Connect with us

Cyber Security

BigID Adds CRO and Expands Sales Leadership Team to Reimagine Data…

Avatar

Published

on

BigID, the leading data discovery and intelligence platform for privacy, protection and perspective, today announced the latest key hire to support rapid growth, naming Marc DeGaetano as its new Chief Revenue Officer.

DeGaetano brings more than 23 years of senior-level sales, data security and data management leadership experience from companies including Rubrik, Tanium, Symantec, and Veritas. He will be responsible for leading BigID’s global sales organization and joins a rapidly growing team of seasoned data and security sales leaders.

“Marc has a track record of leading enterprise and strategic account organizations selling platform-centric solutions to security and data leaders.” said Dimitri Sirota, Co-Founder and CEO of BigID. “With the introduction of BigID’s first-in-industry extensible and open data management platform we were looking for a leader that can show value to both CSOs and CDOs. Marc has proven success with both in hyperscale companies.”

BigID is reimagining data management, providing unmatched data discovery and intelligence for finding and understanding data everywhere plus the first open App platform to action data in compliance, security and data governance. BigID is pioneering how privacy, security and data professionals know, action and unleash their data in the cloud and data center and Marc will lead a team of data veterans to help deliver these solutions to the market.

Other New Sales Leadership Additions:

  • Ron Spratt joins BigID to run North America sales from Informatica where he led financial services sales.
  • Aaron Stutsman joins BigID to run US east from Informatica where he ran central and east sales.
  • Ben Kennedy joins BigID to run US west from Informatica where he ran west region financial services sales.
  • Steve Davis joins BigID to run US federal from Informatica where he previously ran Civilian federal sales.
  • Tom Murtagh joins BigID to run revenue operations from Collibra where he previously ran sales ops.
  • Jason Prindle joins BigID to run Inside Sales and Global Sales Development from Prevalent where he previously led the same functions.

“It’s a privilege to join this deep bench of incredibly talented individuals,” said DeGaetano, CRO of BigID. “As our world continues to experience digital transformation, enabling companies to truly understand and maximize their data, while also protecting their customers’ privacy, is absolutely critical. I’m proud to be part of the team that will elevate BigID in the global marketplace.”

BigID recently raised a $100M in total Series D funding to accelerate its sales expansion and introduction of apps on its app platform.

About BigID:

BigID enables organizations to know their enterprise data and take action for privacy, protection, and perspective. Customers deploy BigID to proactively discover, manage, protect, and get more value from their regulated, sensitive, and personal data across their data landscape. BigID has been recognized for its data intelligence innovation as a 2019 World Economic Forum Technology Pioneer, named to the 2020 Forbes Cloud 100, a Business Insider 2020 AI Startup to Watch, and an RSA Innovation Sandbox winner. Find out more at http://bigid.com.

Media Contact

Josh Turner

josh.turner@si14global.com

US: +1-917-231-0550

Share article on social media or email:

Coinsmart. Beste Bitcoin-Börse in Europa
Source: https://www.prweb.com/releases/bigid_adds_cro_and_expands_sales_leadership_team_to_reimagine_data_management_for_the_next_decade/prweb17883892.htm

Cyber Security

IOTW: Ransomware Attack Closes Colonial Pipeline

Avatar

Published

on

Signs point to the fact that it was DarkSide, a Robin Hood-like hacking group who successfully executed a ransomware attack that shutdown the Georgia-based Colonial Pipeline. There are conflicting reports about how the incident will further impact the distribution of U.S. domestic oil to the Eastern states and gas prices. 

Private companies working with U.S. government agencies shutdown the cloud servers from which the attacks on the Colonial Pipeline and 12 other companies were launched. They also retrieved the stolen data which was bound for Russia.

The main pipeline has been closed for several days. While the smaller pipelines were also affected, they were restored first as part of a phased plan. The Pipeline stretches from Texas to the Northeast, delivering about 45% of the fuel consumed by the East Coast.

The Facts

On Friday, May 7, the Colonial Pipeline announced its operations had been halted as a result of a ransomware incident that shutdown the main pipeline and smaller pipelines. Incident response began the day before, on Thursday. 

