Cross-site scripting and SQL injection attacks are well-known threats for public-facing Web applications, but internal systems can be attacked as well. For example, about half of network management systems studied had these vulnerabilities, accordin…
Half of network management systems vulnerable to injection attacks Read More »
A CEO said that his controller had just received an email, ostensibly from him, asking her to process an urgent outgoing payment.Everything about the letter looked legit.”It has my display name, spelled correctly,” said Kevin O’Brien, co-founder and…
New tech can help catch spearphishing attacks Read More »
Deception technologies such as honeypots are becoming increasingly popular with enterprises as the products get more flexible and the tools allow security analysts swamped with incident reports to zero in on cases of actual ongoing infiltration.
Ac…
Deception technology grows and evolves Read More »
Skyhigh announced today that it has received a patent for its technology, which moves that encryption gateway into a hosted environment.
Enterprises looking to protect sensitive data stored in cloud services can funnel user traffic through on-premises encryption gateways that allow them to keep control of their encryption keys.
Moving the encryption process to Skyhigh’s servers allows for easier access by remote employees, mobile users, business partners, or customers, said Rajiv Gupta, Skyhigh’s CEO. He says the company offers these encryption gateways in various locations, allowing customers to comply with data residency and privacy laws.
To read this article in full or to leave a comment, please click here
Experts challenge Skyhigh’s patent for cloud-based encryption gateway Read More »
Skyhigh announced today that it has received a patent for its technology, which moves that encryption gateway into a hosted environment.
Enterprises looking to protect sensitive data stored in cloud services can funnel user traffic through on-premises encryption gateways that allow them to keep control of their encryption keys.
Moving the encryption process to Skyhigh’s servers allows for easier access by remote employees, mobile users, business partners, or customers, said Rajiv Gupta, Skyhigh’s CEO. He says the company offers these encryption gateways in various locations, allowing customers to comply with data residency and privacy laws.
To read this article in full or to leave a comment, please click here
Experts challenge Skyhigh’s patent for cloud-based encryption gateway Read More »
Security researcher Salvador Mendoza demonstrated a flaw in Samsung Pay at Black Hat last week, in which the tokens used to secure transactions could be predicted, and used to authorize fraudulent payments.
Samsung responded with a statement callin…
Samsung both denies and admits mobile payment vulnerability Read More »
Insurance companies typically have decades of data, if not more, on which to base their risk estimates.That’s not the case with cyber risk, however. There’s very little historical data available, the data is not complete, and the threat landscape do…
Insurers working to fill cyberinsurance data gaps Read More »
Almost half of all companies have been the victims of a ransomware attack during the past 12 months, according to a new report. And while globally, 40 percent of them have paid the ransom, 97 percent of U.S. companies did not.Specifically, 75 percen…
Report: Only 3 percent of U.S. companies pay attackers after ransomware infections Read More »
Health care organizations were 114 times more likely to hit by ransomware infections than financial firms, and 21 times more likely than educational institutions, according to a new research report by Solutionary.The Omaha-based security firm detect…
The U.S. Department of Human Services has released new guidance for health care organizations that focuses on the growing threat of ransomware, stresses the need for better education and regular backups, and confirms that a ransomware attack agains…
New HIPAA guidance addresses ransomware Read More »
These days not a headline goes by without some cybercriminal jumping all over it. Now, with the Olympics coming up and travelers wary of the Zika virus, scammers are creating fake websites and apps to steal money or to infect users with malware.”The…
Fake Olympic tickets and Zika news apps scam users Read More »
Police officers held up a sign saying “Welcome to Hell” at the Rio airport last week, according to local and international news reports, and the region’s acting governor warned of a total collapse in public security. More funding is on its way, but …
Rio Olympics pose security risks to travelers Read More »
The Flash Keyboard app has been downloaded more than 50 million times — but is capable of some extremely dangerous behaviors.”It looked like it was a convenient keyboard that had some nice features,” said Bill Anderson, chief product officer at mob…
Dangerous keyboard app has more than 50 million downloads Read More »
Companies that use remote device management software to oversee employee devices used for business have the ability to collect a lot more information than employees may be comfortable with, according to a report released today.”The intent of these M…
BYOD can pose privacy risks to employees Read More »
With great power comes great responsibility — and also a great big target painted on your head. At least, that’s the case lately with corporate boards of directors and cybercriminals launching spearphishing attacks.”Since the beginning of the year …
Spearphishing attacks target boards Read More »
