Tag: introduces | Page 2

Permanent TSB introduces new security feature to block scam links – The Irish Times

October 12, 2023/in Mobile Security

Permanent TSB has launched a new in-app security tool that will help detect potential scam websites that are targeting the bank’s customers.

PTSB Protect will alert customers if they receive a text message containing a fraudulent link or block them from accessing a suspicious website on their mobile device.

It is an opt-in feature that will require users to allow it to access browser and text message content to work correctly. But it will work differently depending on what mobile platform customers are using, Android users will get an alert when a fraudulent website is found in a text message; iPhone users will have the content blocked, preventing access to the fake site.

PTSB Protect depends on a daily-updated list of fraudulent links that are posing as legitimate websites, trying to scoop up personal details. The links that are received or accessed on the customer’s phone will be compared to it, with content blocked or an alert generated when fake websites are detected.

The move is in response to an increasing problem with fraudulent payments. While extra security measures such as two-factor authentication have been implemented for card payments and access to online banking, fraudsters have become increasingly sophisticated in response.

According to figures from the Banking and Payments Federation of Ireland (BPFI), card fraud cost Irish consumers €85 million in 2022. That was an increase of almost 9 per cent on the year before.

“Attempts to defraud customers through criminal activity has increased significantly over the last number of years. Our own research suggests that 75 per cent of Irish consumers have experienced an attempt of fraud with 27 per cent falling victim to it. With scams getting more sophisticated, consumers need to continue to be on their guard at all times,” said PTSB chief operating officer Peter Vance. “By introducing PTSB Protect as a new line of defence to our mobile app, we can now directly identify the source of this activity and help protect our customers before their accounts can become compromised. Financial fraud is a significant threat and it is often being targeted at groups that may think they are less vulnerable.”

The feature has…

Source…

TXOne Networks introduces Stellar to secure OT/ICS devices from malware and abuse threats

July 6, 2023/in Computer Security

TXOne Networks announced its Stellar solution for defending operational stability. Employing TXOne Networks’ approach to security, Cyber-Physical System Detection and Response (CPSDR), Stellar supports the priorities of security and operations without either team having to sacrifice capability or performance.

Already protecting customers in semiconductors, manufacturing, oil and gas, automotive, pharmaceuticals and many other industries, Stellar offers seamless detection and prevention capabilities with complete oversight for legacy and new OT devices.

With intuitive management and informed automation, implementation is quick and simple while remaining non-impacting to resource-restricted devices.

The behavioral patterns of the OT devices and cyber-physical systems on plant floors are automatically established and continuously monitored. Even a single abnormal interaction demands scrutiny that common cybersecurity approaches borrowed from information technology (IT) are often not designed to recognize or address.

Stellar, however, analyses the baseline “fingerprints” of each individual device to reveal any unexpected behavior that threaten reliable and stable operations. The TXOne Networks solution then prevents the unexpected change and generates alerts to complete wider analysis. In this way, Stellar is not limited to combatting known threats; rather, by leveraging TXOne Networks’ OT-native CPSDR capabilities, Stellar’s stability-driven approach addresses unexpected system changes before operations can be impacted.

Stellar consists of an agent that works with an organization’s OT devices and a centralized management console that streamlines management and policy control.

A comprehensive OT-context-focused database, which TXOne Networks maintains in partnership with leading device original equipment manufacturers (OEMs), informs the accurate identification and preservation of more than 8,000 OT/industrial control system (ICS) applications, certificates and devices.

To balance the priorities of security and operations teams, Stellar delivers complete protection of operational environments and the OT devices that they comprise of, including:

Multi-method…

Source…

IEEE Computer Society Emerging Technology Fund Recipient Introduces Machine Learning Cybersecurity Benchmarks

May 5, 2023/in Computer Security

Presentation at The Eleventh International Conference on Learning Representations (ICLR) debuts new findings for end-to-end neural network Trojan removal techniques

LOS ALAMITOS, Calif., May 5, 2023 /PRNewswire/ — Today, at the virtual Backdoor Attacks and Defenses in Machine Learning (BANDS) workshop during The Eleventh International Conference on Learning Representations (ICLR), participants in the IEEE Trojan Removal Competition presented their findings and success rates at effectively and efficiently mitigating the effects of neural trojans while maintaining high performance. Evaluated on clean accuracy, poisoned accuracy, and attack success rate, the competition’s winning team from the Harbin Institute of Technology in Shenzhen, with set HZZQ Defense, formulated a highly effective solution, resulting in a 98.14% poisoned accuracy rate and only a 0.12% attack success rate. This group will be awarded the first-place prize of $5,000 USD.

“The IEEE Trojan Removal Competition is a fundamental solution to improve the trustworthy implementation of neural networks from implanted backdoors,” said Prof. Meikang Qiu, chair of IEEE Smart Computing Special Technical Committee (SCSTC) and full professor of Beacom College of Computer and Cyber Science at Dakota State University, Madison, S.D., U.S.A. He also was named the distinguished contributor of IEEE Computer Society in 2021. “This competition’s emphasis on Trojan Removal is vital because it encourages research and development efforts toward enhancing an underexplored but paramount issue.”

In 2022, IEEE CS established its Emerging Technology Fund, and for the first time, awarded $25,000 USD to IEEE SCSTC for the “Annual Competition on Emerging Issues of Data Security and Privacy (EDISP),” which yielded the IEEE Trojan Removal Competition (TRC ’22). The proposal offered a novel take on a cyber topic, because unlike most existing competitions that only focus on backdoor model detection, this competition encouraged participants to explore solutions that can enhance the security of neural networks. By developing general, effective, and efficient white box trojan removal techniques, participants have contributed to building trust in…

Source…

WhatsApp Introduces New Device Verification Feature to Prevent Account Takeover Attacks

April 13, 2023/in Mobile Security

Apr 13, 2023Ravie LakshmananMobile Security / Privacy

Popular instant messaging app WhatsApp on Thursday announced a new account verification feature that ensures that malware running on a user’s mobile device doesn’t impact their account.

“Mobile device malware is one of the biggest threats to people’s privacy and security today because it can take advantage of your phone without your permission and use your WhatsApp to send unwanted messages,” the Meta-owned company said in an announcement.

Called Device Verification, the security measure is designed to help prevent account takeover (ATO) attacks by blocking the threat actor’s connection and allowing the target to use the app without any interruption.

In other words, the goal is to deter attackers’ use of malware to steal authentication keys and hijack victim accounts, and subsequently impersonate them to distribute spam and phishing links.

This, in turn, is achieved by introducing a security-token that’s stored locally on the device, a cryptographic nonce to identify if a WhatsApp client is contacting the server to retrieve incoming messages, and an authentication-challenge that acts as an “invisible ping” from the server to a user’s device.

The client is required to send the security-token every time it connects to the server. The security-token, for its part, is updated every time it fetches an offline message from the server.

An authentication-challenge is considered a failure when the client responds to the challenge from a different device, indicating an anomalous connection originating from an attacker. This causes the connection to be blocked.

Should there be no response from the client, the process is retried a “few more times,” after which the connection will be blocked if the client still doesn’t respond.

WhatsApp said Device Verification has been rolled out to all Android users and that it’s in the process of being rolled out to iOS users.

The feature is part of a broader set of new enhancements that are designed to authenticate and verify users’ identities, including displaying alerts when there is an attempt to migrate a WhatsApp account from one device to another.

Also launched by WhatsApp is a “Key…

Source…

Tag Archive for: introduces