Category: Business and Finance News

As personal data breaches become increasingly common, consumer concerns about digital privacy are becoming more pronounced. Major tech companies have faced intense scrutiny over their data handling and storing practices, with data privacy watchdogs worldwide imposing increasingly hefty penalties. 

However, one sector that has managed to maintain a relatively secure profile in terms of data privacy is cryptocurrency. Cryptocurrencies enhance security and transparency based on blockchain technology which has a decentralised structure and strong encryption. They are commonly used in online casinos with no sign-up needed to ensure users are safe without having to undergo the typical know-your-customer (KYC) checks required by fiat currency-accepting online casinos.

In contrast, social media giants like Meta Platforms – the parent company of Facebook and Instagram – have faced several regulatory challenges. Recently, Meta was fined almost $15.7 million by South Korea’s Personal Information Protection Commission (PIPC) for unlawfully collecting and sharing data from its Facebook users.

The Investigation

The PIPC’s investigation into Meta’s data practices was extensive, finding that Meta had amassed sensitive information from just less than a million South Korean Facebook users without acquiring explicit consent. 

This information contained highly personal details, like users’ political views, sexual orientation, and religious beliefs. These data categories are protected under South Korean law. 

The investigation found that Meta used sophisticated algorithms to analyse user behavior on Facebook, including the pages liked and advertisements clicked on. Based on these interactions, Meta grouped users into what could be considered sensitive themes, like LGBTQ+ issues, transgender topics, and North Korean defectors. 

Meta then granted around 4,000 advertisers access to this data, which was used to tailor advertising efforts to specific audiences. This practice violates South Korea’s privacy laws, which forbid the collection, processing, or sharing of personal data without clear user consent. 

According to Lee Eun Jung, director at the PIPC, Meta’s data policy was vague and did not clearly disclose these practices to users, preventing users from making informed decisions about their personal data. Lee stated, “While Meta collected this sensitive information and used it for individualised services, they made only vague mentions of this use on their data policy and did not obtain specific consent.”

The PIPC also criticised Meta for failing to secure its user data. As part of the investigation, it was revealed that Meta had not implemented security measures, leaving inactive user pages vulnerable to hacks. This failure resulted in at least 10 instances where hackers forged identities using inactive South Korean Facebook accounts and initiated password resets on behalf of other users, resulting in unauthorised data access. 

Following the investigation, the PIPC imposed a $15.67 million fine and ordered Meta to establish more transparent data consent processes and improve security measures.

Meta Hit With Fines In The Past

Meta’s most recent fine imposed by South Korea is not an isolated case. South Korean authorities have imposed several fines on Meta in the past few years as part of a movement to hold tech giants accountable. 

In 2022, the PIPC fined Google and Meta a combined $72 million (100 billion won) for tracking users’ online behavior without consent. According to the PIPC, both companies failed to communicate their data collection practices, using users’ browsing data from external websites for targeted advertising. 

The PIPC has mandated that both companies adopt clear consent practices so users have control over their personal information. 

In 2020, Meta was fined 6.7 billion won ($4.8 million) by South Korean regulators for sharing data with third-party partners without consent. 

Meta has faced similar challenges at a global scale. Earlier in 2024, European regulators issued a $102 million fine after an investigation uncovered that Meta had left user passwords exposed in an unencrypted format because of a security lapse. 

These incidents highlight ongoing issues with Meta’s data management practices, which clash with local and international privacy laws. 

Implications of South Korea’s Decision

There is optimism among international regulators that South Korea’s decision to yet again impose a fine on Meta will result in stricter data privacy compliance. It is a shift that will ensure tech giants align with local laws related to data protection and user privacy. Countries across Europe and Asia, and the United States, are adopting frameworks aimed at holding companies accountable for improper data handling. 

South Korea’s $15.7 million fine against Meta shows a mounting intolerance for companies that have no regard for user privacy. For Meta, this is just the latest incident in a growing list of penalties that show complete disregard for their users. 

