REUTERS/Kacper Pempel/FilesBy Huw Jones and Tom BerginLONDON Reuters - The SWIFT secure messaging service that underpins international banking said it plans to launch a new security program as it fights to rebuild its reputation in the wake of the Bangladesh Bank heist.The Society for Worldwide Interbank Financial Telecommunication SWIFT s chief executive, Gottfried Leibbrandt will tell a financial services conference in Brussels that SWIFT will launch a five-point plan later this week.SWIFT wants banks to drastically improve information sharing, to toughen up security procedures around SWIFT and to increase their use of software that could spot fraudulent payments.Leibbrandt will again defend SWIFT s role, saying the hacks happened primarily because of failures at users.Users frequently do not inform SWIFT of breaches of their SWIFT systems and even now, the co-operative has not proposed any sanctions for clients who fail to pass on information, which SWIFT itself says is key to stopping future attacks.Some critics say SWIFT should also be more active in auditing clients and be ready to cut off members whose security is not up to scratch.
The developers behind the Tor Project have created a system where computers collaborate to create a truly random number to make communications harder to crackThe group of Tor developers are improving the Onion routing protocol by developing their very own random number generator to make anonymous communications sent over Tor harder to crack.The Tor anonymity network named after The Onion Router project consists of software that anonymises and redirects internet traffic through a worldwide network of relays, comprised of volunteers who set up their computers as Tor exit nodes, in order to offer at least three layers of encryption, whereby the source and the final destination of the Tor path is completely anonymised.The private key is kept secret and needs to be generated from a source of randomness to keep the message secure.Updated Onion protocol will feature 55-character onion addressesPolice in Seattle have raided a couple's home looking for child pornography, because they run an exit node for the Tor anonymity networkAt a recent hackathon in Montreal, Canada, a group of Tor developers decided to design a system that enabled random number generation on the Tor network."Tor developers finished implementing the protocol several months ago, and since then we've been reviewing, auditing, and testing the code," the Tor Project wrote in a blog post."For example, we instructed our testing Tor nodes to abort at crucial protocol moments, and come back in the worst time possible ways, just to stress test the system.
Your passwords depend on your fallible human memory, and with the increasing complexity and quantity of passwords, it s almost impossible for us to remember all of your passwords.And don t forget – which you already probably have – about all of those websites or apps that you ve only ever log into once and the number of accounts you have really start adding up!Last year, Dashlane conducted a study about password overload with anonymous data from more than 20,000 users of its email-auditing tool, Dashlane Inbox Scan, and learned that the average number of accounts registered to one email address is 130 in the United States, 118 in the United Kingdom, 95 in France, and 92 for the rest of the world.These include sites that still accept the most commonly used passwords online, sites that will still allow you to access your account after 10 failed login attempts, that don t require case-sensitive or alphanumeric passwords, etc.These high-profile security breaches were responsible for compromising millions of users passwords and the data.One thing you can do to protect your passwords and data: Use a trusted, secure password manager.
At some point or another, anyone handling paid search at an agency has likely managed a client that had multiple accounts.Before concerns are raised at the idea of double-serving, let me explain that there are a lot of different legitimate reasons for why and how this can happen, none of which promote double-serving or are meant to game the system.Here are some of the scenarios that could cause a client to go this route:separated search and display accounts;an account for each different product;a brand account and a non-brand account; oraccounts for different geographies.There are pros and cons of splitting things into multiple accounts — a discussion of which could be its own post — but one of the previous cons was that it required you to place a ton of tags.Some opinions expressed in this article may be those of a guest author and not necessarily Marketing Land.About The AuthorAmy has built and implemented multi-channel digital strategies for a variety of companies spanning several industry verticals from start-ups and small businesses to Fortune 500 and global organizations.
