Accountability, B2B and Risk - Cyber Security Informer

The noodle soup of B2B IAM and third-party identities

Thales Cloud Protection & Licensing

FEBRUARY 25, 2025

The noodle soup of B2B IAM and third-party identities madhav Wed, 02/26/2025 - 07:29 Introduction: A messy bowl of terminology Identity management is no longer just about employees. B2B IAM The Hidden Value of Third-Party Identities. So why is B2B IAM such a tangled mess of terminology, and does it really matter?

B2B

B2B Risk Authentication Digital transformation

Third-Party Identities: The Weakest Link in Your Cybersecurity Supply Chain

Security Affairs

OCTOBER 28, 2024

A long supply chain adds third-party risks, as each partner’s security affects your own, making identity and access management more challenging. A recent report, B2B IAM – The Hidden Value of Third-Party Identities , indicates that external identities outnumber traditional employees by nearly two to one. It’s a win-win.

B2B

B2B Cybersecurity Risk Identity Theft

How B2B IAM helps build business agility

Thales Cloud Protection & Licensing

SEPTEMBER 16, 2024

How B2B IAM helps build business agility madhav Tue, 09/17/2024 - 04:25 In today’s interconnected business environment, the spotlight often shines on security, especially as organizations face increasing risks tied to human error. Effective business-to-business (B2B) relationships are essential for achieving operational agility.

B2B

B2B Marketing Manufacturing Passwords

MY TAKE: Peerlyst shares infosec intel; recognizes Last Watchdog as a top cybersecurity influencer

The Last Watchdog

OCTOBER 3, 2019

Started by infosec professionals, Peerlyst takes the characteristics of B2B communications we’ve become accustomed to on Twitter and LinkedIn and directs it toward cybersecurity. You can do so by submitting an email address or log in with your LinkedIn account. I’m honored to be included. It’s easy to participate on Peerlyst.

InfoSec

InfoSec B2B Cybersecurity Cyber Risk

B2B IAM in Agricultural Machinery: Building a Seamless and Secure Future for Manufacturers

Thales Cloud Protection & Licensing

SEPTEMBER 10, 2024

B2B IAM in Agricultural Machinery: Building a Seamless and Secure Future for Manufacturers madhav Tue, 09/10/2024 - 07:01 As global food demand continues to rise, agricultural machinery manufacturers face growing pressure to modernise and adopt sustainable practices.

B2B

B2B Manufacturing Marketing Data collection

Best Practices Q&A: The importance of articulating how cybersecurity can be a business enabler

The Last Watchdog

APRIL 1, 2024

These key capabilities fall under the four competencies of oversight, process risk management, technology risk management, and human risk management. We operate in a world today where your business is the risk and how you adapt is the opportunity. There is also a benefit of stronger business partnerships.

Cybersecurity

Cybersecurity CISO B2B Risk

GUEST ESSAY: The case for network defenders to focus on leading — not lagging — indicators

The Last Watchdog

JANUARY 17, 2022

When it comes to sales targets there is a correlation between increased sales to shareholder value creation, but closing sales in B2B transactions can be time consuming. Minimum adherence to security requirements policy, based on an application’s inherent risk profile, can lead to reduction in risk vulnerabilities.

CISO

CISO Software B2B Marketing

News alert: Memcyco report reveals only 6% of brands can stop digital impersonation fraud

The Last Watchdog

MAY 21, 2024

The creation of fake websites used for phishing-related attacks (which are a top cause of account takeover (ATO)) is a growing problem that has earned cybercriminals an astonishing $1 billion+ in 2023 alone, according to data from the U.S. Federal Trade Commission. That’s more than three times the amount reported stolen in 2020.

Scams

Scams B2C B2B Media

Q&A: How your typing and screen swiping nuances can verify your identity

The Last Watchdog

AUGUST 6, 2018

Compromised accounts came into play in data breaches of Uber, Tesla, Gemalto, Aviva, Equifax and many others. And with “digital transformation” accelerating, there are so many more weakly-secured login accounts just waiting to be maliciously manipulated. Curcio: First and foremost, all privileged accounts should leverage MFA.

