A famed British computer security researcher has lost several key motions in a federal hacking case that stems from his alleged contribution to two types of banking malware. The rulings could complicate the challenges for the defense team of Marcus Hutchins, who remains in the U.S.
The latest edition of the ISMG Security Report highlights how thieves can use "deep fake" photos in an attempt to steal cryptocurrency. Also featured: A discussion of the implications of "data gravity" and an analysis of whether the era of mega-breaches is ending.
Indiana University Health is evaluating the use of blockchain in two areas to improve healthcare information security, Mitch Parker, CISO, says in an interview at the HIMSS19 conference. He sizes up the potential risks and benefits.
Red Hat, Amazon and Google have issued fixes for a serious container vulnerability. The flaw in the "runc" container-spawning tool could allow attackers to craft a malicious container able to "break out" and gain root control of a host system, potentially putting thousands of other containers at risk.
What are some of the hottest issues that will be discussed at this year's RSA Conference, to be held March 4-8 in San Francisco? Britta Glade, content director for the world's largest data security event, says DevSecOps - as well as third-party risk and cloud-related issues - are emerging as key themes.
Cryptocurrency exchanges are seeing fraudsters submit doctored photos in an attempt to reset two-step verification on accounts. The ruse appears to have some degree of success, underscoring the difficulties around verifying identity on the internet.
Analytics, artificial intelligence and machine learning are increasingly playing promising roles in healthcare data security, say Ron Mehring, CISO at Texas Health Resources, a large delivery system, and Axel Wirth of Symantec, a technology vendor. They were featured speakers at the HIMSS19 conference.
Remote browser isolation eliminates both web-based threats such as drive-by-downloads and email-based attacks like phishing and ransomware. The technology removes the browsing process from the desktop and moves it to the cloud, effectively creating an "air gap" between the Internet and enterprise networks. Gartner...
The adoption of SaaS applications is transforming the secure web gateway (SWG) product category, propelling the growth of cloud-based SWG market 6X over appliance-based SWG products. Remote browser isolation has emerged as a key next generation technology for SWGs since it provides more comprehensive protection...
A SOC provides centralized and consolidated cybersecurity incident prevention, security event monitoring, detection and response capabilities, and supports other business unit requirements. This research helps security and risk management leaders identify the best SOC model for their organization.
Leveraging new security technologies and implementing proven security basics enables enterprise scale security operations without big budgets and large teams of security resources.
Download this eBook and learn how to:
Understand your environment and know what matters;
Focus on and prioritize security...
Security practitioners should strive to offer their organizations "frictionless" security that's truly a business enabler, says Sridhar Govardhan, newly appointed CISO of Wipro Ltd., a Bengaluru-based company offering information technology, consulting and business process services.
It's a bigger game than ever. The number of new users signing up to gambling platforms is on the rise. Big sporting events are catalysts for these signups: this year, one in three Britons bet on the World Cup.
79% of users will go elsewhere if the onboarding user experience doesn't live up to their expectations....
Many security professionals are constantly drowning in alerts across a multitude of security tools. When you can't see what is happening on your endpoints, investigating an alert can feel like you're running blindfolded. Often, these professionals don't have the visibility or data to prioritize alerts or make...
In their first few days on the job, cybersecurity staff should experience both a macro-introduction to the organization as a whole and
a micro-survey of the organization's cybersecurity risk factors, objectives, current threat environment, security program, tools, and
This guide proposes a two-track...