Page 118 - Latest interviews and insights on data security breach

Governance

Americans Don't Fret Over Cybersecurity

Eric Chabrow • June 4, 2013 10 Minutes

Despite growing awareness of cyberthreats, Americans are not overly concerned about their own cybersecurity, Unisys' Steve Vinsik says in his analysis of his company's latest security index.

Electronic / Mobile Payments Fraud

Payment Card Security: A New View on Protecting Sensitive Data from Browser to Back-Office

Information Security Media Group • June 3, 2013 17 minutes

It isn't just a financial services issue. Organizations of all types are victimized by data security breaches and fraud schemes that compromise payment card data. What can be done to help ensure better security and PCI compliance?...

Incident & Breach Response

Questioning the Legality of Hack-Back

Eric Chabrow • June 3, 2013 8 minutes 8 seconds

Privacy attorney Ron Raether challenges a commission's recent recommendation that the government should support companies that use the hack-back approach to mitigating the theft of intellectual property.

Anti-Phishing, DMARC

Mobile Threats Outpace PC Attacks

Tracy Kitten • May 29, 2013 15 Minutes

Attacks aimed at mobile devices are progressing much more rapidly than any attacks ever waged against PCs. Organizations are in danger if they don't pay attention, says anti-phishing expert Dave Jevans.

Governance

Targeted Cyber-Attacks: How to Respond

Tom Field • May 23, 2013 20 Minutes

Facing advanced cyber-attacks, organizations must shift their focus to detection and mitigation, says ISACA's Jeff Spivey, who outlines four capabilities necessary for effective response.

Fraud Management & Cybercrime

Logs Paint Picture of Menacing Insider

Eric Chabrow • May 21, 2013 9 minutes 57 seconds

Maintaining accurate logs of systems' activities is crucial in helping catch insiders who threaten an organization's digital assets, says George Silowash, co-author of the Common Sense Guide to Mitigating Insider Threats.

Assessing Breaches: Four Key Factors

Marianne Kolbasuk McGee • May 20, 2013 14 Minutes

Under the HIPAA Omnibus Rule, security incidents are presumed to be reportable data breaches unless healthcare organizations demonstrate through a four-factor assessment that risks are low, explains privacy expert Kate Borten.

DDoS Protection

First Data on Preventing Fraud

Tracy Kitten • May 20, 2013 12 Minutes

In this exclusive interview, Tim Horton of First Data explains how the nation's largest credit card processor is helping financial institutions and merchants mitigate risks posed by malware and DDoS attacks.

Anti-Money Laundering (AML)

Why We Can Expect More ATM Cash-Outs

Tracy Kitten • May 13, 2013 15 Minutes

Why are ATM cash-out schemes expected to increase - especially in the U.S.? John Buzzard of FICO's Card Alert Service offers insights, based on federal investigators' most recent global fraud bust.

Governance

Insider Threat Hovering in the Cloud

Eric Chabrow • May 13, 2013 8 minutes 9 seconds

CERT Technical Manager Dawn Cappelli tells a tale of how three individuals, who unexpectedly quit their jobs at a law firm, used a free cloud service to sabotage files containing proprietary client information from their former employer.

Fraud Management & Cybercrime

Fraud Arrests 'A Victory for Us'

Tom Field • May 10, 2013 9 minutes

Cash-out scams are old news. But the size and sophistication of the latest $45 million global fraud scheme that struck banks add up to a troubling trend, says former federal prosecutor Kim Peretti.

Fraud Management & Cybercrime

Avivah Litan on Bank Cyberheist

Tom Field • May 9, 2013 5 Minutes

How could global fraudsters steal $45 million from banking institutions without being detected or stopped? It's a process breakdown, not a technology failure, says fraud expert Avivah Litan of Gartner.

Governance

Mitigating Insider Threat From the Cloud

Eric Chabrow • May 9, 2013 10 minutes 51 seconds

Cloud computing providers must step up and develop approaches to prevent their employees from stealing or harming customer data they host, say two experts from Carnegie Mellon University's CERT Insider Threat Center.

DDoS Protection

OpUSA: Sizing Up the Threat

Eric Chabrow • May 7, 2013 7 minuates 48 seconds

Mark Weatherford, who recently stepped down as DHS deputy undersecretary for cybersecurity, says that although planned OpUSA DDoS attacks may initially be a nuisance, they represent a genuine long-term threat to the government.

Business Continuity Management / Disaster Recovery

Addressing DDoS in Risk Assessments

Eric Chabrow • May 3, 2013 9 minutes 51 seconds

In assessing the risk of a distributed-denial-of service attack, organizations must think beyond shoring up systems' perimeters and concentrate on analyzing cyberthreat intelligence, Booz Allen Hamilton's Sedar Labarre says.

Interviews

Americans Don't Fret Over Cybersecurity

Payment Card Security: A New View on Protecting Sensitive Data from Browser to Back-Office

Questioning the Legality of Hack-Back

Mobile Threats Outpace PC Attacks

Targeted Cyber-Attacks: How to Respond

Logs Paint Picture of Menacing Insider

Assessing Breaches: Four Key Factors

First Data on Preventing Fraud

Why We Can Expect More ATM Cash-Outs

Insider Threat Hovering in the Cloud

Fraud Arrests 'A Victory for Us'

Avivah Litan on Bank Cyberheist

Mitigating Insider Threat From the Cloud

OpUSA: Sizing Up the Threat

Addressing DDoS in Risk Assessments

Around the Network

Update: PCI SSC's Enhanced Contactless Payment Standard

Getting Ready for the NIST Privacy Framework

Why Is Third-Party Risk Management So Complex?

A CISO Sizes Up Critical Technologies, Emerging Challenges

Inside the Sophos 2020 Threat Report

Identity Fraud: Account Origination

Verizon: Companies Failing to Maintain PCI DSS Compliance

Analysis: Using Twitter for Espionage

CCPA Compliance: Identity Verification Challenges

Protecting Data in Sprawling Computing Environments