Information Security Buzz
  • HOME
  • Domains
    • Data Breach
    • Malware
    • Application Security
    • IoT
    • Cloud Security
    • Privacy
  • InfoSec Deals
  • Companies
  • Security Experts
  • ISB Conference 2021
  • Register
  • Log In
Top Posts
Debunking Three Cyber Insurance Myths For SMEs
Experts On Russia Being Held Accountable For SolarWinds
Security Expert Re: NSA Urges Organizations To Patch...
How To Protect Your Enterprise When You Can’t...
Expert Insights: Dir Nat’l Intelligence Releases Annual Threat...
Expert Advice Developers to Improve Software Security After...
Expert Reaction on Research that Coronavirus Triggering Surge...
Expert Comment On DPC Facebook Investigation
Apple Quietly Updated Some Of Its Top Hardware...
Security Researcher “Chrome 0day” Tweet – Expert Insight
Information Security Buzz
Connecting Security Experts
  • HOME
  • Domains
    • Data Breach
    • Malware
    • Application Security
    • IoT
    • Cloud Security
    • Privacy
  • InfoSec Deals
  • Companies
  • Security Experts
  • ISB Conference 2021
  • Register
  • Log In
Expert(s): November 30, 2020
Michael Magrath
Director, Global Regulations & Standardsfeature_status*/ ?>
OneSpan

Comments Dotted : 3
December 09, 2020

Cyber Security Predictions 2021: Experts’ Responses

Digital identities and remote account openings will gain traction worldwide.
Digital identities and remote account openings will gain traction worldwide: Regulators in Hong Kong, Pakistan, Greece, Macedonia, Mexico, and Turkey approved remote bank account openings in 2020 – a clear indicator that even processes rooted in traditional face-to-face meetings in the branch are now going digital and touchless around the globe.
Like(3)  (0)

Linkedin Message

@Michael Magrath, Director, Global Regulations & Standards, provides expert commentary for "dot your expert comments" at @Information Security Buzz.
"Digital identities and remote account openings will gain traction worldwide...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/cyber-security-predictions-2021-experts-responses

Copy this message and share on your Linkedin profile. Thanks!

Facebook Message

@Michael Magrath, Director, Global Regulations & Standards, provides expert commentary for "dot your expert comments" at @Information Security Buzz.
"Digital identities and remote account openings will gain traction worldwide...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/cyber-security-predictions-2021-experts-responses

Copy this message and share on your Facebook profile. Thanks!
    No Comments Yet ....
Please login to comment.
April 01, 2020

Industry Leaders And Cybersecurity Experts Insight On Marriott International Data Breach

In 2019 Marriott is expected report about $3.8 billion (USD) in global turnover (revenues).
For Marriott International this breach probably couldn’t have come at a worse time as the near shutdown of the global travel and hospitality industries have adversely Marriott’s revenue projections. While Marriott felt the pain of a £99m GDPR fine for the Starwood breach, as a two-time offender with incidents relatively close apart, the regulators may come down hard on Marriott. If deemed a severe violation, under GDPR, companies can be fined up to 4% of global turnover of the preceding.....Read More
For Marriott International this breach probably couldn’t have come at a worse time as the near shutdown of the global travel and hospitality industries have adversely Marriott’s revenue projections. While Marriott felt the pain of a £99m GDPR fine for the Starwood breach, as a two-time offender with incidents relatively close apart, the regulators may come down hard on Marriott. If deemed a severe violation, under GDPR, companies can be fined up to 4% of global turnover of the preceding fiscal year, whichever is higher. In 2019 Marriott is expected report about $3.8 billion (USD) in global turnover (revenues). 4% would be about $152 million. Less severe violations could be subject to a fine of 2% of global turnover of the preceding fiscal year would be $76 million. The details of who was impacted by the breach have not been made public and it remains to be seen It remains to be seen if fines are levied against Marriott. If there is one silver lining to the breach, it occurred ahead of enforcement of two well-publicized data privacy and data protection laws, the California Consumer Privacy Act (CCPA) and Brazil’s General Data Protection Law (Lei Geral de Proteção de Dados Pessoais) or “LGPD”. Enforcement of the CCPA begins July 1, 2020 while the LGPD takes effect August 16, 2020. Both shall carry stiff penalties and fines which Marriott has avoided.  Read Less
Like(0)  (0)

