COVID-19 Resource Center: Latest News and Insights on the Novel Coronavirus and Cybersecurity Response

The COVID-19 pandemic has changed how we all live and work, creating the largest remote workforce in history. Never have topics such as identity and access management, device security and business resiliency been more critical. Use this COVID-19 Resource Center for the latest updates and opinions on the virus, its influence on the threat landscape and how global organisations can improve response.

Breach of COVID-19 Test Data Undermines Pandemic Response

Mathew J. Schwartz • September 15, 2020

What's one of the worst things that can happen during a pandemic? The answer is anything that gives people less reason to trust in their public health system to handle the crisis. Enter a data breach that has exposed personal information for everyone who's ever tested positive for the disease in Wales.

Fraud Management & Cybercrime

Zero Standing Privilege: How to Achieve it

Latest

Fraud Management & Cybercrime

Bipartisan Bill Looks to Create Secure Digital Identities

Akshaya Asokan • September 12, 2020

A bipartisan bill looks to take some initial steps toward creating nationwide digital identity standards that can address a range of security issues, including theft and fraud stemming from data breaches. The legislation is backed by the Better Identity Coalition.

Fraud Management & Cybercrime

Cybersecurity Leadership: The New Threat Landscape

Tom Field • September 10, 2020

Disruption, distortion and deterioration - these cybersecurity threats are amplified by the ongoing pandemic. Which poses the greatest threat and why? We asked this exclusive panel of CEOs and CISOs, and their responses might surprise you.

Fraud Management & Cybercrime

EMV Contactless Payment Card Flaw Facilitates PIN Bypass

Mathew J. Schwartz • September 8, 2020

A flaw in how contactless cards from Visa - and potentially other issuers - have implemented the EMV protocol can be abused to bypass PIN verification for high-value transactions, ETH Zurich researchers warn. But Visa says the exploits would be "impractical for fraudsters to employ" in real-world attacks.

Fraud Management & Cybercrime

How Payment Card Fraud Detection Must Change

Suparna Goswami • September 3, 2020

Some payment card fraud detection systems that rely on artificial intelligence are now less effective because of changes in consumers' habits during the COVID-19 pandemic, says Rene Perez of Jack Henry & Associates, who offers insights on needed adjustments.

Governance & Risk Management

COVID-19: Business Continuity Lessons Learned

Marianne Kolbasuk McGee • August 27, 2020

Many of the business continuity steps taken during the COVID-19 pandemic should be considered when crafting broader disaster recovery plans, such as those used after a hurricane, two risk management and compliance experts say.

Endpoint Security

4 Risk Mitigation Principles for the Remote Workforce

Anna Delaney • August 25, 2020

Jeff Schilling, global CISO at Teleperformance, a Paris-based company offering digitally integrated business services worldwide, describes four principles for mitigating security risks for the remote workforce during the COVID-19 pandemic.

Fraud Management & Cybercrime

Alert: Vishing Attacks Are Surging

Prajeet Nair • August 24, 2020

The FBI and CISA warn that hackers are increasingly using voice phishing, or vishing, to target employees who are working from home due to the COVID-19 pandemic, steal their credentials and other data and use the information to launch other attacks or to steal financial data.

Fraud Management & Cybercrime

Fraudsters Putting on the Ritz

Mathew J. Schwartz • August 17, 2020

Scammers have reportedly been putting one over on customers of the famous Ritz London, which says it is "aware of a potential data breach within our food and beverage reservation system, which may have compromised some of our clients' personal data." No payment card data was exposed, it says.

Fraud Management & Cybercrime

Analysis: Did Barclays Go Too Far in Monitoring Employees?

Anna Delaney • August 14, 2020

The latest edition of the ISMG Security Report analyzes why Barclays is being investigated for allegedly spying on its employees. Also featured: How the pandemic is affecting CISOs; an FBI assessment of nation-state threats to U.S. election.

Governance & Risk Management

Congressman Makes Case for National Patient ID

Marianne Kolbasuk McGee • August 11, 2020

Rep. Bill Foster, D-Ill., who has twice introduced a measure to pave the way for a national patient identifier, explains in an in-depth interview why he believes such an ID is essential.

Fraud Management & Cybercrime

Phishing Campaign Spoofs SBA Loan Offer

Prajeet Nair • August 10, 2020

Malwarebytes reports that a newly discovered phishing campaign is spoofing a U.S. Small Business Administration loan offer in an attempt to steal banking credentials and other personal data.

Governance & Risk Management

Barclays Faces Employee Spying Probe

Mathew J. Schwartz • August 10, 2020

The U.K.'s privacy watchdog is probing banking giant Barclays over its use of employee monitoring tools after the bank in February reportedly shifted from anonymized tracking to giving managers the ability to view data for individual employees.