Attackers are increasing their frequency and volume of
Distributed Denial-of-Service (DDoS) attacks. Companies are
facing increased pressures to strengthen their security. Three
forces contributing to the pressure are:
Stronger, more sophisticated, and highly motivated attackers.
Larger attack...
Although DoS attacks are not a recent phenomenon, the methods and resources available to conduct and mask such attacks have dramatically evolved to include distributed (DDoS) and distributed reflector (DRDoS) attacks that cannot be addressed by traditional on-premise solutions.
Cloudflare's advanced DDoS protection...
The notorious GandCrab ransomware-as-a-service gang has released the latest version of its crypto-locking malware, backed by crypter service and exploit toolkit partnerships. But the gang's marketing savvy belies shoddy code-development practices, security firm McAfee finds.
The Equifax and Yahoo breaches have highlighted enterprise vulnerability to cyber attacks. As the content
management market increases and enterprises embrace remote workforces, adopt multi-clouds,
expose new APIs, and shift server side functionality to the client, new security challenges emerge.
Securing a...
Many security experts in Asia are blasting Google for its lengthy delay in revealing that a bug in an API for its Google+ social networking service exposed personal details for about 500,000 accounts, calling it a breach of trust.
What can organizations do to thwart business email compromise attacks? In an interview, David Stubley, CEO of the consultancy 7 Elements, outlines several key steps. He'll be a featured speaker at Information Security Media Group's Security Summit: London, to be held Sept. 23.
Memo to hackers: Boasting about your exploits on social media channels is a good way to get caught. Indeed, Italian police say they busted a suspected hacker after he bragged not only about defacing the NASA home page but also about being part of a group calling itself "Master Italian Hackers Team."
Heathrow, the U.K.'s largest airport, has been fined by the country's privacy watchdog for a series of data security missteps that led to a USB memory drive containing highly sensitive information being lost by an airport security trainer on a London city street, where it was found by a passerby.
Google blames a bug in an API for its Google+ social networking service for exposing personal details of about 500,000 users' accounts, but says it doesn't believe the information was misused. The company was forced to acknowledge the March incident after it was reported by The Wall Street Journal.
As more companies move away from passwords toward behavioral biometrics, they face new challenges, says Rajiv Dholakia, vice president, products at Nok Nok Labs. "There are no standards as such in this area on how the information is collected, how it's stored and how it's processed," he says.
Barriers to getting into the business email compromise - aka CEO fraud - game continue to fall, with security vendor Digital Shadows finding that compromised email accounts for a company's finance department can typically be purchased via the black market for just $150 to $500.
The East African institution State Bank of Mauritius says its India operations may have lost $14 million as a result of a cyberattack Tuesday. Although the bank did not confirm the exact nature of the attack, some security experts suspect it involved fraudulent transactions via the SWIFT network.
The latest edition of the ISMG Security Report features an analysis of the latest developments in Facebook's massive data breach and expert analysis of the potential for nation-state interference in the U.S. midterm elections.
Privacy and security practitioners wonder if Aadhaar data collected by private firms can actually be deleted in the next six months as directed by the Supreme Court of India, which recently determined that it's unconstitutional for companies to collect or ask for Aadhaar data from consumers.
Rapid increase in the frequency and sophistication of cyberattacks, adoption of new technologies and ever evolving regulatory requirements, continue to heighten security demands on organizations of all types. And many organizations are finding it difficult to create and maintain a robust cybersecurity program given...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing careersinfosecurity.in, you agree to our use of cookies.