Linkedin Message

@Michael Magrath, Director, Global Regulations & Standards, provides expert commentary for "dot your expert comments" at @Information Security Buzz.
"In 2019 Marriott is expected report about $3.8 billion (USD) in global turnover (revenues)...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/industry-leaders-and-cybersecurity-experts-insight-on-marriott-international-data-breach

Copy this message and share on your Linkedin profile. Thanks!

Facebook Message

@Michael Magrath, Director, Global Regulations & Standards, provides expert commentary for "dot your expert comments" at @Information Security Buzz.
"In 2019 Marriott is expected report about $3.8 billion (USD) in global turnover (revenues)...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/industry-leaders-and-cybersecurity-experts-insight-on-marriott-international-data-breach

Copy this message and share on your Facebook profile. Thanks!
    No Comments Yet ....
Please login to comment.
August 01, 2019

Capital One Suffers Data Breach Affecting 100 Million Customers

The good news is the perpetrator was identified and arrested.
The Capital One breach is a classic example of the “insider threat” which has been present since the first merchant hung a shingle and sold goods and is certainly not limited to the digital age. The insider threat is not limited to employees and extends to third party providers as Capital One fell victim to. The third-party provider threat is a concern for CISO’s and regulators alike, which is why the New York Department of Financial Services’ Cybersecurity Requirements for.....Read More
The Capital One breach is a classic example of the “insider threat” which has been present since the first merchant hung a shingle and sold goods and is certainly not limited to the digital age. The insider threat is not limited to employees and extends to third party providers as Capital One fell victim to. The third-party provider threat is a concern for CISO’s and regulators alike, which is why the New York Department of Financial Services’ Cybersecurity Requirements for Financial Services Companies (23 NYCRR 500) include specific requirements regarding third-party service providers. Under the regulation, banks and financial services providers must secure their own systems as well as implement third-party risk management programs. Coincidentally the regulation’s applicability for third-party service providers just went into effect in March of this year. According to the regulation, section 500.11, “The organization must document written procedures and policies to ensure third-party risk management programs protect information systems and non-public information.” Additionally, policies and procedures pertaining to third-party service providers are required to include relevant guidelines for due diligence as well as contractual protections, addressing: Access controls, including multi factor authentication; Encryption; Notifications to be provided to the primary organization in response to a cybersecurity event; Representations and warranties for a third party’s cybersecurity policies and procedures. The good news is the perpetrator was identified and arrested, however it remains to be seen the severity of penalties Capital One will incur from federal and state regulators. Although, Capital One is headquartered in Virginia it is licensed to conduct business in New York with branches in the state.  Read Less
Like(0)  (0)

Linkedin Message

@Michael Magrath, Director, Global Regulations & Standards, provides expert commentary for "dot your expert comments" at @Information Security Buzz.
"The good news is the perpetrator was identified and arrested...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/capital-one-suffers-data-breach-affecting-100-million-customers

Copy this message and share on your Linkedin profile. Thanks!

Facebook Message

@Michael Magrath, Director, Global Regulations & Standards, provides expert commentary for "dot your expert comments" at @Information Security Buzz.
"The good news is the perpetrator was identified and arrested...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/capital-one-suffers-data-breach-affecting-100-million-customers

Copy this message and share on your Facebook profile. Thanks!
    No Comments Yet ....
Please login to comment.

