Companies are stopping more cyberattacks, but have room to improve defenses, survey shows

An Accenture survey found that 87 percent of focused cyberattacks are prevented, compared to 70 percent reported in a similar study a year ago. Those numbers could easily be even higher, the consultancy said.

financial news

Mulvaney: CFPB hit by over 200 data 'lapses'

by Sean Lyngaas • 2 weeks ago

Mick Mulvaney revealed Thursday that the agency had suffered some 240 “lapses” in data security over an unspecified time period, in addition to a suspected 800 other such incidents.

Cybersecurity startup empow raises $10 million in Series B funding round

by Zaid Shoorbajee • 2 weeks ago

The company says its unique in that it leverages its customers’ existing security infrastructure to respond to that threat and uses AI to determine the intent of a threat.

Carbon Black files for IPO

by Zaid Shoorbajee • 2 weeks ago

Carbon Black's SEC filing says it hopes to raise $100 million. The Boston area company provides antivirus and endpoint security services to protect customers from cyberthreats.

Delta and Sears data breach exposes credit card information of customers

by Mark Satter • 3 weeks ago

Some customers of Delta Airlines and Sears had their credit card information exposed following a data breach last fall at a mutual contractor, the companies announced Wednesday.

The fear over WannaCry is still very real

by Greg Otto • 4 weeks ago

The incident at Boeing looks like a tempest in a teapot. But the sting of WannaCry will be with us for years to come.

DMARC 2.0? New BIMI standard will help fight spoofing and phishing

by Shaun Waterman • 4 weeks ago

Major email service providers are teaming up with large corporations like to develop a new email security standard.

Tax prep tools lag in DMARC implementation, advocacy group says

by Zaid Shoorbajee • 1 month ago

Half of the products tested are not using basic email spoofing protection, GCA says.

SEC commissioner: 'our companies, and our country, are under attack'

by Zaid Shoorbajee • 1 month ago

Corporations need to do more to protect investors from the financial damages of data beaches, an SEC commissioner says.

Want to reduce cybercrime? Undermine black market, watch cryptocurrency exchanges, experts say

by Zaid Shoorbajee • 1 month ago

Lawmakers want to know how to crack down on the monetization of stolen data.

Behavioral analytics firm BioCatch raises $30M to expand product

by Greg Otto • 1 month ago

BioCatch proactively collects and analyzes more than 2,000 parameters to generate user profiles and model different types of genuine and malicious behavior.

Big banks want to weaken the internet’s underlying security protocol

by Patrick Howell O'Neill • 2 months ago

TLS 1.3 will usher in the largest changes in the protocol's history. Banks want to build in a back door.

Hoping to fill a global void, private companies push for 'cyber norms'

by Chris Bing • 2 months ago

Private technology companies are hoping to fill a void left by governments that have continued to face international road blocks to create cyber norms.

New SEC guidance: Please don't sell your stocks if you have insider info about a breach

by Zaid Shoorbajee • 2 months ago

The unanimously approved guidance details the ways in which publicly traded companies ought to be transparent with investors and other stakeholders when it comes to cyber risk.

Report: Cybercrime causes over $600 billion in damage annually

by Patrick Howell O'Neill • 2 months ago

"It is a low risk crime that provides high payoffs. A smart cybercriminal can make hundreds of thousands, even millions of dollars with almost no chance of arrest or jail."

Why GDPR is flipping the thought process around data ownership

by Greg Otto • 2 months ago

In a new podcast, CyberScoop gets experts to separate fact from fiction when it comes to GDPR.

Banks preparing for heightened New York cybersecurity laws to take effect

by Shaun Waterman • 2 months ago

This week, senior executives from more than 3,000 banks, insurers and other financial services companies doing business in New York will have to personally certify that their computer networks are protected by a cybersecurity program appropriate for their organization’s risk profile.

FS-ISAC releases API for safer data sharing

by Zaid Shoorbajee • 2 months ago

The Financial Services Information Sharing and Analysis Center is releasing the API in order “to foster universal adoption of a more secure and robust data sharing framework."

Watchdog: Despite progress, IRS needs to improve electronic fraud detection

by Zaid Shoorbajee • 2 months ago

An auditor at the Treasury Department commended the IRS for improvements, but said there's still work to be done.

Newly uncovered malware uses DNS requests to siphon credit card data

by Zaid Shoorbajee • 2 months ago

Normally, point-of-sale malware uses HTTP requests to exfiltrate data. Using DNS requests allows attackers to avoid detection.

Oh, banks have cameras? Two men arrested for ATM jackpotting scheme must've forgot

by Patrick Howell O'Neill • 3 months ago

Perpetrators dress up like repair technicians and then use malware to get the ATM to eject thousands of dollars of cash.

Continue to CyberScoop.com