By Sunday, the smaller lines were operational again. However, the mainline remains down at the time of this writing. Early in the week, President Joe Biden worked with the Department of Transportation to lift oil trucking hour restrictions to keep the gas products flowing. On Wednesday, the White House released an Executive Order on Imrpoving National Cyber Security. The Colonial Pipeline is now fully operational, but not before panic-stricken consumers started hoarding gas and complaining about price gouging.

The Colonial Pipeline transports more than 2.5 million barrels a day of diesel, gasoline, jet fuel and natural gas via Gulf Coast pipelines that span more than 5,500 miles.

Reuters reported that the hackers stole more than 100 GB of data and that the FBI and other government agencies had successfully collaborated with private companies to take down the cloud servers the hackers used to steal the data. The ransom amount remains undisclosed and so does Colonial Pipelines’ response to the extortion attempt.  

DarkSide claims it does not target schools, hospitals, nursing homes or government organizations and that it donates part of its bounty to charity. The group reportedly demands payment for a decryption key and is increasingly demanding additional payment not to publish stolen data. DarkSide also stated on its website recently that it is not geopolitically motivated.

The Colonial Pipeline attack has been deemed “the worst attack on critical infrastructure to date.” 

Lessons Learned

U.S. critical infrastructure has become a popular cyberwarfare target. The weak underbelly has been aging tech and industrial control systems (ICSs) which may lack adequate physical and cyber security.

The problem isn’t a new one, but the number of attacks continue to rise.

Quick Tips

No business is immune from a ransomware attack.

  • Limit administrative privileges.
  • Limit the use of hardware and software to authorized hardware and software. While this may not be possible in all organizations, it is important for critical infrastructure organizations.
  • Monitor system, application, network and user behavior for anomalous activity.
  • Do a thorough cybersecurity assessment that involves white hat penetration testing. Critical infrastructure organizations should check for physical and cyber weaknesses.
  • Fortify the soft spots.
  • Have an incident response plan in place that involves operations, finance, legal, compliance, IT, risk management and communications.
  • Patch software as soon as possible.
  • Train and update the workforce on cyber hygiene.
  • If your company is attacked, engage a firm that specializes in forensics. Contact local and federal law enforcement, as appropriate.

Coinsmart. Beste Bitcoin-Börse in Europa
Source: https://www.cshub.com/attacks/articles/iotw-ransomware-attack-closes-colonial-pipeline

Continue Reading

AI

Pandemic Spurred Identity Fraud; AI and Biometrics Are Responding 

Avatar

Published

on

AI and biometrics are being more widely incorporated in new cybersecurity products, as losses from cyberattacks and identity theft increased dramatically in 2020. (Credit: Getty Images) 

By AI Trends Staff 

Cyberattacks and identity fraud losses increased dramatically in 2020 as the pandemic made remote work the norm, setting the stage for AI and biometrics to combine in efforts to attain a higher level of protection. 

One study found banks worldwide saw a 238% jump in cyberattacks between February and April 2020; a study from Javelin Strategy & Research found that identity fraud losses grew to $56 billion last year as fraudsters used stolen personal information to create synthetic identities, according to a recent account from Pymnts.com. In addition, automated bot attacks shot upward by 100 million between July and December, targeting companies in a range of industries.  

Companies striving for better protection risk making life more difficult for their customers; another study found that 40% of financial institutions frequently mistake the online actions of legitimate customers to those of fraudsters. 

Caleb Callahan, Vice President of Fraud, Stash Financial

“As we look toward the post-pandemic—or, more accurately, inter-pandemic—era, we see just how good fraudsters were at using synthetic identities to defeat manual and semi-manual onboarding processes,” stated Caleb Callahan, Vice President of Fraud at Stash Financial of New York, offering a personal finance app, in an interview with Pymnts. 

SIM Sway Can Create a Synthetic Identity  

One technique for achieving a synthetic identity is a SIM swap, in which someone contacts your wireless carrier and is able to convince the call center employee that they are you, using personal data that may have been exposed in hacks, data breaches or information publicly shared on social networks, according to an account on CNET.  