"Advertising agencies in the US have been systematically padding their profits by using non-transparent practices such as taking rebates from media companies and not disclosing them to clients, according to the Association of National Advertisers ANA, which released the highly-anticipated findings of an eight-month investigation into the sector on Tuesday.The ANA — which represents the biggest global brands including Procter & Gamble, L'Oréal, Coca-Cola, Toyota, and Apple — said in its report that "numerous non transparent business practices" were "pervasive" in the media ad-buying ecosystem.The 58-page report, which compiles the findings of investigations firm K2, does not name names, but it suggests non-transparent business practice is widespread in the US media buying industry.The findings will have huge implications on the advertising agency industry, which is dominated by six holding companies: WPP, Omnicom, Publicis Groupe, Interpublic Group, Dentsu Aegis, and Havas.Markups on media sold through principal transactions ranged from approximately 30 percent to 90 percent, and media buyers were sometimes pressured or incentivized by their agency holding companies to direct client spend to this media, regardless of whether such purchases were in the clients best interests.Dual rate cards in which agencies and holding companies negotiated separate rates with media suppliers when acting as principals and as agents.Non-transparent business practices in the U.S. market resulting from agencies holding equity stakes in media suppliers.The ANA said the study found non transparent practices were found to exist "across the spectrum of agency media entities" as well as across digital, print, out of home, and television media.The impactAs we detailed last month, at the very least, the report may lead to many marketers asking to renegotiate their contracts with their current agency.Some marketers may look to appoint auditing firms to assess whether their current agency is providing them value for money — potentially getting media money refunded if it was found not to be spent in their best interests.It could cause some marketers to want to switch agencies — or take their media-buying in-house.There's a slight possibility some brands could even sue their agencies if they are found to be in breach of contract.A survey it had commissioned the prior year, conducted by Forrester, revealed there was growing concern amongst marketers about whether they were receiving full transparency from their agencies about how their money was being spent.In October 2015, the ANA appointed two firms to investigate the issue.One of those firms was K2, an investigative consultancy staffed by former FBI agents and founded by "father-son detective duo" Jules and Jeremy Kroll.Jules Kroll founded the Kroll Inc. private security and intelligence empire.But in the near term, the ANA suggests marketers re-examine all their media agency contracts and "meticulously review" all the terms and conditions.The ANA also recommends marketers implement media management training across their businesses, and assess whether contract terms permit them to "follow the money" by having full accountability for every dollar they invest with a media agency — allowing their audit rights to cover not only the media agency, but the holding company, and ever affiliated ad company that touches their business.How the agency groups have reactedBusiness Insider has contacted all six major ad agency holding groups and we'll publish their responses once we hear back.Earlier this week, Publicis Groupe CEO Maurice Levy said ahead of the ANA report's publication that it was an "unfair and unwarranted attack on the entire industry," The Wall Street Journal reported, citing a letter he had written to the CEO of another media buying firm.Levy said the choice not to name names and make "broad, unsubstantiated and unverifiable assertions of unethical behavior" had the potential to cause "great financial and reputational damage.
The sale is hosted by the Bittrex exchange, one of the largest and most reputable cryptocurrency exchanges in the world.A total of 6,627,494 Breakout Coins BRK will be offered for Bitcoin at a base price of no lower than 0.00022222 BTC about 14.4 cents at current bitcoin exchange rates , which along with a prior sale and tokens for incentivising players and gaming sites, will bring the total number of BRK to ever be in existence to 19,500,000, according to co-founder Paul Kim.Breakout Coin is part of the Breakout Chain blockchain for gaming, created by lead developer James Stroud, PhD, a co-founder of CryptoCertify, the cryptocurrency auditing and certification company; Randy Kim, a professional poker player with 20 years' experience in Los Angeles casino management; Paul Kim, with 25 years of experience in IT, computer science and gaming; and Gian Perroni, an iGaming executive with over 18 years of online gaming experience."The online gaming world has been waiting for a solution like this for many years," said Perroni."Breakout Coin will be used to denominate many of our gaming properties, and will be accepted at all of them, including our soon-to-launch eSports platform and our full digital game download store."Miners who are responsible for the processing of BRK transactions also earn another type of token called SisterCoin SIS .