These fines also serve as a reminder of risks related to centralised data systems managed by large companies. Although blockchain technology offers decentralised, privacy-focused options, companies like Meta remain dependent on data-driven models with massive amounts of potentially sensitive information.

The post South Korea Fines Meta $15.7 Million For Collecting User Data appeared first on IT Security Guru.

This week, Cato Networks, global SASE provider, announced the following appointments to the company’s Board of Directors, effective October 1, 2024.

– Eyal Waldman, chairman of Waldo Holdings and former CEO of Mellanox Technologies
– Gili Iohan, general partner at ION Crossover Partners and former CFO of Varonis

“We welcome Eyal and Gili as new independent directors to the Cato Board. They both have a proven track record in steering high-growth technology companies through the many stages of business growth,” said Shlomo Kramer, co-founder and CEO at Cato Networks. “Their insights and guidance will be invaluable to Cato, as we embark on our next phase of growth.”

Mr. Waldman is currently the chairman of Waldo Holdings. This year, he received the Israel Prize for Entrepreneurship and Technological Innovation; the Israel Prize is the country’s highest and most prestigious civilian honour. Mr. Waldman brings more than 30 years of executive, product management, engineering and investment experience to Cato. He co-founded Mellanox Technologies, a semiconductor company, in 1999 and led the company as CEO, president and chairman for more than 20 years. He successfully managed the company through an IPO in 2007 and completed its sale to NVIDIA for $7 billion in 2020. Prior to Mellanox, Mr. Waldman co-founded Galileo Technology, a semiconductor company, in 1993. The company completed an IPO in 2000 and was acquired by Marvell Technology for $2.7 billion in 2021.

Eyal Waldman said, “As the category creator and leader of SASE, I believe Cato is uniquely positioned to redefine the IT security market. With the Cato SASE Cloud Platform, Cato is helping customers around the world succeed in achieving business agility and operational simplicity. I’m looking forward to bringing my experience leading high-growth technology companies to Cato and help the company achieve its business goals.”

Ms. Iohan is currently a general partner at ION Crossover Partners and a board member at Fiverr, monday.com and Varonis. She brings more than 25 years of financial leadership and corporate expertise to Cato. Ms. Iohan served as CFO at Varonis, a data security company, from 2005-2017 where she successfully navigated through an IPO in 2014. She was also a CFO at SolarEdge Technologies, a smart energy company, from 2006-2010. Prior to that, she was a partner at NextAge, a finance manager at M-Systems and an auditor at KPMG.

Gili Iohan said, “Cato has many opportunities to accelerate business growth. The company has successfully created a category with SASE and became a market leader. I look forward to helping Cato continue advancing its strategic vision. I’m honoured to become a member of the Cato Board at such a transformative time for the company.”

Today’s Board appointments follow several significant milestones for Cato. The company recently announced it surpassed $200 million in annual recurring revenue (ARR) and 2,500 customers. The company also announced it was named a Leader in the 2024 Gartner® Magic Quadrant™ for Single-Vendor SASE.

The post Cato Networks Expands Board of Directors with Two Industry Leaders appeared first on IT Security Guru.