Once your phone number is assigned to a new card, all of your incoming calls and text messages will be routed to whatever phone the new SIM card is in.  

Identity theft losses were $712.4 billion-plus in 2020, up 42% from 2019, Callahan stated. “To be frank, our defenses are fragmented and too dependent on technologies such as SMS [texting] that were never designed to provide secure services. Banks and all businesses should be looking at how to unify data signals and layer checkpoints in order to keep up with today’s sophisticated fraudsters,” he stated.  

Asked what tools and technologies would help differentiate between fraudsters and legitimate customers, Callahan stated, “in an ideal world, we would have a digital identity infrastructure that banks and others could depend on, but I think that we are some ways away from that right now.”  

Going forward, “The needs of the travel and hospitality, health, education and other sectors might accelerate the evolution of infrastructure for safety and security,” Callahan foresees. 

AI and Biometrics Seen as Offering Security Advantages 

AI can be employed to protect digital identity fraud, such as by offering greater accuracy and speed when it comes to verifying a person’s identity, or by incorporating biometric data so that a cybercriminal would not be able to gain access to information by only providing credentials, according to an account in Forbes. 

Deepak Gupta, Cofounder and CTO, LoginRadius

AI has the power to save the world from digital identity fraud,” stated Deepak Gupta, author of the Forbes article and cofounder and CTO of LoginRadius, a cloud-based consumer identity platform. “In the fight against ID theft, it is already a strong weapon. AI systems are entirely likely to end the reign of the individual hacker.”  

While he sees AI authentication as being in an early phase, Gupta recommended that companies examine the following: the use of intelligent adaptive authentication, such as local and device fingerprint; biometric authentication, based on the face or fingerprints; and smart data filters. “A well-developed AI protection system will have the ability to respond in nanoseconds to close a leak,” he stated. 

Pandemic Altered Consumer Financial Behavior, Spurred Identity Fraud  

The global pandemic has had a dramatic impact on consumer financial behavior. Consumers spent more time at home in 2020, transacted less than in previous years, and relied heavily on streaming services, digital commerce, and payments. They also corresponded more via email and text, for both work and personal life.  

“The pandemic inspired a major shift in how criminals approach fraud,” stated John Buzzard, Lead Analyst, Fraud & Security, with Javelin Strategy & Research in a press release. “Identity fraud has evolved and now reflects the lengths criminals will take to directly target consumers in order to steal their personally identifiable information.” 

Companies made quick adjustments to their business models, such as by increasing remote interactions with borrowers for loan originations and closings, and criminals pounced on new vulnerabilities they discovered. Nearly one-third of identity fraud victims say their financial services providers did not satisfactorily resolve their problems, and 38% of victims closed their accounts because of lack of resolution, the Javelin researchers found.   

“It is clear that financial institutions must continue to proactively and transparently manage fraud as a means to deepen their customer relationships,” stated Eric Kraus, Vice President and General Manager of Fraud, Risk and Compliance, FIS. The company offers technology solutions for merchants, banks, and capital markets firms globally. “Through our continuing business relationships with financial institutions, we know firsthand that consumers are looking to their banks to resolve instances of fraud, regardless of how the fraud occurred,” he added.  

This push from consumers who are becoming increasingly savvy online will lay a foundation for safer digital transactions.  

“Static forms of consumer authentication must be replaced with a modern, standards-based approach that utilizes biometrics,” stated David Henstock, Vice President of Identity Products at Visa, the world’s leader in digital payments. “Businesses benefit from reduced customer friction, lower abandonment rates and fewer chargebacks, while consumers benefit from better fraud prevention and faster payment during checkout.” 

The 2021 Identity Fraud Study from Javelin is now in its 18th year. 

Read the source articles and information from Pymnts.com, from CNETin Forbes and in a press release from Javelin Strategy & Research. 

