Encryption Archives - Page 4 of 6 - Cyber Security Minute

Accidental data breaches are often compounded by a failure to encrypt

Issued by: Help Net Security

83 percent of security professionals believe that employees have accidentally exposed customer or business sensitive data at their organization. Accidental data breaches are often compounded by an organizational failure to encrypt data prior to it being shared – both internally and externally – putting their organizations at risk of non-compliance with major data privacy regulations,…

Network Security

What steps consumers need to take to protect themselves online

Issued by: Help Net Security

Yesterday was Data Privacy Day, so McAfee warned consumers that cybercriminals are continuing to access personal information through weak passwords, phishing emails, connected things, malicious apps and unsecure Wi-Fi networks. Weak Passwords Consumers often pick simple passwords for the multiple accounts they use daily, not realizing that choosing weak passwords can open the door to…

Network Security

Encryption is key to protecting information as it travels outside the network

Issued by: Help Net Security

A new Vera report reveals stark numbers behind the mounting toll of data breaches triggered by cybercrime and accidents. One of the most recognized and mandated security controls, installed encryption tools protect just four percent of breached files. Meanwhile, compliance-focused mindsets and perimeter-driven encryption deployments keep organizations’ encryption investments fundamentally misaligned with how employees and…

Malware & Threats

Encryption is the best way to protect payment card transaction data

Issued by: CSO

The PCI Security Standards Council (SSC), which drafts many payment card industry security standards, meets annually in Europe, Asia-Pacific and North America to share new standards, gather feedback from the community, and discuss the burning issues of the day. Security professionals who have to comply with PCI standards need to stay abreast of these updates….

Malware & Threats

How to Achieve Ransomware Recovery — Without Paying Ransom

Issued by: Security Intelligence

Without a ransomware recovery strategy, companies sometimes end up paying to retrieve their data after an attack. At the same time, threat actors are growing more sophisticated in their ability to bypass both antivirus and anti-ransomware tools — thus, they’re also growing bolder. To stay ahead of the curve, organizations will need to develop more…

Malware & Threats

Ransomware back in big way, 181.5 million attacks since January

Issued by: Help Net Security

SonicWall announces record numbers for malware volume, ransomware attacks, encrypted threats and chip-based attacks in the mid-year update of the 2018 SonicWall Cyber Threat Report. “Real-time cyber threat intelligence is more critical than ever as cybercriminals continue to find new attack vectors — like encrypted and chip-based attacks,” said Chad Sweet, CEO at The Chertoff…

Vulnerabilities

Vulnerability in GnuPG allowed digital signature spoofing for decades

Issued by: Help Net Security

A vulnerability affecting GnuPG has made some of the widely used email encryption software vulnerable to digital signature spoofing for many years. The list of affected programs includes Enigmail and GPGTools. About the vulnerability (CVE-2018-12020) CVE-2018-12020, dubbed “SigSpoof” by Marcus Brinkmann, the researcher which found it, arises from “weak design choices.” “The signature verification routine…

Malware & Threats

Why phishers love HTTPS

Issued by: Help Net Security

As more and more sites switch to HTTPS, the number of phishing sites hosted on HTTPS domains is also increasing. “In the third quarter of 2017, we observed nearly a quarter of all phishing sites hosted on HTTPS domains, nearly double the percentage we saw in the second quarter. A year ago, less than three…

Network Security

Data Storage and Encryption Should Top the CISO’s To-Do List

Issued by: Security Intelligence

In today’s digitized world, data storage and encryption are surely top of mind for most chief information officers (CIOs). But given the increasing regulations and privacy implications surrounding data security, these measures should also be on the chief information security officer (CISO)’s agenda. Most organizations need to house massive amounts of data to comply with…

Software Security

The race to quantum supremacy and its cybersecurity impact

Issued by: Help Net Security

Quantum computing uses the power of atoms to perform memory and processing tasks and remains a theoretical concept. However, it is widely believed that its creation is possible. Most experts now agree that the creation of a quantum computer is simply a matter of engineering, and that the theoretical application will happen. Optimistic estimates for…