CyberSmart, the UK’s leading provider of complete cyber confidence to UK SMEs has announced its partnership with Australian technology distributor, HAT Distribution. The partnership will provide businesses in Australia with fast, hassle-free Essential Eight assessment and year-round assurance.
CyberSmart is the world’s first complete SME solution, offering all-in-one cybersecurity monitoring, optimisation and training, proven to defend against cyber threats. With its user-friendly platform, simplified progression framework, year-round protection and unlimited support, implementing Essential Eight controls has never been easier for Australian businesses.
As cybercrime escalates in Australia, with 94,000 incidents reported in 2023* alone (equivalent to one report every 6 minutes!), completing Essential Eight – the recognised Australian government standard for cybersecurity – is not just advantageous but also crucial in certain industries. CyberSmart’s solutions are specifically designed to help businesses implement these strategies effectively so they can attain and maintain a government-approved standard of cybersecurity, reducing cyber risk.
The platform is tailored for MSPs and SMEs, who represent a critical segment in the economy but often face challenges with maintaining robust cyber defences due to limited resources and expertise. With CyberSmart, MSPs can enhance their service offerings by delivering comprehensive and cost-effective solutions to their clients, while SMBs gain access to straightforward Essential Eight assessment, without the need for extensive resources.
Australian SMEs will also gain access to CyberSmart Active Protect,  a powerful on-device agent that delivers comprehensive endpoint monitoring, risk management, policy enforcement, and cybersecurity awareness training. Active Protect regularly monitors and reports the status of a device by running through a series of security controls, identifying any vulnerabilities and providing simple step-by-step walkthroughs on how to fix them.
Jamie Ahktar, CEO at CyberSmart said, “We’re excited to expand into the Australian market with HAT Distribution. Cybercrime is a worldwide business, and the interconnected nature of global commerce in 2024 means that the more geographies we are able to offer SMBs complete cyber confidence in, the better. Almost half of Australians reported experiencing cybercrime in 2023, and we believe that the comprehensive protection we’re bringing to the Australian market will be able to limit both the success and impact of these incidents moving forward.”
Josh Gammer, General Manager of HAT Distribution said, “Amidst the ever-evolving cyber threat landscape, we are thrilled to partner with CyberSmart, a leader in cybersecurity innovation, to help more Australian businesses comply with the government’s endorsed Essential Eight framework.
“With CyberSmart, even smaller players gain access to the tools required for assessment, and for MSPs, the partnership is a consultative business opportunity to guide their clients on a transformative journey toward stronger cyber defences.”
For more information about CyberSmart’s cybersecurity solution for Australia, please visit https://www.cybersmart.com/au

The post CyberSmart announces expansion into the Australian market with HAT Distribution partnership first appeared on IT Security Guru.

The post CyberSmart announces expansion into the Australian market with HAT Distribution partnership appeared first on IT Security Guru.

Coro, the leading cybersecurity platform purpose-built for small and medium-sized enterprises (SMEs), today announced it has secured $100 million in Series D funding led by One Peak, with participation from existing investors Energy Impact Partners and Balderton Capital. This funding round brings the total funds raised to $255 million in the last 24 months. The new investment will reinforce Coro’s market dominance and accelerate its mission to empower SMEs and their service providers with enterprise-grade cybersecurity that’s accessible to all.

Coro is an all-in-one cybersecurity solution offering an enterprise-grade security software platform to SMEs covering endpoint protection, email & user protection and network & cloud protection. SMEs are facing increasing volumes and complexity of cyber attacks, and lack affordable solutions to help them adequately protect their tech stack. Coro’s easy-to-use platform enables IT teams and their partners to be protected 24/7 in an automated and affordable way.

Coro’s dedication to protecting and empowering SMEs has been a cornerstone of its success, driving remarkable growth and catapulting Coro to a market leadership position within a few short years. In 2023, Coro expanded its customer base across every industry vertical, achieving 3X year-over-year growth for a record fifth year in a row. Coro was named to the inaugural Fortune Cyber 60 and to the 2023 Deloitte Technology Fast 500, in recognition of its achievements as one of the fastest growing cybersecurity companies in North America.

The new funding will be used to:

  1. Fuel product innovation: Coro will continue to develop industry-leading security solutions tailored specifically for the SME market through both organic growth and strategic acquisitions, following the successful acquisition of Privatise in 2023.
  2. Empower channel partners: Coro will further strengthen its channel partner program, providing additional support and resources for its North American MSP and reseller network.
  3. Accelerate global expansion by establishing local marketing and channel teams and investing in brand awareness to support Coro’s international partners.