Rob Norman, the chief digital officer of the world's biggest media buying company, GroupM, has ripped into the recent Association of National Advertisers ANA report on media agencies rebates, saying it overlooked the fact that agencies make major investments in technology at their own risk.The long-anticipated ANA report, which last week published the results of an eight-month probe into the sector by investigations firm K2, alleged secret rebates and other non-transparent business practices are "pervasive" in the agency sector.GroupM already issued a statement on the day of the report's publication saying it does not take rebates in the US or accept service fees from vendors that are not disclosed to clients.The statement also suggested that the report and the "objectivity of its authors and advisors needs to be examined carefully".On Tuesday, Norman, who is also GroupM's North America chairman, wrote a lengthier response to the ANA report on his LinkedIn page which has also been published on GroupM's website and with a selection of trade publications .In it, he notes there is no "positive reference" in the ANA report about the investments media agencies and their parent companies have made in "technology, data, and human expertise" to help clients tackle the complexity of the US media market.Norman writes:The report acknowledges the pricing pressures imposed on agencies by clients and their procurement offices.However, it omits acknowledgement that in spite of such pressure media services companies play an important role in supporting clients through a time of technology enabled radical change in consumer behavior and media consumption.He goes on to list the number of technology investments GroupM parent company WPP has made since its acquisition of 24/7 Real Media in 2007."The ANA report seems to suggest that there is something wrong with agencies being rewarded for these investments and acceptance of risk," Norman adds.At some point in the coming days, the ANA is set to publish a set of guidelines, compiled by media auditing company Ebiquity's Firm Decisions, which will outline the steps marketers need to take to ensure the relationship with their agency is one of transparency and trust.Norman ends his blog post by saying he hopes the guidelines take a balanced view of the issues within the client/agency relationship:Of course they should encourage vigilance; of course they should encourage clients to be satisfied that these business models are delivering value.What they should ensure is that the guidelines do not have the effect of reducing investment in fit for market technology and ultimately disadvantaging advertisers in the name of transparencyAt last week's WPP annual general meeting, the company's chief executive Sir Martin Sorrell suggested the ANA's report was "in no way independent" and that the trade body's language to promote the report was deliberately "emotional and intemperate."NOW WATCH: Bumble founder: Here's what's seriously wrong with the growing trend in Silicon Valley called 'brogramming'Loading video...
The Searchlight platform of content intelligence firm Conductor provides insights to companies about how well topics and content on their desktop and mobile web sites fare in Google, Facebook, and other searches.To remedy this, Conductor had offered a site auditing tool through its platform, but Besmertnik described it as rudimentary.So this week, the New York City-based company is announcing an integration with DeepCrawl, which Conductor describes as the world s most powerful web crawler.Those employing this option will see high-level insights from Deep Crawl about their sites, such as:If a Conductor user also has a DeepCrawl subscription, a drill-down is available with details that the site developer needs to make changes.As the integration is just being launched now, Conductor doesn t yet have any stats as to whether a DeepCrawl audit and resulting implementation make much difference.Besmertnik told me the new version is based on interviews his company conducted over a year to determine the workflows undertaken by its most successful customers.
Artificial intelligence AI enterprise company AppZen closed a $2.9 million seed round today.AppZen uses machine learning algorithms and natural language processing to automate and analyze expense reports for fraud.The company plans to extend into other back-office functions like accounting in the future, according to spokesperson Michelle O Rourke.An Association of Certified Fraud Examiners survey of 2,400 companies found that more than $6 billion is lost to expense fraud every year.AppZen claims it can reduce auditing costs 80 percent and greatly improve a business s ability to catch fraud.Other players in the enterprise and expense reporting software space include SAP, Unit4, Sapho, and more than 50 applicants to the Botcamp accelerator.AppZen, based in Sunnyvale, California, graduated from the 500 Startups accelerator in 2015.The round was led by Resolute Ventures and includes investment from Silicon Valley Bank, MasterCard, and Bloomberg Beta.
