US Senator Mark Warner and a couple of colleagues are calling on Congress to pass data security laws to protect consumers in the wake of the Marriott breach, the latest in a long list of breaches including Facebook, Cathay Pacific, Equifax and a long list of other companies. Chris Olson, CEO at The Media Trust: “Data breaches and the trillion-dollar data mining industry have fueled consumer wariness around the world about the use and misuse of their information. It’s no surprise that consumers have begun to channel their outrage into new laws that attempt to curb certain data collection practices and…
ISBuzz Team
On Friday it was reported that Sotheby’s Home has become the latest casualty of Magecart. The auction house became aware of this intrusion on 10th October 2018 when an unknown third party gained access inserted malicious code. Following this news, Rusty Carter, VP of Product Management at Arxan Technologies commented below. Rusty Carter, VP of Product Management at Arxan Technologies: “The Sotheby’s breach is another in the long list of businesses falling victim to Magecart and web vulnerabilities that turn eCommerce sites into delivery mechanisms for data stealing JavaScript. Interestingly, Sotheby’s indicated that they noticed malicious activity on the same day as…
Adam Laub, Senior Vice President at STEALTHbits Technologies, points out the lessons to be learned from the recent Dunkin’ Donuts data breach. Adam Laub, Senior Vice President at STEALTHbits Technologies: “While unfortunate, the recent incident at Dunkin’ Donuts is an incredible opportunity to educate the masses in a way that may actually make a difference in the future. The victims of this breach have undoubtedly been warned of the danger of password reuse in the past, but unless you live in the world of cybersecurity, connecting the dots as to why may not be so apparent. If you use the same password…
Whether you like it or not, such a mishap may come true someday. I can imagine your anger and despair if it happens, given that a phone isn’t merely a dumb calling device these days. It stores our photos, emails, digital wallets and other sensitive things – every active smartphone user knows how valuable their gadget is. We definitely need to have an action plan for such a scenario. So, let’s suppose your smartphone has been lost or stolen. There’s a lot of personal data inside, and the price can reach hundreds of dollars. What should you do? Step 1.…
Ralf Sydekum, Technical Manager, F5 Networks, discusses whether artificial intelligence can be empathetic to all the needs of patient care. Healthcare related Artificial intelligence (AI) is developing fast and advances in critical diagnosis have revolutionised patient care. However, there is still a clear dividing line between automating manual tasks and mediating relationships between the medical profession and patients. Therefore, can an AI-enabled app really replace a human doctor and still provide quality patient care? AI Doctors There is no doubt that AI is making its presence felt in hospitals today, including detecting diseases earlier and more accurately. According to the…
Phil Neray commented below, as part of our experts comments series, on reports coming out from a cyber research forum in Washington DC (Wired, NY Post) that the Russian “Energetic Bear” hacking group is still actively probing the U.S. power grid critical infrastructure. Phil Neray, VP of Industrial Cybersecurity at CyberX: “Adversaries don’t usually install footholds in enemy territory unless they plan to eventually launch an attack. Energetic Bear has been active in our critical infrastructure since at least 2014, when they injected Havex malware into software downloads from industrial automation vendors, giving them direct access to industrial control systems in a…
Marriott International said last week that up to 500 million guests’ information may have been accessed as part of a data breach of its Starwood guest reservation database. The world’s largest hotel chain said it determined on Nov. 19 that an “unauthorized party” had accessed the database as early as 2014. For about 327 million of the guests, it added, the information includes some combination of a name, mailing address, phone number, email address, passport number, Starwood Preferred Guest account information, date of birth, gender, arrival and departure information, reservation date, and communication preferences. Adam Brown, Manager of Security Solutions at Synopsys: “The world’s largest…
Officers forced to follow up over 2,500 complaints of Instagram, Facebook, email and website hacking, and Bitcoin ransom, despite a rise in violent crime Police forces across the UK are coming under increasing pressure to launch criminal investigations into incidents of social media and computer hacking, according to a new report from the Parliament Street think tank. The news comes as senior Police Chiefs have warned that budget cuts and limited resources are leading to an increase in violent crime across the country. The new research paper, published today and entitled Hack Attack: Police Under Pressure, reveals that 14 police forces…
Ensuring data privacy became the main challenge for many organizations in 2018. While Europe was desperately getting ready for GDPR compliance, the rest of the world was deeply affected by data privacy scandals around Google and Facebook. In the foreseeable future protection of data privacy and security will become a key target for the majority of organizations. Seven IT security trends will likely influence businesses in 2019. #1. Stricter compliance rules. There are two major trends in the realm of compliance. First, attention towards protecting personally identifiable information (PII) will lead to creation of new data security and privacy laws. Within…
Following the news that a massive malvertising campaign targeting iOS devices hijacked a whopping 300 million browser sessions in just 48 hours, please see below for commentary from Rusty Carter, VP Product Management at Arxan Technologies. Rusty Carter, VP Product Management at Arxan Technologies: “This malvertising campaign is another example of consumers becoming victims due to attacks against them through their browser. By using ad networks to load content into unprotected web pages, the attackers are able to change the behaviour of the pages including automatically taking the user’s browser to unrequested destinations. This may be another blow to the digital advertising…