Online banking sessions are becoming lucrative targets for hackers and thieves. Dark Reading highlights a recent M86 Security report on attacks at a large UK bank. These sophisticated thieves use malware to hijack the browser on the banking customer's PC.
Once the victims logged onto their online banking accounts, the attackers captured account numbers and user credentials. They employed a man-in-the-browser attack that intercepted the victim's money transactions.
One way to prevent such attacks is by ensuring that all online banking is done from a trusted machine. New advances in technology allow trusted virtual machines to boot from a Secure USB stick. The online banking session can be conducted with a hardened browser and multi-factor authentication can be implemented to prevent unauthorized users.
With over $1 million stolen from this one banking institution alone, you can bet that similar attacks are targeting banking customers around the world.
Kanguru has just added new CopyLock software that protects DVD's from unauthorized copying, ripping and burning.
- Protect your intellectual property from unauthorized duplication
- Equip DVD movies with anti-burning and anti-ripping protection
- 1 license used per master, unlimited duplications of master
- Compatible with most DVD players
- Compatible with Kanguru DVD Duplicators w/HD
Dark Reading reports on two new data breach studies, the Ponemon Institute's Cost of Cyber Crime Study and a Digital Forensics Association report called The Leaking Vault.
Organizations are getting hit by at least one successful attack per week, and the annualized cost to their bottom lines from the attacks ranged from $1 million to $53 million per year, according to a newly published benchmark study of 45 U.S. organizations hit by data breaches.
The Connecticut State Teachers Retirement Board notified teachers last week that it's missing a USB flash drive containing personal data. Fortunately, proper security procedures appear to have been in place and the data on the device was encrypted.
"We have numerous controls in place so that financial transactions are properly authorized and executed and have enhanced our internal procedures over the physical control of flash drives," according to the letter, which was signed by Darlene Perez, administrator of the retirement board.
In Connecticut, data breach notifications are required under General Statute 36a-701(b). This law only applies to data that "has not been secured by encryption or by any other method or technology that renders the personal information unreadable or unusable".
Does your state have a data breach notification law?
The Kanguru Remote Management Console - Cloud Edition was recently reviewed at eSecurityPlanet.com. We'd like to thank Lisa Phifer for thoroughly testing the platform and giving us great feedback and suggestions. While this review provides a helpful tour of the platform, Kanguru is ready to help you evaluate for yourself and "try before you buy".
We would also like to respond to some of the feedback and give additional details where it might be helpful.
- To clarify pricing: KRMC Cloud retails for $19.95 per drive per year, with volume licensing options available. Optional BitDefender anti-virus renewal is $7.95 per drive per year.
- Linux and Mac OS compatibility will be available soon for Defender Elite flash drives. This functionality will be added to existing hardware through a secure remote software update.
- Automatic license assignment is available for centralized provisioning.
- The ability to deactivate and disable onboard AV without Kanguru's help will soon be available as a provisioning option.
- A number of the "wish items" are available in the more full-featured Enterprise version of KRMC.
The California Dept of Public Health has fined five hospitals for failing to prevent unauthorized access to patient's medical information.
CDPH assessed the penalties under new California legislation intended to protect the confidentiality of medical records. Under the law, an administrative penalty of $25,000 may be assessed against a medical facility for the breach of each patient's medical information. A penalty of up to $17,500 is added for each subsequent breach of each patient's medical information.
Penalties are also increasing at the Federal level thanks to last year's HITECH Act. Enforcement of the new legislation started earlier this year.
Kanguru is proud to announce a new partnership with OPTIMAL System-Beratung that will make Kanguru Secure USB Flash Drives available in Germany, Austria and Switzerland.
OPTIMAL, based in Aachen, Germany, has extensive experience distributing system management and security products. View today's press release (German) for additional details on the partnership.
Do your users take USB Flash Drive home with them? Are those drives encrypted? If not, they are taking a big risk when they get in the car.
Unsecured USB Drives are a big problem because:
A) Flash Drives get stolen from cars
B) Flash Drives tend to fall out of pockets in parking lots
These incidents are embarrasing and potentially expensive. Data breaches are increasingly subject to fines and penalties at the state and national level throughout North America and Europe.
GCN has the list of Top 10 "awfully bad" passwords.
Kanguru management tools, including the new KRMC Cloud, allow IT Managers to enforce strong passwords on USB Flash Drives. Prevent brute-force dictionary attacks and easy-to-guess passwords. Learn more about Kanguru password enforcement.
The Kanguru Remote Management Console (KRMC) for USB Flash Drives is now available as a Cloud-based subscription service.
KRMC is a powerful tool for managing Secure USB Drives throughout your organization. Lost drives can be remotely terminated, the help desk can remotely assist users, and all actions can be logged and audited for compliance. KRMC Enterprise Edition is currently being used by hospitals, banks, government agencies, and other large organizations to protect sensitive information. Now KRMC Cloud Edition is available for smaller organizations to get the same protection without investing in infrastructure.
Read the full announcement here.