REUTERS/Stephen LamNEW YORK Thomson Reuters Foundation - HP Inc and Apple Inc topped a list issued on Thursday ranking how well technology companies combat the risk of forced labor in their supply chains.Forced laborers may be charged high recruitment fees to get jobs, be trapped in debt servitude, deprived of their passports or other documents, or made to work excessive hours for low pay, the report said.Overall, ICT companies are doing little to give workers a voice in their supply chains, such as enabling freedom of association or providing access to grievance mechanisms.Intel surveys its suppliers and visits smelters and refiners in the Democratic Republic of Congo, it said.An HP spokesman said: "At HP we believe that our actions must focus on addressing some of the greatest challenges we face as a society, including combating human trafficking, forced labor, and other forms of exploitation of vulnerable workers."Please credit the Thomson Reuters Foundation, the charitable arm of Thomson Reuters, that covers humanitarian news, women's rights, trafficking, property rights and climate change.
To add flair to your post, after submission, click on flair under the post, select the option that best fits.there doesn't seem to be anything here
We have entered an era where data is becoming a key factor in business success.Companies are increasingly adopting services and tools that collect and store huge amounts of environment- and customer-related data.These data sets are subsequently fed into analytics, business intelligence, and machine learning solutions to help with making smart decisions to deliver better service and improve efficiency, customer satisfaction, and the bottom line.However, the benefits of data-driven business come with its own caveats and presents challenges that can yield disastrous outcomes if not met in a timely and suitable fashion.Related Article: Internet of Things: Security, Compliance, Risks and OpportunitiesSecuring Data Is Among the Biggest Challenges Companies FaceWhile big data is the driving force behind the growth and success of enterprises, it is also making them a bigger and more attractive target.Malicious actors including competitors, fraudsters, and even state-sponsored hackers might target companies to steal or manipulate data in order to further their own ends.Failing to secure corporate data can result in major data breaches that will damage a company s customers, its business process, and reputation, and can eventually lead to the collapse of an entire business.Securing data can be an intricate and costly process, especially as the online business landscape is constantly shifting with new innovations.Many businesses underestimate the severity of the threats that surround them while others are completely oblivious to them.Yet others do not have the in-house expertise and the required funding to invest in expensive security solutions for their business.Cloud-Based Security Cuts Down Cost and Implementation DifficultiesFortunately, the availability of cloud-based security, also known as security as a service, helps cut down both the costs and complexity of securing critical online assets.These services replace wholly or in part the on-premise hardware and software previously required to protect firms against data breaches.The range of cloud-based security services that are available today run the gamut and encompass everything ranging from encrypting cloud-stored files and emails to auditing and managing access to digital assets, to smart network traffic monitoring and intrusion prevention, and much more.Web Applications Are Especially Vulnerable to Cyber AttacksOne area of special concern is websites and web applications, which account for some of the most targeted online assets that companies possess, mainly because of their widespread use, ease of access and pivotal role in running a business.Larger companies often operate hundreds of them, both in-house and externally.Many of these websites are being used to run critical operations such as the entry and transfer of sensitive files and personally identifiable information PII , messaging and the processing of electronic payment, which make them very attractive hacking targets.
It could help to alleviate data-sovereignty concerns, one analyst saysA Salesforce.com logo on the front of the Moscone Center in San Francisco.Salesforce.com is stepping up its efforts to woo security-conscious businesses by adding "bring your own key" encryption to its Salesforce Shield cloud services.Introduced a year ago, Shield offers encryption, auditing and event-monitoring functions to help companies build cloud apps that meet compliance or governance requirements.Encryption is based on keys generated by Salesforce using a combination of an organization-specific "tenant secret" and a Salesforce-maintained master one.Originally, secrets and keys in Shield were generated and managed through Salesforce's built-in key-management infrastructure, accessed through a point-and-click interface.
The Apache HTTP server and KeePass password manager are to get a free code audit, courtesy of a pilot European Commission project.The EC-FOSSA free and open source software auditing project pilot was conceived by the European parliament in 2014, and given €1 million to work with.As well as code audits, it's got the daunting job of creating an inventory of open source software in use throughout the parliament and the European Commission.EC-FOSSA asked the public to nominate projects for the first audit, and those two were far-and-away the most-nominated, with 23.1 per cent of the 3,282 comments nominating KeePass, and 18.7 per cent favouring Apache.Linux received just 8.6 per cent of nominations, and those were fragmented, so when it came down to specific components, the greatest number of nominations was for the experts to comb through the glibc library.EC-FOSSA promises to work closely with Apache and KeePass to make sure that its code review results in genuine contributions to the projects.