SECURELY DOTTED BY

Kevin Mandia, CEO, FireEye

"This is a positive, welcome step towards adding more friction to Russian operations. "

Experts On Russia Being Held Accountable For SolarWinds

Tony Cole, CTO , Attivo Networks

"The impact from all the actions taken by the US government? It’s undetermined at this point in time. "

Experts On Russia Being Held Accountable For SolarWinds

Joseph Carson, Chief Security Scientist & Advisory CISO, Thycotic

"The good news in the statement fact sheet is the part where the US government support a Global Cybersecurity Approach. "

Experts On Russia Being Held Accountable For SolarWinds

Jayant Shukla, CTO and co-founder, K2 Cyber Security

"Virtual patching is a feature of runtime application security solutions like RASP. "

Security Expert Re: NSA Urges Organizations To Patch Top Vulnerabilities Exploited By Russia

Saryu Nayyar, CEO, Gurucul

"The best defense is a full-stack offense which again includes cyber defenses powered by machine learning like security analytics. "

Expert Insights: Dir Nat’l Intelligence Releases Annual Threat Assessment Thursday

Garret F. Grajek, CEO, YouAttest

"My fear as an identity professional for 30 years is that more regulation will occur because of the threat. "

Expert Insights: Dir Nat’l Intelligence Releases Annual Threat Assessment Thursday

Craig Sanderson, VP of Security Products, Infoblox

"These incidents give us an opportunity to take a look at potential prevention steps. "

Expert Advice Developers to Improve Software Security After NAME:WRECK Disclosure

John Smith, Solution Architects EMEA and APAC, Veracode

"The potential impact of exploiting the NAME:WRECK vulnerabilities are substantial, but software flaws are not a new threat for businesses. "

Expert Advice Developers to Improve Software Security After NAME:WRECK Disclosure

Stephen Bradford, SVP EMEA, SailPoint

"When speed trumps security, we’re increasingly exposed to cyber fraud. "

Expert Reaction on Research that Coronavirus Triggering Surge in Cyber Fraud

Chris Strand, Chief Compliance Officer, IntSights

"The DPC was instrumental in enforcing a fine on Twitter when 32.8 million credentials ended up online last year. "

Expert Comment On DPC Facebook Investigation

Jake Moore, Cybersecurity Specialist, ESET

"Apple are likely to have suspected a threat to the hardware if this had got out, hence why it was kept under wraps. "

Apple Quietly Updated Some Of Its Top Hardware Due To Security Risks

Satnam Narang, Senior Research Engineer, Tenable

"We strongly encourage users and organizations alike to ensure they are patching their browsers like Chrome and Edge as soon as possible. "

Security Researcher “Chrome 0day” Tweet – Expert Insight

Steve Forbes, Government Cyber Security Expert, Nominet States

"It is vital that governments pay close attention to the resilience of their critical infrastructures. "

Iran Nuclear Facility Potential Cyber Attack – What Expert Says

Saryu Nayyar, CEO, Gurucul

"The good news is that it appears the only damage is financial, and likely temporary. "

Industry Leaders On Android.Joker Malware

Eddie Glenn, Senior Product Manager, Venafi

"These timestamps indicate that the code signing certificate was valid at the time it was used to sign the code. "

Expert Reaction On Pulse Secure VPN Users Can’t Login Due To Certificate Related Outage

WORKING WITH US

About Us

Advertise With Us

Information Security Companies

Contact Us

ISB CONFERENCE

ISB Conference 2021

THE PAGES

Privacy Policy

Terms & Conditions

RSS Feeds

INFORMATION SECURITY EXPERTS

Information Security Experts: Comments Dotted

Register and Comments

Categories

  • Facebook
  • Twitter

Copyright © 2020 ISBuzz Pty Ltd is a company registered in Australia with company number 605 203 772 whose registered office is 14 Alanvale Street, Harrison, ACT 2914.


Back To Top
Information Security Buzz
  • Home
  • Experts Comments on News
  • Security Articles
  • Vendor News
  • Study & Research
  • ISBuzz Expert Panel