This Week in Security News

blog

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days.

Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back each Friday for highlights of the goings-on each week!

 

Deadline Day for U.S. Merchants to Switch to EMV Technology was Yesterday

October 1st ushered in a significant shift for merchants, banks, and consumers. It was deadline day for merchants in the U.S. to switch to EMV (Europay, MasterCard, and Visa) technology. This deadline means all credit cards must contain an embedded chip in addition to the magnetic stripe typically found in the back of the card.

Volkswagen’s Scandal Raises Questions of Open-Source Software for Better Automobile Cybersecurity

Could fallout from Volkswagen’s cheating lead to vehicle manufacturers open-sourcing millions of lines of code for the sake of enhanced automobile cybersecurity? Experts are discussing this. 

So Far this Year, 44% of CISOs in the Americas Have Experienced a “Delete and Destroy” Attack

As the anniversary of the massive Sony breach approaches, the magnitude and devastation of the hack continues to reverberate with the threats U.S. government agencies and enterprises consistently face. We should be cognizant that Sony was not alone. Our recent report polled more than 500 CISOs from Argentina to Canada and revealed an ominous phenomenon. 

The Gender Gap in the Cybersecurity Field is Now Wider

Women account for just 1 out of 10 cyber security professionals, as the gender gap widened over 2 years in a male-dominated field with a drastic workforce shortage, a survey showed. The survey also found pay inequalities.

Two New Point-of-Sale Threats Target SMBs in the U.S.

Our researchers have identified 2 new pieces of point-of-sale (PoS) malware that are affecting small and medium-sized businesses (SMBs) predominately in the U.S. Katrina has been advertised on underground forums since June 2015, and CenterPoS initially resembled GamaPoS since both are written in the Microsoft .NET Framework. Both are variants of popular PoS malware, Alina. 

Recent Audit Uncovered Basic Cybersecurity Flaws with Healthcare.Gov

An official audit uncovered slipshod cybersecurity practices in MIDAS, the system that stores millions of customer data under Obamacare. System flaws include 135 database vulnerabilities, 22 of which are classified as high risk. 

Cybersecurity Service Providers Who Rent out Cyber Talent are on the Rise

Renting makes more sense than hiring full-time cyber employees for more reasons than just overcoming the difficulty in finding them. In a single year, 2014, nearly one in five security professionals changed employers or employment status, according to Frost & Sullivan. 

Report Shows Cybersecurity Officials Feel Understaffed and Demoralized

The report found that, within government, officials tasked with maintaining the security of information gathered from American citizens feel understaffed, under-resourced, and demoralized in terms of their own prospects for career advancement.

Please add your thoughts in the comments below or follow me on Twitter; @ChristopherBudd.



from Trend Micro Simply Security http://ift.tt/1L0QYXC
via IFTTT