A security researcher recently discovered an unsecure Elasticsearch database cluster exposed on the internet that contained transcripts of sensitive voicemail messages, including some for medical clinics and financial service companies.
Security experts are urging organizations to patch a newly revealed serious flaw in Microsoft SharePoint as quickly as possible because proof-of-concept exploit code is already available. The U.K.'s National Cyber Security Center warns that hackers frequently target fresh SharePoint flaws.
To help prevent fraud, banks must leverage technologies such as behavioral analytics, device biometrics and one-time passcodes, says Nancy Guglielmo, senior vice president at the Bank Policy Institute.
A report from Google's Threat Analysis Group offers fresh details about the hacking group that targeted Democratic presidential candidate Joe Biden's campaign with phishing emails earlier this year. The phishing effort was linked to a little-known hacking group called APT31, which has connections to China.
The human factors of cybersecurity represent the actions or events where human error results in a successful hack or data breach. Other than hackers taking advantage of naturally existing weak entry points, your biggest threat and vulnerability could be coming from the inside. Whether it's a well-meaning employee who...
The distributed workforce, combined with the need to modernize and improve operational efficiency, has reframed digital transformation priorities and introduced new areas of risk to today's enterprise. In light of ongoing macroeconomic demands, the CISO is facing increasing pressure to deliver value.
If...
Banking institutions are seeing a significant spike in multi-channel financial crimes. But Duncan Ash and Julio Gomez of Splunk say data and analytics can be key differentiators in the effort to protect sensitive financial data.
As you look to securely enable a long-term remote workforce, you need a security framework that can support you both today and in the future, keeping your people, your data, and your infrastructure safe. That's where zero trust comes in.
Download this whitepaper to learn more about what zero trust adoption looks...
Spending on secure infrastructure is vital to protect any company's plans for revenue generation and business expansion. But when increasing focus and budget for security initiatives, CIOs and CISOs are faced with competing revenue-generating priorities across the business.
Download this white paper to learn about...
To leverage IAM services and security at scale, most organizations are adopting modern identity from the cloud Identity as a Service (IDaaS). IDaaS provides robust and scalable identity, so organizations can manage user and customer access to its applications and services from anywhere in the world on any device.
...
As organizations move toward remote work, security and risk management leaders should consider investing in MFA and access management for all kinds of remote access, and plan for rapid scaling.
Download this whitepaper to learn:
The challenges of securing remote access, such as the need to implement consistent...
Applications are becoming more powerful and quicker to bring to market with advancements in cloud infrastructure, data proliferation, connectivity between disparate systems through APIs, and a microservices architecture design pattern. All these innovations are changing customer expectations.
Download this...
E-Signatures are a key component in the digitization process of financial institutions. As of July 2016, the eIDAS regulation facilitates cross-border recognition of e-signatures and e-identities.
What types of e-signatures are best to use, and which ones are legally effective and admissible?
Download this white...
Despite the takedown of the Trickbot botnet by Microsoft and others Monday, the malware is still functioning, and its operators retain the tools needed to rebuild their malicious network, some cybsersecurity experts say. So the impact, while significant, could prove to be temporary.
An unsecured Amazon Web Services database belonging to India's Dr Lal Path Labs, which offers diagnostic testing, exposed approximately 50 GB of patient data, including notes related to the results of COVID-19 tests, according to a security researcher.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.asia, you agree to our use of cookies.
