Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
An Israeli cyber watchdog said Monday it has uncovered a network of fake online accounts backing Prime Minister Benjamin Netanyahu and slandering opponents ahead of next week's general election. [Read More]
The company that owns the Buca di Beppo, Earl of Sandwich and Planet Hollywood brands has admitted that tens of restaurants were hit by a payment card breach. Over 2.1 million cards may have been compromised. [Read More]
Microsoft has taken control of 99 domains used by an Iran-linked cyberespionage group tracked as Phosphorus, APT35, Charming Kitten, NewsBeef, Newscaster and Ajax Security Team. [Read More]
The Federal Emergency Management Agency wrongly released to a contractor the personal information of 2.3 million survivors of devastating 2017 hurricanes and wildfires, potentially exposing the victims to identity fraud and theft. [Read More]
A 50-year-old from Lithuania has pleaded guilty over his role in a $100 million business email compromise (BEC) scheme targeting Facebook and Google. [Read More]
Google said it took down 2.3 billion bad ads in 2018, including 58.8 million phishing ads. [Read More]
Threat actors have been increasingly targeting Office 365 and G Suite cloud accounts that are using the legacy IMAP protocol in an attempt to bypass multi-factor authentication (MFA). [Read More]
SSL/TLS certificates and related services can be easily acquired from dark web marketplaces, according to an academic study sponsored by Venafi. [Read More]
New California bill aims to close a loophole in the current data breach notification law by requiring organizations to notify users when passport or biometric information has been compromised. [Read More]
Armorblox emerges from stealth mode with a platform that uses natural language understanding to detect threats hidden in emails and documents. The company also announced a $16.5 million Series A funding round. [Read More]
- 1 of 36
- ››
FEATURES, INSIGHTS // Fraud & Identity Theft
The abundance of compromised card data and other assets available online continues to hinder the fight against card-not-present (CNP) fraud.
Even organizations with the most robust defense solutions and advanced automated technologies cannot effectively combat threats such as BEC without the adequate support and nuanced expertise of humans.
While a credit freeze can protect against the opening of fraudulent credit accounts, it is not an inoculation against identity theft. What can be done to help protect identities and the attributes associated with them?
The attackers may be looking for the path of least resistance, but there is no shortcut to securing your platform.
In addition to basic credit monitoring, breached companies need to get ahead of the attacks and start providing security solutions that actually protect the victims before they are victimized again.
While effective at curbing “petty crimes” such as credit skimming / cloning, EMV does not address more sophisticated cyber-attacks that target backend systems which contain card holders’ most sensitive information.
Many fraudulent accounts are mere satire or innocuous trolling, but others are created with far more devious intentions.
Social engineering attacks can happen at any time. Here are some strategies you can use to help reduce the chances of a successful social engineering/phishing attack you or your organization.
They always say in the investment world that cash is king. We are now seeing that in terms of cyber as well. Stealing cash, it’s even better than stealing money.
When it comes to cybercrime, the police really can’t and aren’t going to protect residents of your town. The same goes for all towns and cities. Unless you’re talking a high six-figure theft, it's unlikely an officer will be assigned to your case.
- 1 of 4
- ››
SecurityWeek Daily Briefing
- State-Sponsored Hackers Use Sophisticated DNS Hijacking in Ongoing Attacks
- Respect Is Key for Retaining Top Security Talent
- Russian Hackers Use RATs to Target Financial Entities
- Symfony, jQuery Vulnerabilities Patched in Drupal
- Network DoS Attack on PLCs Can Disrupt Physical Processes
- Cisco Patches Critical Flaw in ASR 9000 Routers
- Mysterious Operative Haunted Kaspersky Critics
- Bad Bots Steal Accounts, Content and Skew the Web Ecosystem
- Fortinet Settles Whistleblower Case for $545,000
- Russian Hackers Scrambled to Erase Digital Footprints After Triton Attribution Report
Copyright © 2019 Wired Business Media. All Rights Reserved. Privacy Policy