An investigation at the U.S. Treasury Department has found that it suffered a "significant" breach as a result of the SolarWinds Orion supply chain attack, a top Democrat on the Senate Finance Committee reports. Meanwhile President-elect Joe Biden said of the attack: "I promise you, there will be a response."
As more businesses move to agile methodologies, providing more online services to customers and exposing data and APIs, the need for “Shifting Left” and building security into the start of the (continuous) development cycle grows every day. CIOs and CISOs need to think carefully about when, where and how to deploy...
Are insurers getting cold feet over covering losses to ransomware? With claims due to ransomware skyrocketing, some insurers have reportedly been revising offerings to make it tougher for companies to claim for some types of cybercrime, including extortion.
The human factors of cybersecurity represent the actions or events where human error results in a successful hack or data breach. Other than hackers taking advantage of naturally existing weak entry points, your biggest threat and vulnerability could be coming from the inside. Whether it's a well-meaning employee who...
In January 2020, an independent research firm, commissioned by Veeam, completed a survey of 1,550 enterprises across 18 countries on what their data protection challenges and goals were. That research included 217 financial services organisations.
Read this report to learn about:
The results and insights from the...
2019 saw the biggest attack ever recorded but, overall, attacks were
smaller, shorter, and more persistent.
For some time now, carrying out a DDoS attack has no longer required any technical skills.
With a myriad of "stressing" or DDoS-for-Hire services available to carry out both network
and application layer...
To ensure data and services are protected against attack, DevOps is evolving to incorporate
cybersecurity practices across the lifecycle. Organizations need to take into account the fast-moving
nature of continuous innovation, and a rapidly evolving and fragmented threat landscape: otherwise
security can get in the...
The California Consumer Privacy Act (CCPA) is intended to provide
Californian citizens with the right to know when their personal data is being collected,
whether their personal data is being disclosed or sold, and to whom.
This paper outlines data security solutions that can help your organization meet data...
Despite significant investments in common DLP and analytics technologies, breaches and theft of sensitive data continue to rise. This is because the data itself is only monitored, not protected. But what are the gaps in your current technology investments and how can they be filled?
To ensure data security and...
What will be the impact of the leak of investigatory documents from FinCEN - the U.S. Treasury Department's Financial Crimes Enforcement Network? For starters, experts warn that FinCEN reports may reveal sensitive information tied to banks and law enforcement agencies' investigatory tools and tactics.
A leaked database compiled by a Chinese company has suddenly become the focus of news media reports warning that it could be used as an espionage instrument by Beijing. But on closer examination, the alleged "social media warfare database" looks like public information largely scraped from social media sites.
Whether you are just starting a digital transformation or you're running completely digitized processes, the right tech can make a significant impact on reducing risk and increasing customer value. But with so many solutions, how do you cull the herd?
Join us for an interactive session where we'll discuss a few...
In the three years since Equifax suffered a massive data breach, the consumer credit reporting firm says it has worked tirelessly to overhaul the security shortcomings that allowed the breach to happen. Equifax CISO Jamil Farshchi and other security experts weigh in on important lessons learned.
In application security testing, Dynamic Application Security Testing (DAST) and Static Application Security Testing (SAST) are prominent techniques. However, Interactive Application Security Testing (IAST) is a promising new entrant in AST, helping to dramatically reduce false positives. This white paper provides a...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.
