Security
-
Data breaches up 54% YOY, 2019 set to be 'worst year on record'
Eight breaches exposed more than 3.2 billion records, accounting for nearly 80% of the compromised records so far this year, RiskBased Security research found.
By Samantha Ann Schwartz • Aug. 21, 2019 -
Ransomware attack hits 23 Texas entities, likely a case of 'targeted marketing'
Smaller governments are more likely to have legacy systems and modest security, making for easy targets.
By Samantha Ann Schwartz • Aug. 20, 2019 -
DDoS attacks take 'slow-bleed' approach to curtail detection, research finds
A sudden service blackout is too noticeable, so hackers deploy smaller, more frequents attacks that are subtle enough to bypass DDoS detection tools.
By Samantha Ann Schwartz • Aug. 19, 2019 -
Capital One's hacker breached more than 30 organizations, prosecutors say
The servers found in Paige Thompson's bedroom held data from the bank and other entities, though the data is not personally identifiable information.
By Samantha Ann Schwartz • Aug. 15, 2019 -
Broadcom banks on software-defined future with Symantec buy
Broadcom will weave Symantec's enterprise business into its expansive portfolio, as it makes the transition from a hardware- to a software-focused provider.
By Naomi Eide • Aug. 13, 2019 -
One way hackers breach a network: Out-of-date office printers
Researchers caught a range of vulnerabilities in enterprise printing systems from six top manufacturers.
By Roberto Torres • Aug. 13, 2019 -
Federal 'hack back' bill back on table, but critics wary of blind spots
The latest iteration of the bipartisan bill challenges private entities' response to cyberattacks. Critics argue it lacks guidelines of when or why a company should hack back.
By Samantha Ann Schwartz • Aug. 12, 2019 -
Broadcom to buy Symantec's enterprise business for $10.7B
Symantec is coming off a year of leadership changes and a lagging enterprise division as businesses rethink cybersecurity solutions providers.
By Naomi Eide , Samantha Ann Schwartz • Aug. 08, 2019 -
Why the type of data doesn't determine privacy penalties
"The harm to the consumers who had their personal information exposed should be the measuring stick for damages and compensation," said Jerry Ray, COO of SecureAge.
By Samantha Ann Schwartz • Aug. 07, 2019 -
Azure bug bounty reaches $40K, Microsoft encourages participants to 'do their worst'
The Azure Security Lab isolates research so individuals can look for vulnerabilities and exploit them.
By Samantha Ann Schwartz • Aug. 06, 2019 -
From Equifax to Capital One: The problem with web application security
Flaws in web applications are abundant and easy to manipulate, making them a target for bad actors.
By Samantha Ann Schwartz • Aug. 05, 2019 -
Capital One breach raises questions about security and cloud-first strategies
If a breach hits a company with technology maturity, how vulnerable are less mature organizations?
By Naomi Eide • Aug. 02, 2019 -
Web application vulnerabilities top reported flaw by bug bounty hunters
Major data breaches often come from "nascent" flaws, according to Bugcrowd.
By Samantha Ann Schwartz • Aug. 01, 2019 -
5 things to know about Capital One's breach
Even with a detailed disclosure and a swift arrest, a dark cloud lingers over the bank.
By Samantha Ann Schwartz • UPDATED: Aug. 1, 2019 at 8:18 a.m. -
Capital One's data breach hits 106M customers
The company expects incremental costs between $100 million and $150 million in 2019 because of the incident.
By Samantha Ann Schwartz • July 30, 2019 -
A call to end 'warrant-proof' encryption, but where does privacy protection fit in?
Despite the complexities of technology, it doesn't bar law enforcement from taking the necessary actions it would in physical pursuits of evidence.
By Samantha Ann Schwartz • July 26, 2019 -
'We're as weak as the weakest link': Virginia looks to a statewide data governance policy
As cities battle increased ransomware attacks, the commonwealth hopes to get ahead of the curve and protect its network with a data privacy framework.
By Kira Barrett • July 26, 2019 -
How to protect intellectual property
The high value of intangible assets means organizations are starting to protect them like physical assets — and insure like them too.
By Jen A. Miller • July 24, 2019 -
Morgan Stanley launches encrypted document-sharing platform powered by Box
In an age of nearly ubiquitous data breaches, Morgan Stanley sees the technology as an added layer of protection for sensitive customer data.
By Roberto Torres • July 22, 2019 -
OpinionCybersecurity Risk: What does a 'reasonable' posture entail and who says so?
Without a defined standard of care to reference, companies are left wandering in the wilderness when it comes to cybersecurity compliance.
By Rick Lazio, Mike Davis • July 22, 2019 -
Ed Dept: Hackers created thousands of fake college student profiles
Some accounts were used for criminal activity, according to the department, while the software developer says the event is an "industry issue."
By Natalie Schwartz • UPDATED: Aug. 7, 2019 at 3:20 p.m. -
Equifax to pay up to $650M in 'largest data breach settlement in history'
"Equifax put profits over privacy and greed over people," said New York Attorney General Letitia James.
By Samantha Ann Schwartz • July 22, 2019 -
Data compliance lagging issue for US businesses, yet 42% vulnerable to fines
U.S. companies' resistance to compliance correlates with the federal government's slow crawl to passing a comprehensive data privacy law.
By Samantha Ann Schwartz • July 16, 2019 -
US mayors: No more ransomware payments
The mayors' consensus comes just after two Florida cities paid their attackers' ransom demands.
By Samantha Ann Schwartz • July 15, 2019 -
FTC approves $5B settlement in Facebook privacy probe
The Federal Trade Commission is also requiring Facebook add a privacy compliance system to its corporate structure.
By Roberto Torres • UPDATED: July 24, 2019 at 9:22 a.m.