 

“As a growth investor, we look for companies that target large, underserved markets and are in prime position to dominate that field,” said David KIein, Co-founder and Managing Partner, One Peak. “Coro has already achieved phenomenal growth and success in the SME market. We are convinced that Coro has the right tech stack, a world class management team, and unlimited potential to scale the business to the next level. We’re excited to partner with Coro to help them execute on their vision and support the team in their next leg of explosive growth.”

“Now that Coro is established as a cybersecurity powerhouse for the SME market, the next step on our journey is to offer this radical approach to as many organizations as possible,” said Guy Moskowitz, CEO, Coro. “The best way we can enable this is through our world-class global network of partners, who can launch Coro’s ease of use and simplicity at scale, bringing the current chaos of managing cybersecurity to a halt.”

“As the founding investor of Coro, we at JVP have been fortunate to collaborate with Guy and the management team on building a true category leader in cybersecurity for SMEs. We aim to turn Coro into a multi-billion-dollar company, as we’ve done multiple times before,” stated Yoav Tzruya, General Partner at JVP, and Coro’s Board Member. “We look forward to collaborating with OnePeak, EIP and Balderton in building Coro as a disruptive company in the cybersecurity market.”

“We are delighted to continue to support Coro as the leader in providing cybersecurity solutions to SMEs,” stated Rana Yared, General Partner, Balderton Capital.  “We believe that providing protection and peace of mind to this segment of the market is critical to economic growth.”

“We are excited to continue our journey with Coro. We expect that the unwavering focus on SMEs, the most underserved segment in the cybersecurity market, coupled with the team’s phenomenal execution, will ensure Coro’s dominance in this market,” said Shawn Cherian, Partner at Energy Impact Partners.

2023: Establishing leadership in SME cybersecurity

2023 was a year of immense milestones and achievement for Coro. In October 2023, Coro created a new cybersecurity paradigm with the launch of Coro 3.0, the industry’s first modular cybersecurity platform. Coro 3.0 offers fourteen seamlessly integrated modules – from EDR to SASE to email security – that can be activated on demand to grow with a company’s needs.

Coro’s modular platform consolidates critical security capabilities into a single pane of glass, a single data engine, and most importantly, a single endpoint agent, making deployment and management effortless.

Coro also invested extensively across its North American sales and channel organizations in 2023. The Company added 300 new channel partners, expanded its channel headcount by nearly 500%, and established a business enablement center in Chicago to support its direct sales and channel partner ecosystem. The Company also expanded globally with the opening of its UK R&D Center and data centers in both Canada and Germany to facilitate the regional expansion of both channel partnerships and customers.

Throughout 2023, Coro continued to receive industry accolades for customer satisfaction, product performance, company growth, and best places to work. This recognition includes:

  • Coro’s EDR capabilities scored a perfect 100% accuracy in testing conducted by SE Labs;
  • Named by SC Magazine as one of the Top 5 security solutions for the SME market;
  • Named to CRN’s MES Mid Market 100, recognizing market leaders serving midsize enterprises;
  • Received more than 40 badges from G2 customer peer reviews, including midmarket awards for: Easiest to Use, Easiest to Do Business With, Best Support and Best Estimated ROI;
  • Named 100 Best Medium Workplaces to work in 2023 by Fortune Media and Great Place to Work; and
  • Named 2023 Fortune Best Workplaces in Technology™ for Small and Medium Businesses.

The post Coro Secures $100 Million Funding Round first appeared on IT Security Guru.

The post Coro Secures $100 Million Funding Round appeared first on IT Security Guru.

Comforte AG and ACI Worldwide have announced a partnership together to accelerate payment modernisation with global PCI DSS v4.0 Compliance.

PCI DSS v3.2.1 will be retired on March 31, 2024, as it will underscore the need for businesses and companies to act swiftly and comply with v4.0 until it comes into full effect on March 31, 2025.

Real-time payments software ACI Worldwide and provider of data-centric security solutions comforte AG will focus on offering customers the needed tools and features to meet the new Payment Cards Industry Data Security Standards (PCI DSS) v4.0 standard. In addition, the collaboration will enable ACI Worldwide to use comforte AG’s data-centric security suite of products, which were tested to be compatible with ACI’s service portfolio.

