The Government of Canada launched its public consultation to engage with Canadians on the evolving cybersecurity landscape.

Fraudsters’ methods continually evolve to counter new fraud protection measures and with personally identifiable information, they could steal a customer’s identity or create a synthetic identity. Once a fraudster captures this information, if they are able to access a customer account or open an account, it creates a nightmare scenario with significant repercussions for the business and the customer.

It’s essential that boards understand the organization’s cyber risks in order to successfully oversee overall company performance. CISOs and CSOs who can clearly convey cybersecurity to the board promotes better navigation of the organization in today’s uncertain cybersecurity world.

Not all security entrances work the same way. Their different capabilities, therefore, have an impact on an organization’s overall anti-tailgating strategy in terms of capital outlay, manpower needed, annual operating costs, ROI, and user education and preparation.

Ideally a penetration test should simulate a real world attack; in the real world, the attacker will always have some objective beyond “get into the network.”  No matter who the attacker is, they are motivated by something that they are trying to accomplish – and getting into the network is only one step in that process for the attacker.

One hundred billion spam emails are sent out each day. With such daunting numbers, what can businesses do to protect themselves, and their customers' data, from hackers? 

After the leak of the Panama Papers and a string of ransomware attacks, will these new developments lead to new priorities for lawyers, doctors and enterprises at large? Can financial losses or the damage to the reputation of a health system or law firm lead to a new sense of urgency to update accepted security practices and even codes of conduct with hospital data? Will regulatory bodies mandate more training for these two distinguished professions that have largely opted out of serious cybersecurity training up until now?