NASA's Orion spacecraft may first carry crew into space in 2023.At the request of Congress, the nonpartisan US Government Accountability Office reviews the finances and management of federal programs, and this week it released a study critical of NASA s crew capsule, Orion.Most worryingly, the 56-page report PDF regularly draws parallels between the Orion program and another large NASA project, the James Webb Space Telescope.The successor to the Hubble Space Telescope is notorious for ballooning from a 10-year, $500 million project to a 20-year, $8.8 billion £6.7 billion instrument that may finally launch in 2018.NASA estimates that it will spend a total of $16 billion £12 billion to ready Orion for its first crewed flight in April 2023.The federal auditing agency based this conclusion on the fact that only a handful of NASA s methods for estimating costs and schedule were consistent with best practices.
Microsoft has made an addition to Office 365 on the security front, with the introduction of a Service Assurance Dashboard to bolster the confidence businesses have in the online productivity suite.Nestling in the Security and Compliance Centre, the idea is that the dashboard will impart information on the implementation of privacy, security and compliance controls – including full details of third-party auditing of these controls to ensure they're watertight.Of course, Office 365 is a cloud service and there are traditionally worries about heading cloud-wards with your precious business data, and Microsoft wants to reassure companies they have nothing to worry about.The dashboard will also offer businesses guidelines on how they can use the productivity suite's various security controls to better protect their dataIn a blog post, Redmond noted: "Service Assurance helps you to stay secure and compliant with an 'end-to-end' view of controls implemented by you as well as by Microsoft.For controls owned by you, it provides actionable implementation plans for relevant features that help you to implement these controls and manage your risks."
In the US, approximately 70 percent of states use some form of electronic voting.Hacks on these voting machines have been detailed for years, but a CBS report shows that it doesn t exactly require a security expert to hack the vote.To hack a voting machine, it appears, all you need is a $15 card that you can find in a number of places online.I can insert it, and then it resets the card, and now I m able to vote again, said Brian Varner, a principle researcher at Symantec.For $15 and in-depth knowledge of the card, you could hack the vote.Voters don t even need to leave the booth in order to vote multiple times.
I don't know about you, but to me, on-site SEO is probably the most rewarding part of the process.Unlike your off-page efforts, the technical changes and improvements on your site make an immediate difference to both visitors and search engine bots, and often have an impact on your search visibility right away, not "months later, maybe".In this post, I put together my top uses for one on-site tool -WebSite Auditor - to highlight the different ways SEOs can use it for site crawling, in-depth site auditing, on-page analysis and optimization, and really, all things on-site.
It s a conundrum that the Linux Foundation wants to help alleviate with the introduction of a new online Linux skills training program.The online course, called Linux Security Fundamentals LFS216 , is an attempt to help individuals evaluate their own organizations security readiness. Of course, security is not an entry-level topic; it s more important for folks who ve already started their career, Clyde Seepersad, general manager, training and certification at the Linux Foundation, toldeWEEK.The LFS216 course covers threats and risk assessment, auditing and detection, application security, kernel vulnerabilities, local system security, network security, denial-of-service attacks as well as firewalling and packet filtering.In contrast, LFS416 is a four-day instructor-led course that an individual has to attend in person or watch via webcam at specific times.The logistical and personnel costs of the instructor-led course $2,500 put it at a much higher price point, compared with $199 for the online class, Seepersad said.
As of next week, beloved cuck advocacy website Gawker.com, will officially be shutting down thanks to the machinations of a megalomaniacal seasteading vampire.And though it s incredibly unfortunate, there is something you can do to make us feel just a little bit better: Send us Donald Trump s tax returns.As you know, Donald Trump has refused to release his tax returns, presumably because he is being perpetually audited.The auditing part is true, but the part where that fact has anything to do with his ability to release the returns is not.As Warren Buffett previously said, There are no rules against showing your tax returns and just let ting people ask questions about the items that are on there.And not only would those tax returns answer some highly relevant questions the American people have about Donald Trump s funds or lack thereof , they would also ease the devastating pain of watching our dreams crumble right before our very eyes.