Under this partnership, ACI will use comforte’s data-centric security solutions, which ACI has rigorously tested to be compatible with ACI’s solutions.

PCI DSS is a global standard that provides a baseline of technical and operational requirements designed to protect sensitive payments data. This new version fortifies core security principles while providing more flexibility and guidance to help organizations secure account data now and in the future. Adhering to the new PCI DSS v4.0 standards is not just about compliance but a stride towards payment modernization – offering opportunities for better payment experiences and enabling the adoption of emerging technologies while bolstering protection against cyber threats.

“Market forces and security mandates such as real-time payments and PCI DSS v4.0 are key catalysts for payment modernization, paving the way for growth and innovation across the industry,” said Abe Kuruvilla, Chief Technology Officer of ACI Worldwide. “ACI’s partnership with comforte aligns with our unwavering commitment to provide our customers with the highest levels of security and fraud protection to meet the increasing security demand in this dynamic payment landscape.”

PCI DSS v4.0 requirements for data security at rest move beyond disk-level encryption to protection within applications. comforte’s Data Security Platform meets this requirement by inserting a protection layer into applications that buffers for tokenization or encryption of sensitive data. By leveraging standards-based data encryption, tokenization, and masking, the comforte Data Security Platform provides granular audit and control for regulatory compliance without affecting service levels or compromising efficiency.

“We are proud to partner with a global payment solutions leader like ACI that shares our dedication to customer service, innovation, and security. Customers around the world will benefit from enhancing their data security and privacy while maintaining usability for analysis and powering business processes,” said Michael J. Deissner, CEO at comforte AG. “ACI’s and comforte’s combined expertise and proven solutions will facilitate seamless transactions across diverse platforms while enabling customers to streamline the compliance process and achieve their security objectives.”

The post ACI Worldwide and comforte AG Pave the Way for Payment Modernization with PCI DSS v4.0 Compliance first appeared on IT Security Guru.

The post ACI Worldwide and comforte AG Pave the Way for Payment Modernization with PCI DSS v4.0 Compliance appeared first on IT Security Guru.

Armis, the asset visibility and security company that recently became cybersecurity’s newest centaur, has announced the promotion of Brian Gumbel to President with immediate effect. The company says Gumbel will provide enhanced go-to-market (GTM) strategic guidance across the entire business, as it continues to accelerate its growth and prepares for a future IPO. Brian will directly report to Yevgeny Dibrov, Chief Executive Officer and Co-founder of Armis, and continue to be a member of Armis’ executive team.

“Brian came to Armis at a crucial juncture in our company’s journey and has built a world-class sales function that is helping to solve some of the largest enterprise security challenges facing public and private organisations today,” said Yevgeny Dibrov, CEO and Co-founder of Armis. “I am excited about this next chapter and look forward to Brian providing even more guidance and support as we efficiently expand our business across many new areas.”

In this enhanced role, Brian will initially focus on expanding Armis’ go-to-market strategies for channel, partner and alliance communities, cross-selling to the company’s customer base and deepening its growth in the public sector and enterprise sales teams. Brian will also advise and support the business in the areas of customer success management and solutions engineering.

“The last few years at Armis have been phenomenal. We have grown out of start-up mode to become the leading cyber asset visibility, intelligence and security provider, driving value, huge revenue and growth,” said Brian Gumbel, President of Armis. “Our next phase of growth needs a broader ecosystem on many fronts, so we can fuel further efficient expansion of our platform and use cases. I am pleased to be able to lead the next evolution of our go-to-market strategy across the business.”

Gumbel is an award-winning 20-year seasoned cybersecurity veteran with exceptional experience in pioneering GTM roles. Prior to joining Armis, Brian worked with major global brands including Forescout Technologies, Tanium, McAfee and Cisco. Brian is a recognized LGBTQIA+/ diversity champion and passionate advocate for women in business and technology.