Digital transformation

Digital transformation Passwords Data breaches Authentication

Using social media as a tool to share knowledge on day-to-day Cybersecurity risks

CyberSecurity Insiders

JUNE 8, 2023

When most people think about social media and cybersecurity, they typically think about hackers taking over Instagram accounts or Facebook Messenger scammers taking private information. The Identity Theft Resource Center’s 2022 Consumer Impact Report revealed that social media account takeovers have grown by 1,000% in one year.

Media

Media Risk Cybersecurity Education

What’s wrong with automotive mobile apps?

SecureList

MAY 25, 2022

So, let’s try to get a better understanding of what these apps are, why they appear on the market, and the risks they pose. The risk is obvious: third parties get the ability, for example, to unlock the car or track all its movements on behalf of the car owner. First public notice about the incident involving Tesla.

Mobile

Mobile B2B Manufacturing Passwords

Q&A: SolarWinds, Mimecast hacks portend intensified third-party, supply-chain compromises

The Last Watchdog

JANUARY 25, 2021

SolarWinds and Mimecast are long-established, well-respected B2B suppliers of essential business software embedded far-and-wide in company networks. Dornbush: The big takeaway is that third-party risk is real and not likely to be measurable via a standard form or checklist. Businesses are target-able entities.

Hacking

Hacking B2B Authentication Software

Access Control: The 5 Single Sign-On Benefits

IT Security Guru

JUNE 30, 2021

Working from home resulted in additional risk management and security challenges for employees, executive leadership, and information technology (IT) teams. In other words, users sign in to one account, one single time, and automatically gain access to multiple applications. provisioning and de-provisioning a single account).

Password Management

Password Management Passwords VPN B2C

ChatGPT at work: how chatbots help employees, but threaten business

SecureList

OCTOBER 13, 2023

The user creates an account and gains access to the bot. Account hacking. Account security is always a priority issue. It is quite possible for attackers to gain access to employee accounts — and the data in them — for example, through phishing attacks or credential stuffing. Malicious client.

Accountability

Accountability B2B Risk Hacking

Global CRM Provider Exposed Millions of Clients’ Files Online

Security Affairs

OCTOBER 5, 2023

Researcher discovered that global B2B CRM provider Really Simple Systems exposed online a non-password-protected database with million records. Upon further research, records indicated that the database belonged to global B2B CRM provider Really Simple Systems. Jeremiah finds and reports data breaches and vulnerabilities.

Data breaches

Data breaches B2B Education Identity Theft

Insider Threat: Employees indicted for stealing $88 million of license keys

Malwarebytes

JULY 4, 2022

Avaya is a business-to-business (B2B) communications company catering to small- and medium-sized businesses. Pearce also hijacked accounts of former Avaya employees to generate more license keys and draw suspicion away from him. Dani Pearce allegedly took the accountant and financial manager role in their illegal business operation.

B2B

B2B Accountability Software Risk

Masterclass in CIAM for Insurance: Balancing Security, Experience, and Consent

IT Security Guru

AUGUST 7, 2024

The Legacy Risks Many insurance companies are still bogged down with legacy solutions which hamper innovation and undermine customer trust. CIAM platforms help customers enforce their digital rights by providing easy-to-use tools for data deletion and account closure.

Insurance

Insurance Data collection Authentication Technology

The Four Keys to Achieving an Optimal Application Experience

CyberSecurity Insiders

JANUARY 6, 2023

The fact is that every second of lag time on an online banking app risks alienating the consumer. Every glitch on an e-commerce app risks sending the consumer to a competitor. The markets are simply too competitive to risk inconveniencing the consumer in any way. This oversight has been to their detriment.

Marketing

Marketing B2B Surveillance Risk

Help Your Security Team Sleep Better at Night by Reducing False Positives

CyberSecurity Insiders

APRIL 9, 2021

As we deploy more and more Web applications, we run the risk of overwhelming our security teams if we don’t give them the tools they need. You are likely using Web APIs to support both B2B communication and the mobile applications that users increasingly rely on in lieu of a traditional web browser.

B2B

B2B Mobile Internet Internet

Dodging the Cyber Bullet: Early Signs of a Ransomware Attack

IT Security Guru

AUGUST 19, 2024

Lateral phishing emails from within a business’s domain indicate a successful account takeover, allowing bad actors to target additional accounts and sensitive data. Her experience spans B2B tech, with a lot of focus on cybersecurity, cloud, enterprise, digital transformation, and data centre.

