Why do we need a risk-based approach to authentication?
20 years ago, everyone worked at a desktop workstation hardwired into an office building. This made network security simple and organizations felt they could depend on the time-tested method of the trusted perimeter. Firewalls were relied on to keep out external threats, and anything within the network was considered secure and safe. Today, however, the…
7 steps security leaders can take to deal with Spectre and Meltdown
Security and risk management leaders must take a pragmatic and risk-based approach to the ongoing threats posed by an entirely new class of vulnerabilities, according to Gartner. Spectre and Meltdown are the code names given to different strains of a new class of attacks that target an underlying exploitable design implementation inside the majority of computer…
Security Awareness Training Top Priority for CISOs
Thirty-five percent of CISOs in the financial sector consider staff training to be the top priority for cyber defense. Twenty-five percent prioritize infrastructure upgrades and network defense. The Financial Services Information Sharing and Analysis Center (FS-ISAC) polled more than 100 of its 7,000 global members to produce the first of its planned annual CISO Cybersecurity…
Scary apps on Google Play, and what to do about them
Jane, the mother of seven-year-old Samantha, was in the next room when she heard a horrible voice coming from the smartphone her daughter was playing with. She came running into the room as the voice continued: “You look afraid, is it this knife in my hands? Making you a little nervous? This knife is going…
Fake News: Could the Next Major Cyberattack Cause a Cyberwar?
In the way it undercuts trust, fake news is a form of cyberattack. Governments must work to stop it. Fake news — we’ve all heard about it, but sometimes we struggle to grasp the extent of its impact. With more people moving online and social media becoming the go-to news source, and with a good…
What CISOs prioritize in order to improve cybersecurity practices
In a new study by the The Financial Services Information Sharing and Analysis Center (FS-ISAC), CISOs weighed in on the most critical cyber-defense methods, frequency of cyber-preparedness reporting to their respective boards of directors as well as the current cyber chain of command within their respective financial organizations.
Most CIOs plan to deploy artificial Iintelligence
Meaningful artificial intelligence (AI) deployments are just beginning to take place. Gartner’s 2018 CIO Agenda Survey shows that four percent of CIOs have implemented AI, while a further 46 percent have developed plans to do so. “Despite huge levels of interest in AI technologies, current implementations remain at quite low levels,” said Whit Andrews, research vice president…
NoMoreRansom: Free Decryption for Latest Cryakl Ransomware
Decryption keys for a current version of Cryakl ransomware have been obtained and uploaded to the NoMoreRansom website. Victims of Cryakl can potentially recover encrypted files with the Rakhni Decryptor available for free from Kaspersky Lab or NoMoreRansom. NoMoreRansom is a collaborative public/private project launched by Europol, the Dutch National Police, Kaspersky Lab and McAfee in July 2016….
Crypto Mining Malware Infects Thousands of Websites
Hacked Script Infects Several Government Sites with Cryptominer The websites of numerous government, health and education organizations worldwide were infected with a crypto-currency miner over the weekend, after a script running on all of them was maliciously modified. The culprit was Browsealoud, a script developed by Texthelp to add “speech, reading, and translation to websites.”…
Back to Basics: AI Isn’t the Answer to What Ails Us in Cyber
The irony behind just about every headline-grabbing data breach we’ve seen in recent years is that they all could have been prevented with simple cyber hygiene. Earlier this month, many of the planet’s most influential leaders met at the World Economic Forum in Davos to address some of the most pressing issues of our time,…