Seeking to help delineate a middle ground between privacy protections and data collection, the National Institute of Standards and Technology (NIST) has published a preliminary draft of its major new set of guidelines. Called the NIST Privacy Framework: A Tool for Improving Privacy through Enterprise Risk Management, the publication has been posted in the Federal…
Thousands of iPhone users may have had their devices hacked by malicious code found in a handful of websites, according to security researchers with Google. The security vulnerability has been revealed through a new blog post from Google’s Project Zero team member Ian Beer. The post describes a small group of websites that were likely…
The device security company WootCloud has uncovered an IoT botnet that targets Android set-top boxes and TVs. Dubbed “Ares”, the botnet specifically takes advantage of the Android Debug Bridge (ADB) infrastructure, which is a communications component that allows for the remote management of Android devices. WootCloud was able to discover the botnet with the help…
Professionals in the payments industry are very concerned about cybersecurity, but are at least a little mistrustful of third party solutions providers, suggest the results of TD Bank’s 2019 NACHA PAYMENTS survey. Conducted at the 2019 NACHA PAYMENTS Conference in Orlando this past May, the survey polled just under 500 of the payments industry professionals…
Yubico has formally launched the YubiKey 5Ci, a new security key with a Lightning connector for iOS and MacOS devices. The YubiKey 5Ci has a USB-C connector in addition to the Lightning connector, so it is also compatible with Android and Windows devices and can provide secure authentication regardless of the hardware being used. “The…
Chipmaker Broadcom has entered into an agreement to acquire the enterprise security business of Symantec Corporation for $10.7 billion. The deal is part of a larger effort on Broadcom’s part to diversify its business, with the company aiming to become a leading global provider of IT infrastructure solutions across both hardware and software. The acquisition…
“For its part, Slack has taken the opportunity to further promote the use of post-password security measures, asserting in its email, ‘We recommend using two-factor authentication with every service that provides it, including Slack, for an extra layer of security.’” Four years after a major hack attack, the business-focused instant messaging platform Slack is taking…
Israel’s IXDen is releasing a new software solution that will allow customers to protect a range of IoT devices with post-password authentication. Dubbed IXDen Smart Homes, the platform can be installed on virtually any smart device – including smart thermostats, smart routers, and smart cameras – securing them with multi-factor authentication that guards against cyberattacks…
BehavioSec has updated its behavioral biometrics platform ahead of the European Union’s upcoming PSD2 compliance deadline. Version 5.1 of the platform offers better mouse recognition and anomaly detection, in addition to other accuracy and authentication upgrades. The upgraded platform also guards against fraud associated with new accounts. BehavioSec 5.1 will compare the behavior of a…
The US Federal Reserve System has released a new White Paper that calls attention to the growing threat of synthetic identity fraud. The paper defines a synthetic identity as one that combines false information – such as a fake name or date of birth – with legitimate information like a social security number that has…
“Feitian made its announcement at the recent Identiverse 2019 event in Washington, DC, where the company also showcased its major new security product, the AllinPass K33.” China-based Feitian has joined the Microsoft Intelligent Security Association, or MISA, the company has announced. MISA is Microsoft’s effort to team up with strategic security partners to help defend…
Neil MacDonald is taking over as Sequent’s new Vice President of Sales and General Manager for Europe, the Middle East and Africa (EMEA). Sequent is a data security specialist with a platform that tokenizes Personally Identifiable Information (PII). The process makes that information useless to hackers and other cybercriminals, and can be used to protect everything from bank accounts to…
Ping Identity is upgrading its enterprise-level multi-factor authentication platform to be compliant with the latest FIDO standards. PingID will soon support FIDO-certified authentication methods for Windows Hello and Touch ID, allowing users to log into their devices through facial or fingerprint recognition without the need for a password. Windows users will also be able to…
The 2019 Unisys Security Index suggests that people are increasingly worried about their safety in large venues. The survey found that the vast majority of Americans (83 percent) were worried about physical harm as the result of an attack at a large-scale event like a concert or a sports game, with a full 22 percent…
“In announcing its investment in SentinelOne, Samsung SDS explained that it is ‘expanding its business to customers in need of endpoint protection to devices such as PC with SentinelOne’s EDR solution.’” Samsung SDS has made a strategic investment in US-based SentinelOne, the company has announced. The investment was made through the Samsung Venture Investment business…
Yubico has appointed two new executives to its team and has a new member on its advisory board, the company has announced. Jeff Kukowski is Yubico’s new Chief Revenue Officer. He comes to the company from SecureAuth, which he helmed as CEO and Board Director from 2015 to 2018. Bill Rule, meanwhile, joins Yubico as…
OneSpan has found a new client for its mobile security services. The company has announced that the United Bulgarian Bank is now using both Cronto and its Mobile Security Suite to safeguard its six-month-old mobile banking app. “We want to improve and expand the use of our digital channels, especially mobile,” said Iliyana Voynova, the…
In the wake of yet another high-profile hack attack, FIDO Alliance co-founder Nok Nok Labs is calling businesses and service providers to take advantage of phishing-resistant multi-factor authentication solutions. The attack in this case concerns Wipro, a Major India-based software company, whose IT systems were compromised, with Wipro customers then targeted in “an advanced phishing…
Jorge Aguilar Perez shared some insights on the cybersecurity market in Latin America with a quick Q&A on BioCatch’s blog. Perez is the BioCatch Sales Director for Mexico, Central America, and the Caribbean, and explained that the region’s high rates of mobile penetration and mobile payments coupled with weak digital infrastructure make many Latin American…