Ransomware

Ransomware Backups Social Engineering Manufacturing

The Impact of Remote Work and Cloud Migrations on Security Perimeters

Security Affairs

MAY 27, 2024

Storing data in the cloud also comes with a heightened risk of data breaches. While these trends offer numerous benefits, they also introduce new challenges and risks. Her experience spans B2B tech, with a lot of focus on cybersecurity, cloud, enterprise, digital transformation, and data centre.

Cloud Migration

Cloud Migration B2B Digital transformation Data breaches

IAM Predictions for 2025: Identity as the Linchpin of Business Resilience

Thales Cloud Protection & Licensing

DECEMBER 18, 2024

In parallel, the rapid adoption of generative AI technologies brought not only unprecedented productivity gains but also complex risks, with only 11% of businesses admitting they have implemented proper safeguards for AI-driven systems. However, these tools also lead to ever more realistic identity fakes that fraudulently open new accounts.

B2B

B2B Data privacy Financial Services Banking

Kaseya Breach Underscores Vulnerability of IT Management Tools

eSecurity Planet

JULY 6, 2021

Like SolarWinds, both companies serve large B2B audiences, where Kaseya’s products produce hundreds of end products and services. A reliance on built-in trust between systems and excessive user privileges is a risk that a list of ingredients can’t fix. Managing supply chain risk. Preparing for Criminal Enterprise.

Ransomware

Ransomware Software B2B System Administration

1,859 Android and iOS apps were containing hard-coded Amazon AWS credentials

Security Affairs

SEPTEMBER 1, 2022

The researchers also provided details about some case studies, such as an unnamed B2B company offering an intranet and communication platform that also provided a mobile software development kit (SDK) to its customers. The issue could allow a third party to achieve full read/write root account credentials. . Pierluigi Paganini.

B2B

B2B Banking Authentication Mobile

Data Breach: Millions of Phone Numbers, Recordings, and Call Logs Compromised in Ringostat Data Leak

Security Affairs

MARCH 3, 2021

What Are the Risks and How to Protect Yourself. Identity Theft: Leaked personally identifiable information (PIIs) can be used to access accounts on other websites, leading to further information leaks and outright identity theft. If found by bad actors, this information can lead to severe financial loss for many.

Data breaches

Data breaches Identity Theft Phishing B2B

The Evolution of API: From Commerce to Cloud

Security Affairs

AUGUST 11, 2023

And while this development has been crucial to getting us to where we are today, there are some risks that come with the API economy. On the one hand security teams tend to have a limited understanding of which APIs expose personally identifiable information, which puts customer and employer data at risk.

B2B

B2B Internet Internet Marketing

Explaining User and Entity Behavior Analytics: Enhanced Cybersecurity Through UEBA

CyberSecurity Insiders

APRIL 27, 2022

However, ML tech can take some time to fine-tune correctly, due to the risk of returning false positives of suspicious behavior. This means security analysts can focus on high-risk events instead of manually analyzing the large bulk of network logs. Detect compromised accounts. Automate risk management. Conclusion.

Cybersecurity

Cybersecurity Threat Detection Marketing B2B

What Is a SaaS Security Checklist? Tips & Free Template

eSecurity Planet

APRIL 9, 2024

These checklists include security standards and best practices for SaaS and cloud applications, and B2B SaaS providers use them to guarantee that their solutions match customer security standards. Do you understand the potential risks connected with each provider’s integration points?

Risk

Risk Threat Detection Data breaches Encryption

Multi-Factor Authentication Best Practices & Solutions

eSecurity Planet

OCTOBER 5, 2021

In fact, 62 percent of professionals admitted to sharing passwords over text messages or email and 46 percent said their company shares passwords for accounts used by multiple people. With more employees working from home, their data was more at risk from weaker networks and personal devices. Identity access management.

Authentication

Authentication Passwords Mobile Accountability

McAfee Enterprise & FireEye 2022 Threat Predictions

McAfee

OCTOBER 26, 2021

Equally, direct messages have been used by groups to take control over influencer accounts to promote messaging of their own. Threat actors pay attention to enterprise statistics and trends, identifying services and applications offering increased risk potential. Container Risks: Increasing attacks targeting vulnerable applications.

Cybercrime

Cybercrime Ransomware Risk B2C

Don’t Drown your Security Team in Low-Value WAF Alerts

CyberSecurity Insiders

APRIL 6, 2021

A WAF that can’t keep up can keep you from achieving your business objectives, reduce productivity, and expose you to business continuity risks. Web APIs are increasingly used to support both B2B communication and the mobile applications that users increasingly rely on in lieu of a traditional web browser. You need something better.

