International Bank Cyber Heist via SWIFT...again...

Posted by Mohan Shamachar on Feb 22, 2018 9:37:47 AM

India’s City Union Bank, a small private lender, said on Feb 18, 2018 that “cyber criminals” had hacked its systems and transferred nearly $2 million through three unauthorized remittances to lenders overseas via the SWIFT financial platform. Chief Executive Officer N. Kamakodi called it a “conspiracy” involving multiple countries, and added the lender was still investigating how it had happened. The bank had discovered the three “fraudulent remittances,” which were sent via correspondent banks to accounts in Dubai, Turkey and China.

Read More

Topics: Hacking, compliance, risk management, Cyber Attacks

Taking the Pulse of Healthcare Cybersecurity in 2018

Posted by Eric Haruki on Feb 20, 2018 8:43:56 AM

Has the Healthcare industry truly learned anything from the 2015 Anthem breach?  

Judging by the results of the latest Security Scorecard report, the industry is still unprepared to face existing and known Cybersecurity risks, let alone counter emerging risks presented via expanded mobile and IoT threat vectors.  Security Scorecard collected data from 1,200+ Healthcare companies and 1) found how the industry performs relative to other major U.S. industries and 2) uncovered absolute weaknesses within Healthcare organizations.   

Read More

Topics: HIPAA, Healthcare Cybersecurity

Cyber attacks at the 2018 PyeongChang Winter Olympics

Posted by Mohan Shamachar on Feb 14, 2018 8:59:34 AM

A cyberattack paralyzed internet networks at the opening ceremony of the 2018 Pyeongchang Winter Olympics. Several U.S. cybersecurity firms have uncovered a computer virus named Olympic Destroyer that was likely used in an attack.

Read More

Topics: Hacking, Cyber Attacks, 2018 PyeongChang Winter Olympics

PIN on Glass - Intro, Benefits, Obstacles

Posted by Eric Haruki on Feb 12, 2018 1:41:51 PM

What is Pin on Glass - Background & PCI regulations

The PCI Security Standards Council (PCI SSC) recently announced a new security standard for consumer PIN entry on commercial off-the-shelf devices (COTS).  The new software based PIN Entry (SPoC) Standard provides a software-based approach (vs. entering a PIN on a “hardware” keypad) for securing PIN data entry on a diverse array of touchscreen COTS devices in the market today, such as a smartphones or tablets.

Read More

Topics: PCI, Pin on Glass

Blockchain and You - A primer on the underlying technology that makes Bitcoin possible

Posted by Eric Haruki on Jan 25, 2018 8:47:52 AM

 Intro

Given the media attention on Bitcoin’s daily value gyrations, it’s easy to be distracted away from the technology that makes the cryptocurrency (and its ilk) possible.  Today’s blog isn’t to debate the true value or future of Bitcoin, but rather to examine Blockchain, the protocol that enables Bitcoin’s “currency sovereignty”, along with a host of other possible applications.  

Read More

Topics: Blockchain Technology, Bitcoin

Meltdown & Spectre Follow Up - Specific PCI DSS Action Items

Posted by Eric Haruki on Jan 19, 2018 10:16:02 AM

Following up on our recent alert regarding the Meltdown and Spectre security flaws, RSI now provides subsequent information and recommendations to our clients and all organizations needing to adhere to PCI compliance requirements.

Read More

Topics: compliance, security, Meltdow & Spectre CPu Vulnerabilities

RSI Alert: Meltdown & Spectre CPU Security Flaws

Posted by Eric Haruki on Jan 11, 2018 2:53:48 PM

Bottom Line:

Researchers recently discovered two design flaws in nearly all CPUs manufactured by Intel, AMD, and ARM since 1995 that bypass system protections and potentially allow attackers to steal sensitive information from the memory of running applications.  Sensitive data such as passwords, browser cookies, emails, photos, documents, etc. contained in devices (PCs, servers, iphones, ipads) that use those CPUs are all potentially at risk.

Read More

Topics: compliance, security, Meltdow & Spectre CPu Vulnerabilities

PCI Requirement Changes in 2018

Posted by Eric Haruki on Jan 2, 2018 7:57:59 PM

Happy New Year!  

As we kick off 2018, there are a few significant PCI requirement changes to be aware of in the new year, particularly on these two dates: Feb 1 and June 30.

Source: PCI DSS v3.2

Read More

Topics: compliance, security, PCI, 2018 PCI Requirement Changes

Thank you from RSI & Happy New Year!

Posted by RSI on Dec 29, 2017 10:33:42 AM

As we wrap up an eventful 2017, all of us at RSI would like to convey our sincere thanks and appreciation for your partnership over the past year.  

Read More

Topics: compliance, security, risk management, Thank You, Newsletter, 2017

Medical Cyberattacks

Posted by Eric Haruki on Dec 18, 2017 12:56:37 PM

A first of its kind survey just released by the American Medical Association (AMA) revealed that a staggering 83% of US physicians have been the target of cyberattacks.  The majority of the 1,300 physicians surveyed in the Dec 2017 AMA report also cited dissatisfaction with the level of support coming from the federal government to counter cyber threats to their business and patient privacy.

Read More

Topics: compliance, cybercrime, security, risk management, Medical Cyberattacks, HIPAA

RSI is the nation's premier information security and compliance provider dedicated to helping organizations achieve risk-management success.

Subscribe to Email Updates

Recent Posts

Posts by Topic

see all