom Field  •  February 25, 2020

Global enterprises have spent a decade fighting the cybersecurity skills shortage, and Exabeam CEO Nir Polak has ideas about how automated tools can help fill the gap.

Cybercrime

FBI Makes Arrest in DDoS Attack on Candidate's Website

Ishita Chigilli Palli  •  February 24, 2020

The FBI has arrested a suspect who's charged in connection with waging distributed denial-of-service attacks against the campaign website of an unsuccessful 2018 Democratic candidate for the U.S. House in California.

Governance

New Mexico Sues Google Over Children's Privacy

Jeremy Kirk  •  February 24, 2020

New Mexico is suing Google, alleging the company violates a federal child privacy law by collecting the personal data of students younger than age 13 without their parents' consent. Google rejects the lawsuit's claims, saying they are "factually incorrect."

Application Security

'Privacy by Design' Implementation Tips

Suparna Goswami  •  February 24, 2020

Implementing the concept of "privacy design" requires a series of critical steps, says Heikki Tolvanen, chief legal engineer at PrivacyAnt, a Finland-based privacy consulting firm, who offers insights on mistakes to avoid.

Breach Notification

Defense Department Agency Reports Data Breach

Apurva Venkat  •  February 21, 2020

A U.S. Defense Department agency that's responsible for providing secure communications and IT equipment for the president and other top government officials says a data breach of one of its systems may have exposed personal data, including Social Security numbers.

Cyberwarfare / Nation-State Attacks

US, UK Blame Russia for Cyberattack in Country of Georgia

Scott Ferguson  •  February 21, 2020

U.S. and U.K. officials are blaming the Russian military for launching an October 2019 cyberattack on the country of Georgia that crippled at least 2,000 government, news media and court websites over the course of one day.

Fraud Management & Cybercrime

GAO: Census Bureau Comes Up Short on Cybersecurity

Akshaya Asokan  •  February 20, 2020

The U.S. Census Bureau has not done enough to address cybersecurity issues in preparation for the 2020 census, which is slated to begin in April, according to a new report from the Government Accountability Office.

Breach Notification

Hackers Post Details on MGM Resorts Guests: Report

Ishita Chigilli Palli  •  February 20, 2020

Hackers have posted on an underground forum the personal information of 10.6 million MGM Resorts guests, according to a news report. The hotel chain confirms it was breached last year.

Cybercrime

New Hacking Group Targets Gambling Firms: Report

Akshaya Asokan  •  February 20, 2020

A newly identified hacking group has been targeting gambling companies in Asia, the Middle East and Europe, using backdoors to steal source code and other data, according to new research from security firm Trend Micro.

Business Continuity Management / Disaster Recovery

Ransomware Attack Hit US Natural Gas Facility

Ishita Chigilli Palli  •  February 19, 2020

A ransomware attack on a U.S. natural gas compression facility led to a two-day shutdown of operations, according to an alert from the Cybersecurity and Infrastructure Security Agency.

Governance

Coronavirus Update: Tips for Travel

Tom Field  •  February 19, 2020

Globally, the coronavirus has infected more than 75,000 people and led to over 2,000 deaths. But business travelers should avoid panic, says pandemic expert Regina Phelps, who offers preventive health tips for those headed to international events, such as the RSA 2020 conference.