Clik here to view.
NIST: One Final, Two Draft Guides Issued
Agency to Host Workshops on Cyber-Physical SystemsThe National Institute of Standards and Technology issues preliminary guidance on BIOS integrity and common remediation enumeration. NIST also...
View ArticleClik here to view.
Phishing Targets FDIC
FDIC Says New Wave of Phishy E-mails Hit BusinessesThe Federal Deposit Insurance Corp. is warning its banks about another strand of phishing attacks purporting to come from the FDIC. The e-mails claim...
View ArticleClik here to view.
Four Romanians Charged for POS Fraud
Indictment Alleges Scheme Affected 80,000 CardholdersThe Department of Justice has indicted four Romanians for their alleged roles in a multimillion-dollar fraud scheme believed to have compromised...
View ArticleClik here to view.
Heartland Breach: Claims Dismissed
Court Denies Compensation to InstitutionsA U.S. District Judge has dismissed financial injury claims by nine financial institutions as a result of the 2009 Heartland Payment Systems data breach. But...
View ArticleClik here to view.
New Economies: Value and Data Security
Banks Have Responsibility and Opportunity to ProtectValue? It's coming in more shapes and forms than ever before, says Kosta Peric of SWIFT. So how can financial institutions embrace these new values...
View ArticleClik here to view.
NIST Revises E-Authentication Guideline
New Guidance Recognizes Technology Changes in Past 5 YearsRevised guidance from the National Institute of Standards and Technology, SP 800-63-1, could help organizations protect themselves from a...
View ArticleClik here to view.
POS Fraud: How Hackers Strike
New Indictment Highlights Growing Concerns, PatternsMichaels, Save Mart and Subway. Each of these companies was victimized by point-of-sale fraud, and security experts say the fraudsters' patterns...
View ArticleClik here to view.
Breach Response: The Legal View
Fast Action Can Save Reputation and Ensure ComplianceAs legal issues surrounding data breaches become increasingly complex, more organizations are turning to attorneys for post-breach response, says...
View ArticleClik here to view.
White House Unveils Cybersecurity R&D Plan
Ending Piecemeal Approaches to Fed-Backed Infosec ResearchThe plan identifies opportunities to engage the private sector in activities for transitioning promising R&D into practice. It prioritizes...
View ArticleClik here to view.
Wholesaler Breach Affects 200,000
Card Details Stolen from Stored Mag-Stripe DataMore than 200,000 payment card accounts have been compromised in a data breach at Restaurant Depot, a food service wholesaler, and the fraudsters are...
View ArticleClik here to view.
Cybersecurity Law: Overcoming the Details
Despite Challenges, Congress Committed to Passing LegislationWith many questions left unanswered regarding comprehensive cybersecurity legislation, the future seems bleak. But there's hope, says Jacob...
View ArticleClik here to view.
Merchant Posts Fraud FAQ
Save Mart Updates Customers on Point-of-Sale BreachSave Mart, the Calif.-based supermarket chain, offers new details and an FAQ about the investigation into the payments card breach that now is...
View ArticleClik here to view.
ATM Skimmer Pleads Guilty
Fraudster Linked to Conspiracy, Faces up to 30 YearsThe potential 30-year prison term and $1 million fine are significant, but so is the actual plea agreement - which may signal a new tactic in law...
View ArticleClik here to view.
FFIEC Guidance: Are Banks Ready?
Some Institutions Still Confused About Regulators' ExpectationsAs 2012 nears and federal regulators prepare to examine financial institutions for conformance with the FFIEC Authentication Guidance,...
View ArticleClik here to view.
2 Banks Closed on Dec. 16
2011 Tally: 113 Institutions Have FailedTwo banks were closed by state and federal banking regulators on Friday, Dec. 16. These latest failures raise the tally to 113 failed institutions so far this year
View ArticleClik here to view.
Breach Response: Are You Prepared?
Testing is Best Metric of Team's ReadinessHaving a breach response team in place at your organization is a necessity in today's threat environment. But how - before a breach occurs - do you know if...
View ArticleClik here to view.
Bill Would Foster Cyber-Threat Info Sharing
Public-Private Group Would Promote Best Infosec Practices"We will provide critical infrastructure owners and operators the timely access to actionable cybersecurity information necessary to protect...
View ArticleClik here to view.
3 New Security, Risk Sites Debut
ISMG Launches InfoRiskToday, DataBreachToday and CareersInfoSecurityThese new sites now make Information Security Media Group the largest global network of information security-focused media sites,...
View ArticleUsing the NIST HIPAA Security Rule Toolkit for Risk Assessments
The National Institute of Standards and Technology, a non-regulatory agency of the Department of Commerce, is responsible for providing standards and technology to protect against threats to the...
View ArticleThe State of ACH Fraud
Incidents Continue; We Just Hear Less About ThemAs U.S. banking institutions work to conform with the FFIEC Authentication Guidance, are they now doing better jobs of detecting and preventing incidents...
View Article