Coinsmart. Beste Bitcoin-Börse in Europa
Source: https://www.aitrends.com/security/pandemic-spurred-identity-fraud-ai-and-biometrics-are-responding/

Continue Reading

Cyber Security

Pipeline Update: Biden Executive Order, DarkSide Detailed and Gas Bags

Avatar

Published

on

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Coinsmart. Beste Bitcoin-Börse in Europa
Source: https://threatpost.com/pipeline-biden-darkside-gas-bags/166112/

Continue Reading

Cyber Security

8 Cyber Security Practices Every Organization Adopt

Avatar

Published

on

Computer internet cyber security background. Cyber crime vector illustration. digital
Computer internet cyber security background. Cyber crime vector illustration. digital

Cyber security is such a pressing matter among companies, especially for large enterprises. Since there’s a lot to get from hacking large companies, they’re bound to experience cyber threats such as Trojans, malware, phishing, and ransomware regularly. But remember that there have been cases of cyberattacks on businesses with 100 or fewer employees, so small- and medium-sized companies are not exempt from this issue.

Regardless of the size of your company, consider strengthening your cyber security. There’s no better way to do that than by increasing the number of your security controls.

Security controls are countermeasures that prevent cyberattacks and minimize security risks on information, physical property, and, most importantly, your computer systems. For more information, you can read the article of Beryllium regarding security controls.

If you plan to establish newer security controls for your computer systems, you might want to consider looking into the following cyber security practices:

Table of Contents

Invest In Antivirus Software

A long time ago, you only had to worry about viruses, but that’s no longer the case. Today, there are all kinds of cyberthreats such as Trojan horses, worms, spyware, ransomware, and malware. If you want to be protected against these kinds of threats, you should consider investing in antivirus software. Antivirus software refers to any program designed to detect and eliminate various threats to a system, including those mentioned earlier.

Establish A Firewall

Antivirus software focuses on threats that may corrupt the programs inside a computer system. However, it doesn’t cover external threats; for those, you need a firewall. A firewall is a form of security control that helps keep external threats from breaching a computer system in the first place. You can think of it as the first line of defense against cyber threats. A firewall partnered with antivirus software can provide extremely powerful protection for any organization.

Utilize Multifactor Authentication

Usually, when logging into a computer system, you need to input your username and an authentication code, which is the password. But as previously said, cyberthreats have already evolved. It’s no longer enough to use a single authentication code, and that’s what multifactor authentication (MFA) is all about.

Basically, multifactor authentication is the process of requiring more than two codes from the user. So instead of a password alone, the system may also ask for a fingerprint, one-time passwords (OTPs), and more. This reduces the chances of hackers getting into the system.

Encourage Safe And Secure Passwords

Although you can use MFA, passwords are still the hardest authentication codes to crack. Hackers can steal OTPs with special software or even fake fingerprints. However, passwords are difficult to predict, perhaps due to their randomness.

If you’re going to implement MFA, you might as well make sure your employees have safe and secure passwords. You can start by giving them a few pointers, such as the following:

    • Use a password generator for the sake of randomness.
    • Avoid common characters.
    • Use a mix of characters.
    • Lengthen your password.

Monitor Third Parties’ Access To Data

Certain companies outsource some of their operations to third-party agencies. In doing so, they’re giving those firms access to confidential information.

If you’re currently in partnership with an outsourcing agency, you might want to consider monitoring them and limiting their access to data as well. After all, you can’t strengthen their cyber security even if you want to. If you do suffer from security breaches due to their negligence, your company would be on the losing side, so it’s better to be safe than sorry.

Check For Security Patches And Updates

Operating systems roll out security patches and updates every now and then. Your job is to apply those patches as soon as possible. Even if you leave your computer system outdated only for a few hours, there can be severe consequences.

Back Up All Data

Regardless of how secure your system is, there’s no guarantee that a hacker won’t get past your security controls. To minimize the damage from security breaches, companies must have a backup of all their data on a device not connected to the computer system. That way, if ever the computer system’s corrupted, you don’t have to worry about your data getting lost.

Educate Your Employees

Making mistakes is what makes one human. Some errors have minor consequences, but some can lead to huge problems. If your employees have access to the company’s system, the only thing hackers need to do is to take advantage of inexperienced employees. They can do this through phishing and other social engineering techniques.