B2B

B2B Mobile Internet Internet

IAM Predictions for 2025: Identity as the Linchpin of Business Resilience

Security Boulevard

DECEMBER 18, 2024

In parallel, the rapid adoption of generative AI technologies brought not only unprecedented productivity gains but also complex risks, with only 11% of businesses admitting they have implemented proper safeguards for AI-driven systems. However, these tools also lead to ever more realistic identity fakes that fraudulently open new accounts.

B2B

B2B Data privacy Financial Services Banking

Taking Control Online: Ensuring Awareness of Data Usage and Consent

Security Affairs

SEPTEMBER 17, 2024

Consumers want detailed control over their information and the flexibility to adjust their consent based on various factors, such as the context of the interaction or perceived risks of data misuse. Her experience spans B2B tech, with a lot of focus on cybersecurity, cloud, enterprise, digital transformation, and data centers.

Data collection

Data collection Data privacy B2B Digital transformation

Financial Supervision in a Digital World

Thales Cloud Protection & Licensing

JANUARY 15, 2024

Due to the nature of the information that is shared, processes need to be highly secure, and risks need to be mitigated. What about sharing accounts and login credentials? We also use strong user authentication, based on risk. Inefficient login portals We see a lot of financial supervisors struggling with these new challenges.

Banking

Banking Unstructured Data B2B Financial Services

The State of Blockchain Applications in Cybersecurity

eSecurity Planet

JULY 28, 2021

Mitigating risk of false key propagation and identity theft. Risk of compromise. Given the inherent risk and volatility of the cryptocurrency market, it’s fair to say most enterprises are sitting this one out. Cryptocurrency Risks for Coins. More robust security for Domain Name Systems (DNS). Block Armour. Storage limits.

Cybersecurity

Cybersecurity Cryptocurrency Technology Energy and Utilities

What the Email Security Landscape Looks Like in 2023

Security Affairs

MAY 12, 2023

The prevalence of phishing attacks has been bolstered by a number of risk factors, including: Insider threats whereby disgruntled or compromised employees leverage their position in the company to get access to certain items. 3 Small businesses are at risk. Now they can hire a team to do it for them.

Phishing

Phishing Social Engineering Small Business B2B

Fixing Data Breaches Part 2: Data Ownership & Minimisation

Troy Hunt

DECEMBER 19, 2017

The site asks you for some personal information when you create the account which it then stores in a database. I wouldn't go so far as to propose that we should no longer have them, but clearly the risk they've now exposed 145.5 Who now owns that data? The cat site? And this is where more regulation is required.

Data breaches

Data breaches Data collection B2B Mobile

US State Privacy Update: California AG Targets Financial Incentives For CCPA Enforcement

Privacy and Cybersecurity Law

FEBRUARY 18, 2022

And as organizations move into 2023, unless otherwise exempted, the notice of financial incentive requirements would apply to employees and B2B data, significantly expanding the scope of the laws reach. And does the program risk creating a claim of discrimination if the individual opts-out or deletes their data? How is the data valued?

B2B

B2B Retail Marketing Consumer Protection

eCommerce Payment System – How to Choose the Best One for Your eCommerce Startup?

Hacker Combat

AUGUST 11, 2020

However, it is always easy to find put how do you spend a certain sum just be checking your financial or accounting app. Yes, precisely because it has become the safest way to use money without physical health risks. However, electronic payments protect you, your staff, and your customers from infection risks. Bank Transfers.

eCommerce

eCommerce Banking Mobile B2B

CIAM Build versus Buy

Thales Cloud Protection & Licensing

AUGUST 7, 2024

You may also want to match the user account with internal data and validate it against a third-party register. What’s at risk when you’re taking the DIY approach When you start developing a Customer Identity and Access (CIAM) strategy, the Do-It-Yourself approach might look interesting - but there are risks you need to watch out for.

Marketing

Marketing Digital transformation Data privacy Risk

CIAM Build versus Buy

Security Boulevard

AUGUST 8, 2024

You may also want to match the user account with internal data and validate it against a third-party register. What’s at risk when you’re taking the DIY approach When you start developing a Customer Identity and Access (CIAM) strategy, the Do-It-Yourself approach might look interesting - but there are risks you need to watch out for.

