Posts Tagged ‘phishing’

Phishing is evolving – Banks must adapt to ensure security


Posted on 23rd Aug 2013 by in Enterprise

Phishing has been around for almost as long as the internet itself, and is a continuing problem (the recent hack of Kevin Bacon’s twitter is just one of many examples). Despite being a well-known problem, criminals continue to prosper using this method of attack. As John Hawes highlighted in his recent blog, this attack method […]

Cyber Security Awareness Month


Posted on 9th Oct 2012 by in Corporate

This October marks the ninth annual National Cyber Security Awareness Month. Sponsored by the Department of Homeland Security in cooperation with the National Cyber Security Alliance (NCSA) and the Multi-State Information Sharing and Analysis Center (MS-ISAC), this month is a time to raise awareness about protecting yourself and your information online. As the presidential election […]

DHS Urges Citizens to ‘Go for the Gold in Cybersecurity’ During 2012 Olympic Games


Posted on 23rd Jul 2012 by in Corporate

With the Olympics coming in just a few short days, online offers for discounted tickets, free merchandise, exclusive videos, or breaking news sounds great, right? Wrong, actually. “If it sounds too good to be true, it probably is,” the Department of Homeland Security (DHS) told readers in a recent blog post regarding the anticipated rise […]

The failure of web certificates heightens need for stronger authentication


Posted on 28th Sep 2011 by in Enterprise

The front page of today’s USA Today carries a chilling warning for web users about the vulnerability of digital certificate authorities, following hacks of three such organizations this summer. There are around 650 of these authorities, and the fact that hacking has been uncovered at three of these in such quick succession should be a […]

It’s good to talk: communication is key to tackling cybercrime


Posted on 20th Sep 2011 by in Enterprise

Recently, @briankrebs highlighted a Trojan attack which showed quite how sophisticated some cyber attacks are now becoming. The case in question is being investigated by German police, and involves a new piece of malware which convinces online banking customers to willingly transfer their own money into the accounts of criminals. This particular case shows that, sometimes, even a layered […]

Online banking infographics – How to build a secure web service


Posted on 21st Jul 2011 by in Corporate

In the last of our series of online banking infographics we show our ten steps for implementing a secure service. The most important step is to properly plan their deployment taking into account not only the technical constraints but also employee and customer communication.

Bank lawsuits expose legal confusion over cybercrime


Posted on 6th Jul 2011 by in Corporate

In two consecutive weeks we saw headlines made by customer versus bank lawsuits relating to cybercrime. One judge ruled that questions and answers were good enough to protect the customer. Then, a separate judge rules that the bank should have detected a mere 100 wire transfers from an account after IDs, passwords, and its OTP token password were compromised. Who was right?

There is no winner in the case of bank vs. customer


Posted on 6th Jul 2011 by in Corporate

Several weeks of harsh headlines explaining the tough battle of customers versus bank lawsuits and cybercrime.
In early June, a court in Maine ruled in favor of Ocean Bank in an ACH fraud lawsuit, stating that, “having verified IDs, passwords and requested challenge response questions, it acted in good faith by processing the ACH payments and Patco (the customer) was to blame for letting its details become compromised.” Recently, however, it appears that the opposite has occurred, when a ruling from a Texan judge favored the business which had been the victim of fraud.

Building a More Secure Internet


Posted on 10th Jun 2011 by in Corporate

It is critical that consumers are certain that the site they visit is the one they intended to access. A new policy signed by the Obama Administration will change the way we do business on the internet.

Save a Whale… Save your Job!


Posted on 31st May 2011 by in Corporate

When I refer to a whale, I am referring to your boss or, in some cases, you! A whale in information security lingo is a person with significant assets or access and whaling (as outlined by Bob Violino on CIO) is but one of many types of cyber attacks that are evolving. From phishing and pharming to spear phishing, the list goes on.