How to Stay One Step Ahead of Phishing Websites — Literally
Phishing scams are more advanced and widespread than ever, and threat actors are becoming increasingly sophisticated in their ability to craft malicious websites that look legitimate to unsuspecting users — including your employees, who have the kind of restricted...
How to Choose the Right Artificial Intelligence Solution for Your Security Problems
Artificial intelligence (AI) brings a powerful new set of tools to the fight against threat actors, but choosing the right combination of libraries, test suites and trading models when building AI security systems is highly dependent on the situation....
Why the EU Is More Likely to Drive IT and Security Trends Than the US
The General Data Protection Regulation (GDPR) has been a game changer for data privacy, and U.S. companies are beginning to catch up to the EU in data management practices. However, privacy is only one area in which U.S. organizations...
4 Tips to Make the Most of Your Security Budget
Despite frequent news headlines describing large-scale data breaches around the globe, chief information security officers (CISOs) still struggle to justify security investments to top leadership. According to Gartner, security spending makes up only about 5.6 percent of overall IT...
Why User Behavior Analytics Is an Application, Not a Cybersecurity Platform
Last year, a cybersecurity manager at a bank near me brought in a user behavior analytics (UBA) solution based on a vendor’s pitch that UBA was the next generation of security analytics. The company had been using a security...
How Can Industry Leaders and Academia Help Improve Cybersecurity Education?
Just as the field of cybersecurity grew out of information technology, cybersecurity education is evolving as an offshoot of the computer science field. The current state of cybersecurity course offerings as an underdeveloped computer science footnote is allowing the...
As Mobile Security Challenges Mount, How Can CIOs and CISOs Eliminate Blind Spots?
If we’ve learned anything this year, it’s that mobile malware, malvertising and phishing attacks are growing. Organizations of all sizes and industries are at risk, and IT and security leaders responsible for managing endpoints and mobile security are well...
How to Stop Mobile Apps That Steal
Smartphones are motivating targets for cybercriminals. Mobile devices today hold personal and monetizable data such as login credentials, financial information and company secrets — not to mention spy-friendly sensors such as microphones, cameras and location electronics.
Unsavory actors gain access...
Busting Cybersecurity Silos
Cybersecurity is among the most siloed disciplines in all of IT. The industry is exceedingly fragmented between many highly specialized companies. In fact, according to IBM estimates, the average enterprise uses 80 different products from 40 vendors. To put...
Trusting Security Metrics: How Well Do We Know What We Think We Know?
Security leaders aren’t the only ones who seek valuable metrics from accurate instruments. If you remember analog dashboards in cars, you might also remember how unreliable fuel gauges tended to be. As a result, it was impossible to know...
How Emerging Technologies Can Unexpectedly Advance — Or Impede — Cybersecurity Gender Inclusion
Cybersecurity problems and deficiencies have been front-page news for some time, yet some of the industry’s most intractable — and embarrassing — themes remain the same. Along with SQL injections, weak passwords and social engineering, we continue to deal...
How Can Companies Move the Needle on Enterprise Cloud Security Risks and Compliance?
More than ever, customers understand their right to data privacy. As major brands continue to lose sensitive data to cybercriminals in high-profile cloud security failures, customer trust in companies across industries is fading. Only 25 percent of consumers believe...
Why You Should Start Leveraging Network Flow Data Before the Next Big Breach
Organizations tend to end up in cybersecurity news because they failed to detect and/or contain a breach. Breaches are inevitable, but whether or not an organization ends up in the news depends on how quickly and effectively it can...
Top 5 Reasons to Attend the IBM Security Sessions at Think 2019
With the ongoing IT security skills gap and millions of industry positions waiting to be filled, there’s no better way to expand your personal and professional development than by spending focused time at an IT security conference of your...
Digital Identity Trust: A New Way to Authenticate
Customers nowadays expect an excellent digital experience, driving organizations to deliver a frictionless, omnichannel customer journey. Security and risk leaders strive to meet these digital expectations, but the resulting convenience opens the door to new risks. Who are your...
Instagram flaw exposes user passwords
A security flaw in Instagram’s recently released “Download Your Data” tool could have exposed some user passwords, the company reportedly told users.
The tool, revealed by Instagram right before the GDPR regulation went into effect, is designed to let users...
Julian Assange Charges, Japan’s Top Cybersecurity Official, and More Security News This Week
Safer browsing, more bitcoin scams, and the rest of the week's top security news.
SMS 2FA database leak drama, MageCart mishaps, Black Friday badware, and more
Plus, why is Kaspersky Lab getting into chess? Roundup What a week it has been: we had the creation of a new government agency, a meltdown flashback, and of course, Patch Tuesday.…
Is retaining a cybersecurity attorney a good idea for your business?
Cybersecurity is so complicated that businesses, large and small, are retaining legal counsel specializing in security. Learn two more steps businesses should take before a cyberattack hits.
Machine Learning Can Create Fake ‘Master Key’ Fingerprints
Researchers have refined a technique to create so-called DeepMasterPrints, fake fingerprints designed to get past security.
