Recycle Your Phone, Sure, But Maybe Not Your Number

Recycle Your Phone, Sure, But Maybe Not Your Number

Many online services allow users to reset their passwords by clicking a link sent via SMS, and this unfortunately widespread practice has turned mobile phone numbers into de facto identity documents. Which ...
Verizon’s 2020 Payment Security Report: Focusing on Strategy

Verizon’s 2020 Payment Security Report: Focusing on Strategy

Last year, I wrote about the Verizon Payment Security Report saying it was ”Not Just for PCI.” Verizon liked that post enough to include its introduction in this year’s version. This recognition ...
webinar

Insights from Verizon’s COVID-19 Breach Landscape Report: Working From Home (WFH) leads to greater vulnerability

Verizon’s report highlights four specific cyber challenges that have emerged this year as a result of the pandemic: the continued increase in human error, the focus on stolen credential-related hacking, the spike ...
DBIR 2020 cover

Key trends and developments: 2020 Verizon Data Breach Investigation

Verizon has recently released its 2020 Data Breach Investigations Report, an analysis of over 150,000 security incidents to assess how the overall threat landscape is shifting and where and how bad actors ...

Developing a Data Protection Compliance Program – Verizon’s 9-5-4 Model

In a previous post, I wrote about my key take-aways from Verizon’s 2019 Payment Security Report. While it’s no surprise it was full of interesting and useful data, (Verizon’s yearly Data Breach ...
Closeup of young male theift in sweatshirt with hood transfering money from bills of stolen creding cards-2

The Rise of Insider Threats in Verizon’s DBIR

Each year, Verizon releases its Data Breach Investigation Report (DBIR). These reports evaluate the state of security each year, providing detailed statistics around leading vulnerabilities, which industries face the most breaches, and ...

Verizon’s 2019 Payment Security Report – Not Just for PCI

If you are responsible for cybersecurity or data protection in your organization, stop what you are doing and read this report. Actually, first, go patch your servers and applications and then read ...
Sale of 4 Million Stolen Cards Tied to Breaches at 4 Restaurant Chains

Sale of 4 Million Stolen Cards Tied to Breaches at 4 Restaurant Chains

On Nov. 23, one of the cybercrime underground's largest bazaars for buying and selling stolen payment card data announced the immediate availability of some four million freshly-hacked debit and credit cards. KrebsOnSecurity ...

PCI Pal urges businesses to remove ‘tick box’ mentality to ensure year-round PCI DSS compliance

With just 36.7% of organisations actively maintaining PCI DSS programmes in 2018, PCI Pal®, the secure payments provider to contact centres, is urging security and compliance bosses to embrace modern cloud strategies ...
Social-Engineer Newsletter Vol 09 – Issue 120

Social-Engineer Newsletter Vol 09 – Issue 120

Back to School: Education Through Security No more pencils, no more books, no more teachers’ dirty looks. We can all remember singing this as we skipped out of school on the last ...