Cybersecurity Matters

George Hulme lends his expert insight into the latest developments in cybersecurity

Mobile security: There’s a bad app uprising

blacklisted-mobile-apps

In June, a report found a near 15% increase in blacklisted mobile apps that have been deemed dangerous by experts. This increase came after nine month of decline. The findings were part of an analysis by security firm RiskIQ, which analyzed more than two million new apps and more than 120 mobile app stores available […]

NIST proposes Secure Software Development Framework

cyber-security-framework

Ever since Bill Gates fired off his famous Trustworthy Computing memo in January 2002, developing secure software has been a hot topic of discussion. It was important before then, for sure, but it was often overlooked. It took a series of high-profile worms such as Code Red and Nimda and a series of breaches to […]

What does Microsoft’s move mean for passwords?

password-on-laptop

The FIDO Alliance (Fast Identity Online Alliance) recently awarded Microsoft Hello, Microsoft’s Windows facial recognition system, FIDO2 certification. With this certification, Windows devices can use biometrics — such as facial recognition, fingerprint, or FIDO2 security keys — to authenticate to devices. While this news is Microsoft focused, it’s part of a broader push to depreciate […]

FBI: Internet-fueled theft, fraud, and exploitation reaches cost of $2.7 billion

shadowy-hand-over-keyboard

The FBI’s Internet Crime Complaint Center (IC3) published its fifth annual Internet Crime Report last month. The report, based on information gleaned from 351,936 complaints of suspected Internet crime, found more than $2.7 billion in Internet-fueled theft, fraud and exploitation for 2018. According to the report, email scams wrought the highest level of financial losses […]

Global enterprise security spending to hit $103 billion this year

cutout-shapes-forming-bar-graph

The pace of enterprise information security spending on hardware, software, and services is expected to grow 9.4 percent this year over 2017, according to a recently released forecast from the market research firm IDC. According to IDC, that pace of growth, which is considerably higher than the pace of technology growth overall, is expected to […]

Majority of organizations still report a lack of cyber security budget

empty-wallet

Despite years of widespread data breaches and increased regulatory demands, 75 percent of respondents to a recent survey do not believe that they have an adequate information security budget. Additionally, attackers continue to successfully use compromised credentials in attacks, and while 93 percent of organizations surveyed are aware of the vulnerability and attack technique — […]

Gartner: Future of identity management is mobile, SaaS

identity-management-on-mobile-device

By 2022, the research firm Gartner predicts 70 percent of enterprises that use biometrics for authentication will do so with smartphone apps. Last year, less than 5 percent of enterprises did so. According to Gartner, it is the lower cost and improved user experience that will drive this adoption of smartphone biometric authentication. Speaking of […]

Enterprise security and risk management efforts continue to lag

snail-on-keyboard

Increasingly, enterprises realize that they not only need to secure their digital assets, but that they need to do it economically. Most organizations know that they need to be compliant to any number of government or industry regulations that affect them — from HIPAA to GDPR — but simply achieving compliance doesn’t mean an organization […]

Study: Hospitals dramatically increase ad spend following data breaches

healthcare-data

Determining the actual cost of a data breach is difficult and often leads to heated discussions in security circles. How do you determine how many customers who left (following a breach) wouldn’t have left anyway? Perhaps they already were upset with the organization for some other reason. How do you know if a sales decline […]

Old password habits die hard … if they ever die at all

bad-password-habits

If there’s anything that security and IT teams hate more than managing credentials, I certainly can’t think of it. Users hate having to manage their passwords and they tend to do so poorly. And that, in turn, leads to password reset request calls — among the most costly of helpdesk service call types. (By the […]