How Fake Emails Have Become A Real Threat
Health IT Outcomes |
Today’s impersonation-based attacks are highly sophisticated and extremely convincing. The emails come from what appear to be real people (or companies) you know and trust. The details are stunning, and the messages seem legitimate, largely because hackers have scoured the internet to learn specific details about you, the people in your circle, your job, and so much more. Scraps of personal information gleaned from online company bios, Twitter pages, and LinkedIn profiles are all a hacker really needs in order to spoof you.
Keys to Sound Investment for Financial Compliance Needs
International Banker |
Financial data is highly vulnerable and subject to sweeping data protections as a result. As more business tools become available, the costs rise. Rather than increasing investment in compliance, some companies forgo using new business tools. While that may ease costs and save time, it jeopardizes opportunities to grow the business and opens a competitive edge to other firms in the market. It also leaves the business exposed if employees take risks and work around restrictions. Users might be happier in the short term, but data and compliance are vulnerable in the long term.
Five Ways to Improve Compliance—And Not Feel Overwhelmed
Compliance is a constant struggle in the financial services sector. As soon as one audit is done another arises, locking brokers into an endless effort with hefty consequences for failure. And that effort evolves and expands with new communication tools.
Regulators Signal That New Data Archiving Rules Are Coming
Cybersecurity concerns are driving an evolution of financial regulations. Financial Industry Regulatory Authority CEO Robert Cook recently elaborated on what that evolution might look like. He believes self-regulators will need to be more vigilant about maintaining the client’s best interests, abiding by fiduciary requirements, and articulating customer relationships. To a certain extent, each of those issues is tied to cybersecurity.
5 ways smaller healthcare organizations can bolster security
Health Data Management |
The mergers and acquisition market is heating up in healthcare, both in the number and size of deals. As of late September 2017, there had been at least 561 hospital mergers since 2010, and four of the biggest last year involved entities with revenue of more than $1 billion. As the healthcare landscape continues to transform, M&A is likely to become a common occurrence and a ubiquitous strategy for smaller organizations.
Why Investors (and You) Need to Care About Cybersecurity
It makes sense that startups tend to underestimate cybersecurity. After all, they are small targets with limited amounts of data to steal. Many entrepreneurs believe that they are not even on hackers’ radar. That attitude is understandable, but unfortunately, it’s also inaccurate.
Protecting patients and providers from rising rates of healthcare fraud
Becker's Hospital Review |
Cybercriminals are overcoming their ethical aversions to targeting healthcare and instead are making the industry their primary target — largely because it’s a massive repository of protected health information or personally identifiable information. Regulations enacted in the Health Insurance Portability and Accountability Act are designed to protect this data, but today’s hackers are highly motivated.
Kick suspicious email attachments to the sandbox
Cybersecurity must simultaneously address two major challenges: identify, deflect, and mitigate every type of cyberattack that does (and will) exist; and provide ironclad security without slowing down operations or interrupting workflows. These priorities are in opposition and conspire to further complicate users' understanding of cybersecurity.
How to Feel Secure With Your Data in 2018
Implementing multiple layers of security is the common thread for today’s data security strategies. The layered approach has worked in some cases. However, other companies have still become vulnerable to hackers. In fact, numerous large global enterprises with significant technology budgets have fallen victim to hackers. It may make you wonder just how realistic it is to feel secure that your data is truly protected.
What new email security standards mean for federal agencies
Federal Times |
As of Jan. 15, all government agency domains are required to have Sender Policy Framework (SPF) and Domain-based Message Authentication, Reporting and Conformance (DMARC) records in place, according to an October 2017 order issued by the U.S. Department of Homeland Security — a major step in governmentwide cybersecurity.