George Hulme lends his expert insight into the latest developments in cybersecurity.
If they are being honest with you, any CISO will tell you that they are well aware of the fact that their organization can be breached. None, at least none that I know, would contend that they are impenetrable when it comes to cyber-attack. Not with a straight face, anyway. But how many of those […]
The security of IoT Devices matters. If we’re to actually live in a world where we reap the full potential from Internet-connected devices, those devices will need to be reasonably secured. Device makers will need to take the secure design and development of their gear seriously. Device owners, meanwhile, will have to take the effective […]
It’s no secret that employees and contractors are one of the primary causes of enterprise security events. It’s not that most insiders who cause data breaches are malicious. They’re not. They may carelessly send a cleartext email that contains sensitive information, reuse the same password across applications, or lose an unencrypted notebook or portable storage […]
The most recent Cyber Incident and Breach Trends Report from the Online Trust Alliance found that overall data breaches and exposed risks were down in 2018. That’s the good news. Unfortunately, the news didn’t stop there. According to the report, ransomware’s financial hit grew by 60% last year, losses from business email compromise attacks doubled. […]
In June, a report found a near 15% increase in blacklisted mobile apps that have been deemed dangerous by experts. This increase came after nine month of decline. The findings were part of an analysis by security firm RiskIQ, which analyzed more than two million new apps and more than 120 mobile app stores available […]
Ever since Bill Gates fired off his famous Trustworthy Computing memo in January 2002, developing secure software has been a hot topic of discussion. It was important before then, for sure, but it was often overlooked. It took a series of high-profile worms such as Code Red and Nimda and a series of breaches to […]
The FIDO Alliance (Fast Identity Online Alliance) recently awarded Microsoft Hello, Microsoft’s Windows facial recognition system, FIDO2 certification. With this certification, Windows devices can use biometrics — such as facial recognition, fingerprint, or FIDO2 security keys — to authenticate to devices. While this news is Microsoft focused, it’s part of a broader push to depreciate […]
The FBI’s Internet Crime Complaint Center (IC3) published its fifth annual Internet Crime Report last month. The report, based on information gleaned from 351,936 complaints of suspected Internet crime, found more than $2.7 billion in Internet-fueled theft, fraud and exploitation for 2018. According to the report, email scams wrought the highest level of financial losses […]
The pace of enterprise information security spending on hardware, software, and services is expected to grow 9.4 percent this year over 2017, according to a recently released forecast from the market research firm IDC. According to IDC, that pace of growth, which is considerably higher than the pace of technology growth overall, is expected to […]
Despite years of widespread data breaches and increased regulatory demands, 75 percent of respondents to a recent survey do not believe that they have an adequate information security budget. Additionally, attackers continue to successfully use compromised credentials in attacks, and while 93 percent of organizations surveyed are aware of the vulnerability and attack technique — […]
