If you were hit with credit card fraud this year, you are not alone. 15% of Americans surveyed by CompareCards, a LendingTree subsidiary, reported they had been victimized in 2017. Fraud can happen without losing your card. While card companies and banks are more alert to fraud than ever, cardholders are often the first to discover the fraudulent use of their card.
The two main types of card fraud ...
Continue Reading →
Tomorrow is World Password Day. WPD is observed on the first Thursday of May. So today would be a great day to take your passwords out to Valley Fair or a movie – wait a minute, that’s silly. You only can do that if you have all your password in a spiral notebook.
Password spraying is a new password exploit that is being used effectively against larger networks. It’s become enough of a problem to merit an alert from US-CERT entitled TA18-086A: Brute Force Attacks Conducted by Cyber Actors. Here’s how it works.
Typically, in a traditional brute-force password attack, the password cracking software runs a long list of every possible password against a system. ...
Continue Reading →
Over the last couple of weeks we have been taking a deeper dive into website security. If you have been using our articles to improve the security of your website, we are gratified.
Today we are adding some advanced security techniques to your defensive arsenal. Many of these solutions are specific to WordPress websites, but there are some that apply more globally. Some of these ideas may require some outside professional ...
Continue Reading →
If you have been following our series of articles on website security, we have shared information about how and why your website is an attractive target for cyber-criminals and other bad actors. Today we will give you some specific actions to take to secure your WordPress website. This information can be used on other types of websites too, ...
If you own a small business, you have a website. Would you be surprised to learn that your site is a top target of cyber-criminals? Most people believe their business is too small and insignificant to be interesting to attackers, but your website is valuable to them precisely because it is small.
What makes a small business website an attractive ...
Continue Reading →
A quick Saturday digest of cybersecurity news articles from other sources.In June 2015, a British boy named Kane Gamble—who was 15 years old then—targeted CIA heads and FBI directors and ...
Continue Reading →
In the aftermath of the recent stories about how the personal information of 50 million Facebook users was acquired and misused by the Trump Presidential campaign, many people are wondering whether they should delete their Facebook account. Others are just looking to see how they can more tightly secure their Facebook account from this sort of abuse. Fortunately, securing Facebook is relatively easy.
What would it be like if you could identify yourself and authenticate your account by the way you type? A Romanian company, TypingDNA, has created a Chrome extension that does just that.
I am a big advocate of two-factor authentication, but there are some problems. One of the three types of authentication is biometrics, which is “something you are.” NIST, in SP 800-63B ...
Continue Reading →
The problem with cybersecurity it that an attacker only needs to exploit a single vulnerability, while a defender needs to protect everything. Defense has evolved from perimeter defense, to defending all endpoints, to adding automated detection and prevention appliances, to universal threat management that looks at not just north/south traffic passing through the Internet gateway, but also east/west traffic across the LAN ...