Check Fraud: What Hurdles Are Facing Banks?

Suparna Goswami • February 6, 2023

Banks are losing hundreds of millions of dollars a year to check fraud - if not more, says David Maimon, professor of criminal justice and criminology at Georgia State University. The major hurdle facing banks is that they are not able to share information with each about fraudulent checks.

Blockchain & Cryptocurrency

JD Sports Details Data Breach Affecting 10 Million Customers

Latest

Identity & Access Management

Trusona Exec Goldman on Bringing Usability to Authentication

Michael Novinson • February 6, 2023

Security practitioners are putting cognitive psychology and customer experience at the forefront of new product development in a push for usability, says Trusona's Kevin Goldman. Getting user experience designers familiar with products allows them to speak meaningfully with the security team.

Fraud Management & Cybercrime

BlackBasta Blamed for Global Attacks on VMware ESXi Servers

Akshaya Asokan • February 6, 2023

The Italian cybersecurity agency says at least a dozen hacks against unpatched VMware ESXi servers in the country are likely tied to the BlackBasta ransomware group. Investigators say the ransomware campaign may have hit thousands of organizations worldwide since Feb. 2.

Cybercrime

Notorious Finnish Hacker 'Zeekill' Busted by French Police

Mathew J. Schwartz • February 6, 2023

French police arrested hacker Aleksanteri Kivimäki, 25, who's suspected of hacking and extorting a Finnish mental health service provider, leaking patient data and extorting 25,000 patients. The suspect was formerly convicted of disrupting thousands of websites when he was a teenager.

Security Operations

CrowdStrike CEO on Why It's Tough to Defend Sensitive Assets

Michael Novinson • February 3, 2023

Organizations today struggle with both new attack surface challenges such as cloud configuration and exposed buckets and long-standing ones around vulnerable ports and infrastructure. CEO George Kurtz says CrowdStrike's recent purchase of Reposify will help customers defend their priority assets.

Security Operations

IBM Security GM on Seeing a Target Through the Hacker's Eyes

Michael Novinson • February 3, 2023

Companies can be blinded by their inside-out view and often benefit from another set of eyes that see their business the same way an attacker would, says IBM's Mary O'Brien. IBM's acquisition of attack surface management firm Randori gives clients another view of areas that need to be remediated.

Network Firewalls, Network Access Control

Jeetu Patel on Having a Consistent Design at Cisco Security

Michael Novinson • February 3, 2023

Cisco plans to debut a common design language across its network and security offerings so that products such as Cisco Meraki and Umbrella will no longer look or feel different from one another, says Jeetu Patel, executive vice president and general manager for security and collaboration at Cisco.

Governance & Risk Management

CEO Faitelson on How Varonis' SaaS Migration Helps Customers

Michael Novinson • February 3, 2023

Varonis has dedicated most of its engineering resources to SaaS since the onset of COVID-19 to provide more automation to customers, says CEO Yaki Faitelson. The company has focused on delivering robust data protection to customers without them having to dedicate hardware or personnel to the task.

Network Detection & Response

Proofpoint CEO on Thwarting Post-Compromise Lateral Movement

Michael Novinson • February 3, 2023

Proofpoint has focused on preventing cyberattacks, but customers have increasingly asked for help with blocking lateral movement from compromised identities, says CEO Ashan Willy. Acquiring Illusive in December will help Proofpoint block identity attack paths when a user is compromised.

Cloud Security

Wiz CEO on the Need to Consolidate Cloud Security Technology

Michael Novinson • February 3, 2023

The cloud security landscape has long been fragmented, and different vendors attempt to separately address containers, serverless and vulnerabilities, says Wiz CEO Assaf Rappaport. Consolidating detection, vulnerability and misconfiguration data in a single place reduces the noise for clients.

Leadership & Executive Communication

World Economic Forum's Cybersecurity Outlook 2023 Highlights

Anna Delaney • February 3, 2023

According to the World Economic Forum, geopolitical instability has helped to close the perception gap between business and cyber leaders' views on the importance of cyber risk management, and "91% of all respondents" believe that "a far-reaching, catastrophic cyber event" is on the horizon.

Blockchain & Cryptocurrency

How Much Did BonqDAO Lose in Smart Contracts Hack?

Rashmi Ramesh • February 2, 2023

Another day, another crypto hack: A hacker on Wednesday exploited a smart contract vulnerability on a decentralized platform to steal cryptocurrency. The attacker got away with either $120 million or $1 million, depending on whom you ask. It's complicated.

Application Security

Checkmarx CEO on Bringing Application, API Security Together

Michael Novinson • February 2, 2023

Organizations have struggled to understand why APIs are so strategic even though they're an intrinsic way businesses interface with their software, according to Checkmarx CEO Emmanuel Benzaquen. He says API abuse is slated to become one of the most common types of web application data breaches.