Cloud and Remote Endpoint Data Loss Prevention - Protect your Business

FinancialPost.com reported on March 24, 2011 that the security at the world’s largest travel website, TripAdvisor LLC* was breached by an “unauthorized third party” the previous weekend. The company’s email addresses belonging to TripAdvisor’s 20 million members were taken.

The travel website states the source of the vulnerability has been discovered and shut down. Fortunately, TripAdvisor does not collect credit card or financial information from its members; however, members may receive some unsolicited emails (spam) as a result of this incident.

This is not the first time that large online companies have had information taken from their systems. Last December, a group of hackers, known as “Gnosis,” broke into the Gawker Media user database and stole contact information; and popular online dating websites, PlentyOfFish and eHarmony, have also been victims of data theft in the last two months.

Some hackers have even higher ambitions than just collecting contact data. In early February, the operator of the Nasdaq Stock Exchange, the largest electronic trading platform in the United States, found “suspicious files” on its U.S. servers which led to the discovery of repeated attempts over the past year to access confidential information.

SafeCentral can protect your business and can secure an entire organization from malware including screen scrapers, key loggers and DNS redirects. SafeCentral protects a company’s VDI, SSL VPN and Cloud Service from malware that may be infecting local PCs used to access these secure areas.

To learn more, sign up for SafeCentral’s Enterprise Webinar on Cloud and Remote Endpoint Data Loss Prevention, on Wednesday, April 6, 2011 at 2:00 p.m. Hosted by SafeCentral’s CTO Ray Dickenson. The webinar will discuss the following

• New areas of risk for your customers
• How cybercriminals are getting access to retail and wholesale banking customers' accounts
• How you can proactively stop malicious attacks

SafeCentral’s WebProtection™ is a one-time install application that actually assumes that your machine is already infected with malware and ensures that the information on your computer stays secure. WebProtection™ interprets and intercepts over 5,000 discrete Windows commands and effectively blocks all potentially dangerous activities except those processes needed for the transaction. Learn more about how it actually works and how it keeps your information safe at www.SafeCentral.com.

*TripAdvisor is a worldwide forum where anyone can contribute hotel reviews. The 18 websites that operate in 27 countries under the TripAdvisor Media Group — which is owned by Expedia Inc.

Stopping Online Account Fraud

Online banking platforms have been implemented as a more efficient channel for banking transactions. However, these web-based applications are exposed over the Internet making their users an appealing target for mal-intended individuals.

Security for online banking primarily uses encryption—a form of invisible coding and firewalls to protect information from third parties. Typically, a password and personal identification number are required to login to an online bank account. Most banks offer additional protections, such as automatically logging off of their site after several minutes of inactivity or when you leave the site without logging out of your online bank account.

Reputable banks have security measures in place to secure both the personal and financial data stored in online accounts. However, data security is a serious concern for both banks and consumers, especially following a reported rise in identity theft over the past few years. Banks are constantly challenged to implement anti-fraud measures to protect financial accounts from a host of potential security breaches.

As malware and cybercrime attacks, increasingly targeting small to mid-size businesses, online account fraud is becoming a major problem for commercial banks. There have been discussions and even pending lawsuits to determine whether the responsibility for providing adequate security and loss recovery lies with the banks or the enterprises.

SafeCentral’s WebProtection™ for Commercial Banking authenticates participants and combines a locked-down desktop with a certified, encrypted connection to make online banking as safe as possible: 

• Actively protects desktop PC from malicious agents (such as keyloggers and screen scraping trojans) by intercepting the low-level Windows commands that allow those agents to function
• Rescues the user from the perils of the local network (Wi-Fi, man-in-the-middle attacks) by establishing an encrypted, certificate guaranteed link with a secure DNS server
• Routes the user to the bank’s site directly through secure DNS
• Provides visual cues with a locked down desktop, simplified browser, and cooperation with existing authentication methods (Site Key, certificates, etc.) to thwart phishing and other attacks
• Prevents application tampering by restricting application execution privileges
• Operates independently of signatures or databases, ensuring up-to-date protection at all times
• Integrates seamlessly with traditional desktop security measures (e.g., anti-virus, anti-spyware, etc.) and existing authentication schemes with little or no effort
• Can protect any type of financial online transaction, including banking, online trading, tax filing and the like

To learn more, sign up for SafeCentral’s Commercial Banking Webinar on Stopping Online Account Fraud, on Wednesday, March 23, 2011 at 2:00 p.m. Hosted by SafeCentral’s CTO Ray Dickenson. The webinar will discuss the following:

• New areas of risk for your customers
• How cybercriminals are getting access to retail and wholesale banking customers' accounts
• How you can proactively stop malicious attacks

SafeCentral’s WebProtection™ is a one-time install application that actually assumes that your machine is already infected with malware and ensures that the information on your computer stays secure. WebProtection™ interprets and intercepts over 5,000 discrete Windows commands and effectively blocks all potentially dangerous activities except those processes needed for the transaction. Learn more about how it actually works and how it keeps your information safe at www.SafeCentral.com.

How Secure Is Your Business?

With the onslaught of new malware that’s being created and distributed every day, new and inventive phishing schemes, and other ways cyber criminals have to get in to your endpoint data and accounts, how secure do you think your business is?

Small and Mid-size businesses that may not have a dedicated IT department can have a hard time keeping up with the latest happenings in online security, especially with the new trends of cloud computing and virtual environments.

We wanted to do our share to help and decided to write up a quick checklist to help you evaluate the security status of your business. The checklist should help you keep your documents and your personal account information secure.

Checklist:

1. Do you have policies in place for the following:

1. restricted critical data access to only the people who need it?
2. proper and safe disposal of any documents with critical or personal identifying information?
3. what types of network activities are allowed and which ones are prohibited?
4. secure email and other electronic communication?
5. network access by outside devices such as laptops or phones?
6. remote access for employees accessing the network from remote locations?

2. Have you educated your employees of the importance of password security and how to stay secure when conducting transactions online?

3. Do you have the following technologies in place:

1. Firewalls?
2. Secure wireless network?
3. Up to date anti-virus and malware protection?
4. Intrusion prevention?
5. Identity Management?
6. SafeCentral’s WebProtection™?

4. Do you have a contingency plan in the case of a data breach for who is responsible for handling it and how to contact your customers or anyone else affected by the breach?

5. Finally, we recommend that if you don’t have the skill set in place to properly secure your business information, hire a security specialist. It is a lot cheaper to secure your business properly than the cost of cleaning up a data breach when you consider both monetary repercussions and your reputation.

Another great way to check the status of your antivirus software, firewall protection, and the web security status of your computers is to download the WebAdvisor™. WebAdvisor™ is a free diagnostic tool that runs a complement to any existing security software and does not negatively impact the performance of your computer.

SafeCentral’s WebProtection™ is a one-time install application that actually assumes that your machine is already infected with malware and ensures that the information on your computer stays secure. WebProtection™ interprets and intercepts over 5,000 discrete Windows commands and effectively blocks all potentially dangerous activities except those processes needed for the transaction. Learn more about how it actually works and how it keeps your information safe at www.SafeCentral.com.