Marriott's Starwood database breached, exposing data for 500 million guests

Security Digest Information security news and advice from TechTarget's network| December 5, 2018 FEATURED STORY Marriott discloses Starwood data breach affecting 500 million guests by Michae Heller, Senior Reporter Marriott International admitted to a Starwood data breach that began in 2014 and affects about 500 million customers. Experts are unsure about the GDPR implications. (SearchSecurity.com) Advertisement NEWS   SamSam ransomware actors charged, sanctioned by US government The FBI indicted two threat actors involved with the SamSam ransomware attacks while the US Treasury sanctioned two others for their role in exchanging Bitcoin earned from attacks. (SearchSecurity.com)   RSA Conference launches diversity and inclusion initiative Following the criticism of the last conference, RSA Conference started a diversity and inclusion initiative that, among many other changes, eliminates all-male panels. (SearchSecurity.com)   Ponemon study shows data valuation discrepancies in enterprises A new study from the Ponemon Institute shows enterprises are underestimating the value of their data, including critical and confidential information assets. (SearchSecurity.com)   Mitre enters product testing with Mitre ATT&CK framework The first round of evaluations using the Mitre ATT&CK framework has gone public, putting on display how different endpoint products detect advanced threat activities. (SearchSecurity.com)   Risk & Repeat: DeepMasterPrints spells trouble for biometrics This week's Risk & Repeat podcast looks at the future of biometric authentication after researchers unveiled a new approach that uses neural networks to bypass fingerprint scanners. (SearchSecurity.com)   New VirusTotal hash causes drop in antivirus detection rates Questions were raised about how antivirus vendors use the VirusTotal database after a researcher highlighted a significant drop in malware detection rates following an upload of a new VirusTotal hash. (SearchSecurity.com) EXPERT ADVICE   What are the security risks of third-party app stores? Unlike most apps developed in app stores, users can download Fortnite from Epic Games' website. Expert Michael Cobb explains the security risks of third-party app stores. (SearchSecurity.com)   How Google's cloud data deletion process can influence security policies Understanding the process behind Google's cloud data deletion can help influence stronger enterprise security policies. Expert Ed Moyle explains the process and how to use it. (SearchCloudSecurity.com)   Is network traffic monitoring still relevant today? An increase in DNS protocol variants has led to a higher demand for network traffic monitoring. The SANS Institute's Johannes Ullrich explains what this means for enterprises. (SearchSecurity.com)   Testing applications in production vs. non-production benefits To ensure proper application security testing, production and non-production systems should both be tested. In this tip, expert Kevin Beaver weighs the pros and cons. (SearchSecurity.com) About This E-Newsletter This e-newsletter is published by the TechTarget network. To unsubscribe from Security Digest, click here. Please note, this will not affect any other subscriptions you have signed up for. TechTarget Security Media Group, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com Copyright 2018 TechTarget. All rights reserved.