GitHub Exposed Passwords of Some Users
GitHub has instructed some users to reset their passwords after a bug caused internal logs to record passwords in plain text. Several users posted screenshots on Twitter of the security-related email they received from GitHub on Tuesday. The company told impacted customers that the incident was discovered during a regular audit. GitHub claims only a “small number”…
Unsurprisingly, most won’t be ready for GDPR on 25th May
With less than a month until the GDPR comes into force, many companies will not be ready when it takes effect on May 25th, 2018. 62% of IT Decision Makers (ITDMs) surveyed describe themselves as ‘confident’ in the build-up, with 1 in 5 (18%) saying they are nervous, according to WinMagic. Only half (51%) of companies say they have…
Cambridge Analytica Says it is ‘No Bond Villain’
Cambridge Analytica claimed Tuesday it was “no Bond villain” as it vehemently denied exploiting Facebook users’ data for the election campaign of US President Donald Trump. The marketing analytics firm stressed it had deleted data about Facebook users obtained in breach of the social network’s terms of service. The information had been gathered via a…
GDPR: It’s an issue of transparency
The General Data Protection Regulation (GDPR) has been on the lips of security professionals for a long time now – but in just over a month, it will become a reality. While it is easy to get stuck with reviewing the potential fines or setting up efficient security procedures to ensure compliance, many are still…
Where Are You in Your GDPR Journey?
At first glance, it may seem strange to be asking you where you are in your GDPR journey when enforcement for the regulation begins on May 25 — which is now less than 60 days away. After all, GDPR was approved way back in April 2016, and here at IBM we’ve been talking and blogging…
Facebook Rolls Out ‘Data Abuse Bounty’ Program
The social media giant also got hit with a lawsuit the day before unveiling its new reward program. All eyes are on Facebook as the company wades its way through a sticky controversy centered on users’ privacy. As CEO Mark Zuckerberg testified before Congress this week regarding the Cambridge Analytica scandal, the social media giant…
Strengthening Cybersecurity’s Weakest Links With Deep Network Insights
Like a chain forged of steel, cybersecurity is only as strong as its weakest link. But how can we gain visibility into where these weaknesses exist and how they are being exploited? How can we determine where gaps occur that impact our ability to protect against, detect and respond to the latest threats? Studies have…
March’s Top Cybersecurity News Stories: Responding to Attacks, Women in Security and a New Community for Security Pros
Despite Growing Threats, Many Organizations Still Unprepared The vast majority of organizations still lack a formal cybersecurity incident response plan (CSIRP) that’s applied consistently across the organization, according to a new report from the Ponemon Institute. Paradoxically, the institute’s third annual study on cyber resilience found that organizations feel much more positive about their readiness than they did last…
Know Your Security X’s and O’s: Your Cyberdefense Team Is Only as Good as Its Threat Intelligence
All of us in the security industry realize that we face a virtually insurmountable task to ensure that the data belonging to our organizations and customers is kept safe and secure. If you step back and think about it, the list of potential perpetrators is daunting in scope. It includes cybercriminals, hacktivists, foreign governments, and…
A Letter From the Future: It’s January 2019 and Hackers Are Stealing Your Data
In my first LinkedIn article, I’d like to welcome you to the future. Not too far in to the future. But, it’s January 2019 and unfortunately cyber criminals are stealing your data. You’re scrambling to respond, hustling to contain, scurrying to an emergency board meeting. It’s a bad day. You may be thinking that this…