It's not uncommon these days for an organization to declare a data breach incident, followed by an announcement of the extent of the breach, and the steps they're taking to mitigate loss. Some, like Dropbox, are even urging users to change passwords as a precautionary measure.
Do you know what's on your employees' mobile devices? CyberEdge researchers believe mobile applications are the greatest risk to your company's network. In a 2015 assessment, Veracode found an average of 2,000-plus malicious apps on network mobile devices. The solution isn't necessarily a broad-based ban on personal app usage in the workplace. Rather, it's time for security pros to double down on endpoint security.
Despite the increasing importance of information security, IT pros are struggling to control risks on a limited budget. The Ernst & Young 2015 Global Information Security Survey reported that for 62% of CIOs, budget is the biggest security barrier. Nearly 75% believe a budget increase of 50% or more would be necessary to adequately protect their company.
Your retail stores can't function without point-of-sale systems, but they're one of the greatest information security vulnerabilities. Recent news reports indicate that a Russian cybercrime collective has successfully targeted five separate providers of point-of-sale software in the past month, affecting "hundreds of thousands" of U.S.-based businesses. Significant point-of-sale breaches in the past twelve months have affected hotel groups, fast food chains, and other major brands.
With the explosive growth of the Internet of Things (IoT), big data, cloud computing, and mobility, much attention is given to protecting information assets from outside attacks—ransomware, spear phishing, hacktivism, Advanced Persistent Threats (APTs), distributed denial-of-service (DDos) attacks, and more.
Yet, recent statistics point to a different threat.
Nearly 30% of organizations believe they were targeted by an advanced persistent threat in the last year. The U.S. Defense Advanced Research Projects Agency (DARPA) has recently awarded $6 million to research these feared threats that can take down many traditional security detection systems.
Where does your average information security professional spend the majority of their time? If you guessed monitoring or compliance activities, you're unfortunately wrong.
Self-created security vulnerabilities are actually the biggest time commitment for today's security professionals, according to recent CSO research. While 73% believe their organizations are likely to fall victim to attack in the next year, almost a third feel like they are "completely underwater."
The risks of being found noncompliant with HIPAA guidelines are among the most pressing issues for healthcare IT professionals. In the event of a data breach, HIPAA fines can exceed $1.5 million. To compound matters, the Department of Health and Human Services Office for Civil Rights (OCR) has recently begun the second phase of random HIPAA audits, which will involve a combination of both written requests and on-site visits. That means now is the time for organizations to ensure they're compliant with all HIPAA requirements.
Though no longer a new idea, the Internet of Things (IoT) is also far from being a mature idea. With predictions listing the total number of active, installed, wireless connected devices doubling from the 16 billion in 2015, the thought of cybercrime and cybersecurity can escape no one. Daily reports showing the latest trends and statistics continue to pour in. The latest reports estimate the global cyber security market to grow to USD 202.36 billion by 2021, at a Compound Annual Growth Rate (CAGR) of 10.6%.