This week's ISMG Security Report analyzes the cost of business email compromise attacks and the recent arrest of dozens of suspects. Also featured: updates on the easy availability of low-cost hacking tools and the latest payment card fraud trends.
CISOs, CIOs, CROs are all being asked to measure the effectiveness of their information security programs often overlooking their greatest risk: third party resources. For every company this risk manifests in different forms: third party developed software; vendors/suppliers with access to their data; contractors...
As cyber defenders position themselves to support the strategic business directions of their organizations' consumption of cloud technologies, it is critical to have:
Appropriate end-to-end visibility and monitoring;
Threat detection for anomalous user or entity behaviors;
Ability to detect risky configurations,...
Strong, reliable infrastructure is key to the nation's high standard of living, security, and strong economy. This includes systems like water and power, financial transactions, telecommunications, and so on. In short, critical infrastructure security and resilience is an integral to all of the systems that make our...
For at least half a decade, HSBC helped to wash hundreds of billions of dollars for drug mobs, including Mexico's Sinaloa drug cartel, as well as move money for terrorist organizations linked to Al Qaeda and Hezbollah and for Russian gangsters. Furthermore, HSBC helped countries like Iran, the Sudan and North Korea...
From ransomware to infected devices and assaults on the critical infrastructure, organizations are increasingly encroached by advanced threats and threat actors. And security leaders are tasked with taking their traditional cyber defenses to the next level to mitigate the emerging risks. What are the defenses and...
Google's Android is the most popular mobile operating system in the world, powering over 2.5 billion devices.
In this exclusive session, Eugene Liderman, Director of Mobile Security Strategy, Google, outlines Android's multi-layered security strategy, which includes hardware and software protections, as well as...
U.S. organizations were barely GDPR compliant in 2018, when California unveiled its own privacy legislation, the California Consumer Privacy Act, which goes into effect on Jan. 1, 2020. Yet, this is but one of several privacy laws being enacted across the U.S., and it poses many questions about the role of security to...
The media continues to report that the threat landscape is evolving. But this is a common cliché that can smokescreen reality. In fact, significant security events tend to share notable commonalities. Regardless of whether the attack is a widely distributed banking Trojan extracted from a phishing email or a targeted...
Teaming-up the public and private sectors to address cybercrime and cooperating with law enforcement is critical in reporting cybercrime to law enforcement agencies.
This expert panel of InfraGard Members and FBI Agents share how they have worked together on cybercrime investigations that affected both...
Little-known before 2014, ransomware is now one of the most popular methods used by hackers to attack corporations. The recent attack on government entities are more publicized but private corporations have been struggling with ransomware for a few years now.
Join Neal Colon to learn more about recent attacks, how...
Independent research revealed that while 60% of firms have formal third party risk policies, nearly half have experienced a significant breach caused by a vendor. Why? Executives don't make vendor risk a priority or are too trusting. Learn from 600 IT and security leaders about top concerns around supply chain and...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.
