U.K. health and beauty retailer Superdrug Stores is warning customers that attackers may have compromised some of their personal information, apparently because they'd reused their credentials on other sites that were hacked. While Superdrug quickly notified victims, it stumbled in three notable ways.
With the U.S. midterm elections approaching fast, Microsoft says it's seized six domain names tied to "Fancy Bear," a hacking team widely believed to be part of Russia's military intelligence agency, amplifying concerns that Moscow's election interference efforts continue.
Upcoming enterprise IoT ecosystems and conventional OT networks share similar security challenges, and as the two converge, organizations need to re-evaluate core security processes, says Richard Bussiere of Tenable Network Security.
Cybercrime is a business and, like any business, it's driven by profit. But how can organizations make credential theft less profitable at every stage of the criminal value chain, and, in doing so, lower their risk?
Traditional WAN performance comes at a premium
because it is almost entirely limited to expensive
circuits like multiprotocol label switching (MPLS). At
the same time, the rapid increase of cloud applications
being used across distributed organizations has
caused a sharp uptick in network bandwidth
demands. As...
A federal judge in California has given final approval to a $115 million settlement involving health insurer Anthem over its 2015 data breach. The settlement is the largest ever reached in a data-breach related class action suit, but most victims will see no money.
It's déjà vu "FBI vs. Apple" all over again, as Reuters reports that the Justice Department is seeking to compel Facebook to build a backdoor into its Messenger app to help the FBI monitor an MS-13 suspect's voice communications.
U.S. President Donald Trump signed a presidential order on Wednesday that revokes a set of Obama-era guidelines for offensive cyber operations, The Wall Street Journal reports. The policy change may satisfy critics who contend the U.S. should be able to move faster, but it raises risks of escalating cyber conflict.
While IT and OT integration has brought about new levels of operational efficiency, it has also introduced serious cyber risks that conventional IT security approaches might fail to address, says IBM Security's Paul Garvey.
Leading the latest edition of the ISMG Security Report: Chris Morales of the cybersecurity firm Vectra discusses how the industrial internet of things is changing the nature of industrial espionage and disruption.
Controlling, monitoring, and auditing privileged access is essential to mitigating insider threats, preventing data breaches, and meeting compliance requirements. But, how can you optimise privileged access to avert breaches, achieve compliance objectives, and avoid end user frustration and help desk...
Cyber statistics in 2016 paint a bleak picture. Unpatched vulnerabilities proliferate. Attackers weaponize new exploits 3x faster than just a few years back.
The attack surface continues to expand as shadow IT abounds, and non-traditional platforms, like cloud/virtual, mobile, and IoT, are becoming pervasive....
The use of stolen credentials ranked as the number one action variety in data breaches in 2017 (source: 2018 Verizon Data Breach Investigations Report), and organisations continue to make it easy for attackers.
Many IT organisations use shared accounts for users, administrators, or applications so that when access...
The 2018 State of the Phish Report presents analysis of data that can help CISO's and their teams identify opportunities to manage end-user risk. The report delivers the types of data infosec professionals are seeking as they develop their own security awareness training programs.
Download this report to learn more...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.co.uk, you agree to our use of cookies.