Hilton to pay $700K in data breach fines, but it could be much worse

The company is paying roughly $2 for every compromised record, but under the EU's looming GDPR regulations, it would be paying $1,200 per record, Digital Guardian reports.  

By Alex Hickey • Nov. 6, 2017

Equifax executives did not commit 'insider trading,' committee finds

The Special Committee formed by the Equifax Board of Directors was tasked with investigating the trade of $1.8 million worth of company stock, which occurred before the public disclosure of the data breach. 

By Naomi Eide • Nov. 6, 2017

Explore the Trendline➔

IT Security

Executives are working to improve the security posture of their businesses, a task that requires cross-function collaboration.

By CIO Dive staff

Amazon takes a step toward cryptocurrency

The retailer has registered several relevant domains. Is the move speculative, defensive or does Amazon have plans to accept new forms of payment?

By Dan O'Shea • Nov. 3, 2017

Facebook to double its security team by end of 2018

The social network, which currently has more than 20,600 employees, plans to add about 10,000 people dedicated to "security and community issues."

By Samantha Schwartz • Nov. 2, 2017

Fintech needs to keep AI and ML risks in mind, board warns

Though the Financial Stability Board recognized the benefits of the advanced technology, risks and potential dependencies on third-parties could persist. 

By Alex Hickey • Nov. 2, 2017

5 fresh business technology startups making a splash

With so many startups crowding the enterprise technology space, it can be difficult to tell the promising from the not. Sometimes $100 million in funding is seen as a metric of success, but other times success is filling a niche role for a critical technology.

By Alex Hickey • Nov. 1, 2017

Here's what you need to know from National Cybersecurity Awareness Month

This year was haunted by cyberattacks, breaches and threats. Hackers only need to get an attack right once, then the rest of the work is done for them.

By Samantha Schwartz • Oct. 31, 2017

Healthy dose of skepticism and reality will carry companies through next cyberthreat

Patching is a fundamental of cybersecurity, yet IT departments are more inclined to invest in "chasing security threats" rather than reexamining what is already available and fixable.

By Samantha Schwartz • Oct. 31, 2017

Merck still reeling from Nyetya cyberattack, also expects Q4 impacts

Were it not for the June cyberattack, Merck & Co. would have had quarterly growth.

By Naomi Eide • Oct. 31, 2017

'Darknet' and quantum communications could enhance grid cybersecurity, scientists tell Senate

The Department of Energy is working to develop a private grid communication system called "darknet" to automatically detect, isolate and defend against cyber intrusions.

By Gavin Bade • Oct. 30, 2017

Prepare for 'Y2Q' as quantum computing looms, Rep. Hurd says

"Y2Q," or "years to quantum," is the next frontier federal cyber specialists should explore to avoid complete security disruption. 

By Samantha Schwartz • Oct. 30, 2017

Down the Bad Rabbit hole: New ransomware exploits EternalRomance

The ransomware has many similarities to the Nyetya attack, including traces of wiper code and DiskCryptor, which is used to lock a targeted hard drive.

By Samantha Schwartz • Oct. 27, 2017

How the private sector can adopt the government's unified security practices

The government's centralized approach to examining overall IT infrastructure is something private businesses should adopt to mitigate the impact of cyberattacks.

By Samantha Schwartz • Oct. 27, 2017

How the cybersecurity industry can close the growing skills gap

Adding women to the tech workforce could lessen the gap in cybersecurity talent, but this requires bottom-up changes to how young women perceive and enter tech.

By Naomi Eide • Oct. 26, 2017

Security, breaches and threats, oh my! 5 takeaways from CyberTalks 2017

Data security sounds like an easy end, but tech leaders acknowledge front and backend factors at play in today's dangerous cybersecurity environment.

By Alex Hickey • Oct. 24, 2017

Kaspersky CEO defends security products, claims innocence

The Russian security firm claimed that the recent allegations seem to be rooted in damaging the security software provider's reputation without the opportunity of due process.

By Samantha Schwartz • Oct. 24, 2017

Fear the Reaper: Successor to Mirai botnet emerges, no DDoS activity — yet

The Reaper builds on some of Mirai's source code but doesn't rely on default passwords. Hackers have yet to use the botnet in a malicious way, but time will certainly tell how they plan to use it.

By Naomi Eide • Oct. 23, 2017

One year after the Dyn DDoS attack broke the internet, what's changed?

In response to the attack, security experts were quick to extol the virtues of redundancy measures — a best practice that experts have recommended for nearly two decades. But a year later, not much has changed.

By Naomi Eide • Oct. 20, 2017

Facebook CSO: Social network has not 'caught up' with its security responsibilities

With 2 billion monthly active users, the social media company carries the burden of protecting troves of personal consumer data.

By Samantha Schwartz • Oct. 20, 2017

Azure CTO: Cloud encryption of data 'in use' coming soon

Under coming security updates, customer data will be encrypted at rest and in use, the latter of which was not possible before and may ease fears of companies yet to migrate.

By Alex Hickey • Oct. 19, 2017

The time for quantum computing investment 'is now,' experts say

In the security sphere, a complete rollout of quantum encryption and post-quantum cryptography requires a retrospective update of old systems.

By Alex Hickey • Oct. 18, 2017

The KRACK in the Wi-Fi: Vendors scramble to patch after critical flaw discovered

Almost 150 vendors were affected by the flaw, which impacts nearly every device that can connect to the internet.  

By Naomi Eide • Oct. 17, 2017

The 'winning' blockchain platform is not yet in the market, Gartner says

Right now there are about 100 blockchain platforms being built, but none are compatible and 90% have yet to be released.

By Naomi Eide • Oct. 16, 2017

Another day, another hack: Cyberattackers strike Equifax's website

Independent assessments of a fraudulent Adobe Flash update suggests a third-party ad network Equifax used could be to blame.

By Samantha Schwartz • Oct. 13, 2017

5 of the largest data breaches in recent history — and 4 more you forgot

As the country mulls the impact of an increasing number of breaches, here is a look at some particularly bad incidents people might have forgotten about and companies may not have learned a lesson from.

By Alex Hickey • Oct. 12, 2017