Data security breaches
- June 18, 2014
The Target CISO's first week on the job comes as more retail breaches continue to pile up, highlighting the ongoing risk to such organizations.
- June 06, 2014
The mishandled eBay breach response effort showed that even enterprises with mature information security programs can fumble the ball.
- June 02, 2014
Threat intelligence can shine a light on important security holes.
- May 05, 2014
Experts say the resignation of Target CEO Gregg Steinhafel shows that executives at other companies must now take security seriously -- or else.
- April 22, 2014
The 2014 Verizon data breach report shows a big rise in Web application attacks, with CMS frameworks and user credentials the most likely targets.
- April 22, 2014
The Verizon DBIR 2014 shows that organizations should build a security strategy around industry-specific threats and incident patterns.
- April 18, 2014
Sophisticated malware was behind the Michaels breach that resulted in three million compromised payment cards, according to the crafts retailer.
- April 01, 2014
It remains unclear whether Trustwave could be held liable for Target's massive 2013 data breach in future litigation.
- March 26, 2014
The lawsuit cites Target for negligence in its massive data breach, and accuses Trustwave of not spotting the incident in a timely manner.
- March 13, 2014
Nearly three out of four say companies don't value data privacy and security, but experts say to see change, consumers must vote with their wallets.
- March 12, 2014
Veteran CISOs say Target's move to create and fill its CISO role is a good one, but that can't be the end of the Target security program overhaul.
- March 03, 2014
Sears is undergoing a data breach investigation for an unconfirmed incident, but speculation persists about false positives from the Target breach.
- February 28, 2014
Verizon is touting its largest-ever data set for the 2014 DBIR, but the gap is widening between when breaches happen and when they're discovered.
- February 07, 2014
Anomaly-based user activity monitoring is the only measure that can stop Target-like attacks that utilize stolen credentials, experts say.
- February 04, 2014
Expert Mike Chapple says a key detail in the Target breach suggests that the Fortune 500 retailer likely wasn't PCI DSS compliant.