Organizations are scrambling to identify security weaknesses before their adversaries do. Having a consistent, systematic, and scalable methodology to properly assess your environment is essential. To begin you need a solid understanding of the organization, its components, what it relies on, and what could cause it...
The biggest companies (the Fortune 500 types) are more often than not taking matters into their own hands when it comes to breach prevention, eschewing long-term relationships with vendors and charting their own courses with a dizzying array of technologies. Meanwhile, the "unfortunate" 5,000 and beyond fall further...
Another day, another data breach in the news. Ransomware at a hospital, the latest IRS breach, a phishing scam at Snapchat . . . you tune out the details. For every breach that makes headlines, dozens of other organizations have had data stolen or corrupted by hackers...or even their own users. Cyberthreats become...
Businesses around the world are seeing an increase in malware attacks, including ransomware like CryptoLocker, Locky, and zCrypt. These attacks can result in weeks of downtime, and some of the most damaging data breaches originated with malware, including the Target breach in 2014.
A robust malware defense could...
A lack of computer security professionals in Australia made recruiting difficult. But new changes to immigration rules may really pinch the country's nascent cybersecurity industry.
Any organization that deals with credit card information must secure payment card data in accordance with PCI standards.
Merchants and service providers are required to validate compliance by assessing their environment against 12 major control categories applicable to applications and data in the data center and the...
Hybrid cloud security is a hot topic, especially with the massive growth of public cloud providers like Amazon Web Services (AWS), Microsoft® Azure�� and Google Cloud. With the emergence of the hybrid cloud, where workloads are deployed across physical, virtual, and cloud, security professionals are constantly being...
Given the well-established IT infrastructure of most financial institutions, conventional wisdom might say onsite deployment is the best option for implementing an automated governance, risk and compliance (GRC) solution. This paper provides the top five reasons why the cloud is a better deployment option: zero...
Advanced malware is capable of outsmarting the detection capabilities of a wide range of security tools. More than 70% of malware now includes sophisticated evasion technologies. And, to make detection even more difficult, the number of evasion methods found in each instance of malware has recently jumped from one or...
Advanced malware avoids being detected and can remain hidden for extended periods of time as it conducts complex and damaging cyberattacks. This sophisticated malware is usually designed to aggressively target anything and everything that can be monetized. How can organizations safeguard their data from these...
A recent survey of more than 300 CIOs and CISOs found that digital transformation is forcing them to rethink their cybersecurity strategies. Executives are actively revising security models to create a culture of cybersecurity and safeguard their organizations in today's continually changing business...
The best approach to building a security policy is by using a comprehensive, layered approach that covers all threats (both new and known). This policy needs to leverage real-time threat intelligence by addressing all threat vectors and all platform types as workloads migrate from physical to virtual to...
The drop in value of stolen payment cards caused cyber criminals to adopt new tools, foremost among them ransomware. Having already caused a financial drain of $209,000,000 in just one quarter, organizations of all sizes are at risk.
Download this infographic to see:
Why ransomware-as-a-service is a new risk;
The...
Bryce Austin, a former technology lead at Target during the retailer's massive November 2013 breach, says the role of the CISO needs to evolve, ensuring that cybersecurity is balanced with the overall needs of the company. He claims tying the CISO's performance to the company's revenue is the best way to do that.
It used to be that cybercriminals would blindly cast a wide net, sending millions of fraudulent emails in the hope that a few people would be tricked into handing over their personal or financial information. Today, targeted attacks are the weapon of choice: a far more lucrative tactic that uses malware purpose-built...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing cuinfosecurity.com, you agree to our use of cookies.