If you don’t want your employees to bear all the blame for a security breach, try raising their awareness through training that teaches them about cyber security threats. Granted, it won’t guarantee 100% security, but it will reduce the chances for a cyberattack nonetheless.

Wrapping Up

Take note that every security control has a weakness. Your job is to ensure that those weaknesses are taken care of by other security controls. Take antivirus software and firewall, for example. Antivirus software deals with internal threats, while a firewall deals with external threats. If you want to strengthen your cyber security, you need to know how cyber security practices interact with each other, and this guide should have everything you need in that regard.

Coinsmart. Beste Bitcoin-Börse in Europa
Source: https://cybersguards.com/8-cyber-security-practices-every-organization-adopt/

Continue Reading
Aviation50 mins ago

India’s GoAir Renames Itself Go First With IPO Coming Soon

Blockchain2 hours ago

Bitwise Launches Crypto Industry Innovators ETF

Energy2 hours ago

Anti-block Additives Market to grow by USD 417.84 million|Key Drivers and Market Forecasts|17000+ Technavio Research Reports

Esports2 hours ago

PMPL South Asia Championship has been postponed

Esports2 hours ago

How to watch the PUBG Mobile Pro League Turkey S1 Finals

tesla-model-s-plaid-sets-a-new-1-4-mile-record-9-23-seconds.png
Cleantech2 hours ago

Tesla Model S Plaid Sets A New 1/4 Mile Record: 9.23 Seconds

Energy2 hours ago

Sabesp Announces 1Q21 Results

Business Insider2 hours ago

Indian Shares Seen Tad Lower At Open

Energy2 hours ago

Sabesp anuncia resultados do 1T21

Business Insider2 hours ago

Human Horizons Unveils 4 New HiPhi X Models at 2021 Shanghai Auto Show

Business Insider2 hours ago

Human Horizons Unveils 4 New HiPhi X Models at 2021 Shanghai Auto Show

Business Insider2 hours ago

CNFinance to Hold Annual General Meeting on June 7, 2021

Business Insider2 hours ago

Australian Market Notably Higher

Esports3 hours ago

Best moveset for Garchomp in Pokémon Go

Esports3 hours ago

How to watch the Clash Royale League May Monthly Final

Energy3 hours ago

Surge Copper gibt Explorationspläne für 2021 bekannt

Aviation3 hours ago

Qantas’ Cosmic Supermoon Flight Sells Out In 2.5 Minutes

Energy3 hours ago

Braskem arquiva formulário 20-F de 2020

Crowdfunding3 hours ago

Major UK Retailers and Business Organizations Commit to Cash-Friendly Pledge from Which?

Crowdfunding3 hours ago

Overfunding: Poland-Based Transport Tech Nevomo Surpasses €1 Million Equity Crowdfunding Target Through Seedrs Campaign

Esports3 hours ago

Raid Logging, new Catch Challenge discovered in Pokémon Go datamine

Crowdfunding3 hours ago

U.S. Fintech MovoCash Teams Up With Mastercard & Coastal Community Bank to Launch On-Demand Mobile Banking App

Cleantech3 hours ago

Waymo Self-Driving Taxi Goes Rogue, Blocking Traffic & Evading Capture

Blockchain News3 hours ago

MicroStrategy Acquires an Additional 271 Bitcoins for $15 Million

Crowdfunding3 hours ago

Pakistani Fintech SadaPay Shares How they Creatively Designed Payment Cards, Company Appoints New Head of Legal

Techcrunch3 hours ago

Fisker and Foxconn sign deal to build electric vehicles

Crowdfunding4 hours ago

Fintech Wealthfront Appoints Entrepreneur Jaleh Bisharat to its Board of Directors

Energy4 hours ago

Aero-Engine Coating Market to grow by USD 28.43 million|Key Drivers, Trends, and Market Forecasts|17000+ Technavio Research Reports

Esports4 hours ago

Riot Games drops VALORANT ranked queue hotfix to ‘tighten matchmaking skill’

Aviation4 hours ago

Eviation Is Closer To Launching Commercial Electric Airplane Service — Alice Gets An EPU

Trending