SEC commissioner: 'our companies, and our country, are under attack'
Corporations need to do more to protect investors from the financial damages of data beaches, an SEC commissioner says.
Want to reduce cybercrime? Undermine black market, watch cryptocurrency exchanges, experts say
Lawmakers want to know how to crack down on the monetization of stolen data.
Behavioral analytics firm BioCatch raises $30M to expand product
BioCatch proactively collects and analyzes more than 2,000 parameters to generate user profiles and model different types of genuine and malicious behavior.
Big banks want to weaken the internet’s underlying security protocol
TLS 1.3 will usher in the largest changes in the protocol's history. Banks want to build in a back door.
Hoping to fill a global void, private companies push for 'cyber norms'
Private technology companies are hoping to fill a void left by governments that have continued to face international road blocks to create cyber norms.
New SEC guidance: Please don't sell your stocks if you have insider info about a breach
The unanimously approved guidance details the ways in which publicly traded companies ought to be transparent with investors and other stakeholders when it comes to cyber risk.
Report: Cybercrime causes over $600 billion in damage annually
"It is a low risk crime that provides high payoffs. A smart cybercriminal can make hundreds of thousands, even millions of dollars with almost no chance of arrest or jail."
Why GDPR is flipping the thought process around data ownership
In a new podcast, CyberScoop gets experts to separate fact from fiction when it comes to GDPR.
Banks preparing for heightened New York cybersecurity laws to take effect
This week, senior executives from more than 3,000 banks, insurers and other financial services companies doing business in New York will have to personally certify that their computer networks are protected by a cybersecurity program appropriate for their organization’s risk profile.
FS-ISAC releases API for safer data sharing
The Financial Services Information Sharing and Analysis Center is releasing the API in order “to foster universal adoption of a more secure and robust data sharing framework."
Watchdog: Despite progress, IRS needs to improve electronic fraud detection
An auditor at the Treasury Department commended the IRS for improvements, but said there's still work to be done.
Newly uncovered malware uses DNS requests to siphon credit card data
Normally, point-of-sale malware uses HTTP requests to exfiltrate data. Using DNS requests allows attackers to avoid detection.
Oh, banks have cameras? Two men arrested for ATM jackpotting scheme must've forgot
Perpetrators dress up like repair technicians and then use malware to get the ATM to eject thousands of dollars of cash.
Cybersecurity pros will get paid more in 2018 than ever before, headhunting firms say
Research from recruitment firm Robert Walters predicts that cybersecurity salaries will rise 7 percent in 2018. The broader information technology sector is also expected to experience a 2 percent salary increase overall.
Bitcoin hype pushes hackers to stash their money in lesser-known cryptocurrencies
Lesser-known cryptocurrencies like Monero, Dash and ZCash are all the rage in the criminal underground.
North Korean hackers turn focus to cryptocurrency, point-of-sale systems during holiday season
RiskIQ and Proofpoint's findings reveal not only newly discovered, highly sophisticated tactics and capabilities held by North Korea's Lazarus Group, but they also highlight the internal divisions within it.
North Korean hackers are impersonating a cryptocurrency company to target bitcoin fans
The scam is perpetrated using a fake job posting at a cryptocurrency company. If downloaded the document can install a backdoor on the victim's computer, making it prone to more malware that can potentially steal information.
Experts: Time is running short to meet GDPR requirements
"Thousands of companies have no idea they're directly covered by this law."
How Verizon delicately handled the Yahoo breach
Craig Silliman, Verizon’s EVP of Public Policy and General Counsel, said Verizon didn't panic when Yahoo announced a very bad breach in late 2016.
Meet Money Taker, the latest hacking group tied to Russian cybercrime
Group-IB believes Money Taker is an entirely new, previously unknown hacking group.