If you browsed the latest security headlines, you'd probably think the majority of data breaches were related to hackers, political activists, malware or phishing. While the latter two hint at it, the truth is that nearly half of all data breaches can be traced back to insiders in some capacity.
As of Q1 2018, the global cybersecurity community finds themselves inundated with both internal and external advanced threat actors who are stealthier, more resilient and sadly, more effective than they have ever been before. Many organizations are coming to terms with deciding whether their security posture is...
When it comes to fraud prevention, many organizations overlook the insider threat - both the malicious actor who intends to commit fraud as well as the accidental insider who makes a mistake or is taken advantage of by an external entity. The CERT Insider Threat Center at Carnegie Mellon University is one of the...
Accidentally careless employees are the biggest cause of incidents involving data loss, responsible for almost 25 percent of all breaches.
Given that employees are the first line of defense against socially engineered schemes, such as account takeover, new account fraud and other crimes, doesn't it make sense to...
When a privileged account gets hacked, it allows the attacker to impersonate a trusted employee or system and carry out malicious activity without being detected as an intruder. Once attackers compromise a privileged account, they can typically roam at will through an IT environment to steal information and wreak...
A recently published 2017 survey of over 400 security professionals in the U.S., U.K. and Germany measured how well their organizations implemented security controls for SSH keys. The results show that most organizations are underprepared to protect against SSH-based attacks, with fewer than half following industry...
IoT devices are becoming the "cyberweapon delivery system of choice" by today's botnet-building attackers. And, why not? There are literally billions of them in the world, most of which are readily accessible (via Telnet) and easily hacked.
Download this report and learn how to keep your organization safe...
Money laundering: a crime as old as currency itself. It represents between two and five percent of global Gross Domestic Product (GDP)*. Cyber crime and money laundering are growing and evolving at a faster rate than many organizations can keep pace with, especially while staying within regulatory requirements. The...
Fraud is constantly evolving, meaning your fraud prevention strategy needs the flexibility to change in order to keep pace and outmaneuver fraudsters.
Download this tip sheet to learn the tools you need to consistently outsmart the fraudsters regardless of their schemes and alternative methods.
Traditionally, fraud teams have taken a defensive approach to fraud prevention as each new type of threat appeared. Nowadays, fraud is evolving rapidly as criminals become more sophisticated. It's time to take a proactive stance!
Without a proactive fraud strategy, customers can get caught in the middle with either...
Fraud and associated compliance issues are becoming an increasing challenge for financial services companies today. Fraud approaches are constantly changing and the cost of fraud prevention is increasing, making it more important to keep up.
What's needed is a flexible fraud prevention strategy that leverages your...
Even the most well-intentioned employees risk leaking sensitive data or inadvertently letting in malware that can wreak havoc on your network and systems.
Give your employees the proper training and knowledge to make them your most important line of defense against cyber threats.
Download this checklist and...
Spear phishing is the common trigger to many of the most popular - and successful - targeted attacks. How can organizations improve their defenses? Jon Clay of Trend Micro tells how to better spot and stop spear phishing.
Is your organization exposed to an attack that misuses SSH keys?
You know that your organization is using SSH to safeguard privileged access. But you may not realize that your SSH keys could be vulnerable to insider and cyber threats.
The majority of those we surveyed didn't. Results from a 2017 study show that...
A recently published 2017 survey of over 400 security professionals in the U.S., U.K. and Germany measured how well their organizations implemented security controls for SSH keys. The results show that most organizations are underprepared to protect against SSH-based attacks, with fewer than half following industry...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing ffiec.bankinfosecurity.com, you agree to our use of cookies.