Security News > 2021

While banks have been successful in reducing card fraud in recent years, a new and rising threat has emerged: synthetic identity fraud. There are a number of reasons why synthetic fraud is on the rise, but there are also actions banks and other financial institutions can take to prevent this growing trend from doing damage.

The study, which surveyed 150 IT decision makers across the U.S., found that 65% of respondents saw attempted attacks on their cloud environments, and 80% of those participants' cloud environments were successfully compromised. It quickly became evident that the reliability, availability, and scalability afforded by the cloud have become critical to keep organizations up and running, and cybercriminals are taking notice.

On average, enterprises maintain 19 different security tools, with only 22% of such tools serving as vital to primary security objectives, a ReliaQuest survey reveals. The report, which surveyed 400 IT and security decision makers at companies with more than 1,000 employees, also unveiled a lack of meaningful ROI metrics when reporting on security progress, as well as disparate opinions on objectives, tool effectiveness and security awareness amongst the organization between executives and operations on security teams.

A study of 117 organizations in the second half of 2020 showed that compliance department spending was projected to plateau in 2020 after several years of rapid growth, according to Gartner. "Like many business functions, compliance spending has been impacted by the coronavirus pandemic," said Brian Lee, managing vice president in the Gartner Legal and Compliance practice.

Data protection challenges are undermining organizations' abilities to execute digital transformation initiatives globally, according to the Veeam report, which has found that 58% of backups fail, leaving data unprotected. Against the backdrop of COVID-19 and ensuing economic uncertainty, which 40% of CXOs cite as the biggest threat to their organization's DX in the next 12 months, inadequate data protection and the challenges to business continuity posed by the pandemic are hindering organizations' initiatives to transform.

The City of London Police, which has responsibility for intellectual property crime across the UK, has warned universities and scientists not to use "Open science" site Sci-Hub. The site does not have permission to host or offer access to those papers, which is why it has in the past been shuttered by US courts for copyright breaches.

Cybersecurity vulnerabilities among credit unions and their vendors create the potential for large financial impacts to the credit union industry, according to a Black Kite report. The research analyzed the cybersecurity posture of 250 NCUA credit unions and 150 vendors commonly used by credit unions.

CTO.ai announced the launch of its serverless Kubernetes platform that makes it easy for developers to deploy and manage their cloud native applications. This powerful, yet easy-to-use, platform makes product delivery teams more efficient and eliminates the complexity experienced by developers when applications are deployed on top of a self-managed Kubernetes cluster.

DFRobot Gravity series is a set of professional open-source hardware modules. Till now, the Gravity series has been used by more than 1 million developers worldwide and used in a broad range of applications, like AI, environmental monitoring, IoT, smart homes, etc.

The Apache Software Foundation on Friday addressed a high severity vulnerability in Apache OFBiz that could have allowed an unauthenticated adversary to remotely seize control of the open-source enterprise resource planning system. Tracked as CVE-2021-26295, the flaw affects all versions of the software prior to 17.12.06 and employs an "Unsafe deserialization" as an attack vector to permit unauthorized remote attackers to execute arbitrary code on a server directly.