Marketing

Marketing Digital transformation Data privacy Risk

Best Secure Remote Access Software of 2025

eSecurity Planet

OCTOBER 9, 2024

per year for the first year Personal key passwords, access via browser, remote reboot Table of Contents Toggle Risks of Using Remote Access Software How Can I Access Another Computer Remotely for Free? However, this software can have some risks if not properly implemented. Provider Starting Price Notable Features RustDesk $19.90

Software

Software Mobile Authentication Risk

The story of the year: ransomware in the headlines

SecureList

DECEMBER 7, 2021

This is the era of big game hunting: high-profile B2B targets, big ransom demands, sophisticated attacks, highly sensitive data being stolen, and major fallout from a successful attack. The former target both B2B and B2C, while the latter target primarily the B2C sector. billion in transfers over the last three years.

Ransomware

Ransomware B2B B2C Government

‘If you wait for government, you’re going to be waiting a long time’: A look at Biden’s cyber funding

SC Magazine

FEBRUARY 19, 2021

The difference between big companies and small companies is big companies have the resources, they understand the risk that they’re facing, then they mitigate that risk or they invest in mitigating that risk by hiring either smart people, deploying technology, implementing best practices and process.

Government

Government B2B Risk Technology

The noodle soup of B2B IAM and third-party identities

Third-Party Identities: The Weakest Link in Your Cybersecurity Supply Chain

Trending Sources

How B2B IAM helps build business agility

MY TAKE: Peerlyst shares infosec intel; recognizes Last Watchdog as a top cybersecurity influencer

B2B IAM in Agricultural Machinery: Building a Seamless and Secure Future for Manufacturers

Best Practices Q&A: The importance of articulating how cybersecurity can be a business enabler

GUEST ESSAY: The case for network defenders to focus on leading — not lagging — indicators

News alert: Memcyco report reveals only 6% of brands can stop digital impersonation fraud

Q&A: How your typing and screen swiping nuances can verify your identity

Using social media as a tool to share knowledge on day-to-day Cybersecurity risks

What’s wrong with automotive mobile apps?

Q&A: SolarWinds, Mimecast hacks portend intensified third-party, supply-chain compromises

Access Control: The 5 Single Sign-On Benefits

ChatGPT at work: how chatbots help employees, but threaten business

Global CRM Provider Exposed Millions of Clients’ Files Online

Insider Threat: Employees indicted for stealing $88 million of license keys

Masterclass in CIAM for Insurance: Balancing Security, Experience, and Consent

The Four Keys to Achieving an Optimal Application Experience

Help Your Security Team Sleep Better at Night by Reducing False Positives

Dodging the Cyber Bullet: Early Signs of a Ransomware Attack

The Impact of Remote Work and Cloud Migrations on Security Perimeters

IAM Predictions for 2025: Identity as the Linchpin of Business Resilience

Kaseya Breach Underscores Vulnerability of IT Management Tools

1,859 Android and iOS apps were containing hard-coded Amazon AWS credentials

Data Breach: Millions of Phone Numbers, Recordings, and Call Logs Compromised in Ringostat Data Leak

The Evolution of API: From Commerce to Cloud

Explaining User and Entity Behavior Analytics: Enhanced Cybersecurity Through UEBA

What Is a SaaS Security Checklist? Tips & Free Template

Multi-Factor Authentication Best Practices & Solutions

McAfee Enterprise & FireEye 2022 Threat Predictions

Don’t Drown your Security Team in Low-Value WAF Alerts

IAM Predictions for 2025: Identity as the Linchpin of Business Resilience

Taking Control Online: Ensuring Awareness of Data Usage and Consent

Financial Supervision in a Digital World

The State of Blockchain Applications in Cybersecurity

What the Email Security Landscape Looks Like in 2023

Fixing Data Breaches Part 2: Data Ownership & Minimisation

US State Privacy Update: California AG Targets Financial Incentives For CCPA Enforcement

eCommerce Payment System – How to Choose the Best One for Your eCommerce Startup?

CIAM Build versus Buy

CIAM Build versus Buy

Best Secure Remote Access Software of 2025

The story of the year: ransomware in the headlines

‘If you wait for government, you’re going to be waiting a long time’: A look at Biden’s cyber funding

Stay Connected