Armis helps to see and secure the operational environments of some of the largest airports and ports in the world. It ensures that critical infrastructure and leading manufacturers can stay online 24/7, 365 days a year. Armis helps to save lives by securing medical assets and patient care environments in some of the largest healthcare delivery organisations around the world, in addition to better protecting federal, state and local entities from cyber criminals, rogue nations and other bad actors.

Fortune 100 companies trust our real-time and continuous protection to see with full context all managed, unmanaged assets across IT, cloud, IoT devices, medical devices (IoMT), operational technology (OT), industrial control systems (ICS) and 5G. Armis provides passive cyber asset management, risk management and automated enforcement for every asset – from physical to virtual and cloud.

 

 

The post Armis appoints Brian Gumbel as President appeared first on IT Security Guru.

DomainTools, the leader for Internet intelligence, today launched its Global Partner Program led by Tim Durant, the recently appointed Vice President, Global Channels and Alliances. 

Threat intelligence plays an increasing role in the Security Operations Center (SOC) as security teams struggle to cope with the rising threat landscape. The DomainTools Global Partner Program features the company’s best-in-class threat intelligence solutions, providing channel partners with the tools needed to help enterprise security teams proactively detect emerging threats and attackers lurking in their networks. 

According to Chris Nelson, Chief Revenue Officer at DomainTools, “We’re thrilled that Tim Durant has joined our executive team and to launch our new Global Partner Program. Tim brings more than 15 years of experience creating high-impact programs that build revenue through new partners, products/services and routes to market on a global scale. The channel is one of the key growth drivers for DomainTools and we’re excited for Tim to spearhead our channel strategy and growth, and to reinforce our commitment as a channel-first organization.” 

“Having worked with DomainTools since 2019, it’s great to see them bolster their commitment and investment into their channel business and partnerships like ours,” said Phil Higgins, CEO at Brookcourt Solutions, a leading UK-based IT services provider. “The data and products from DomainTools have allowed us to meaningfully enhance the security postures of dozens of firms. We look forward to building many further opportunities with DomainTools as a trusted partner.” 

The DomainTools Global Partner Program will expand existing channel relationships as well as build new partnerships across the globe. It offers a wide range of benefits to channel partners, including generous and simple margin structure for new and renewal business, access to in depth training, online deal registration, and joint promotional programs. 

“I’m eager to deepen our existing partner relationships and to expand our incredible partner ecosystem,” said Tim Durant. “DomainTools seeks to work with a wide variety of partners, from cybersecurity technology companies, to VARs, and MSSPs. Each of these partners brings specialized expertise and market knowledge, and we’re excited about the opportunity to not only expand their portfolio but also work together to help augment an organization’s limited threat intelligence resources.” 

In his new role, Tim will lead the DomainTools channel program and sales and revenue goals and will be responsible for go-to-market strategies within the diverse DomainTools partner ecosystem. Prior to DomainTools, Tim spent nearly a decade at Hitachi Vantara, where he was Sr. Director of Strategic Global Alliances. 

The post DomainTools Launches Global Partner Program to Bring Best-in-Class Internet Intelligence and Threat Hunting Capabilities to Enterprise Security Teams appeared first on IT Security Guru.

Adarma has today announced the expansion of its executive team to support the business at a time of rapid growth. The additions to the company include Niall O’Sullivan, Chief Finance and Operations Officer; Sarah Coleman, Chief People Officer; and Dan Baker, Chief Delivery Officer, all of whom bring valuable experience in driving business transformation.

The appointment of these three critical roles is indicative of the growth journey Adarma has been on to transform the shape of its business. While it continues to drive an aggressive innovation programme to remain at the forefront of the UK cybersecurity market, it also aims to ensure a sustainable and profitable growth trajectory, accelerated transformation of its people strategy and the seamless delivery of its services to ensure maximum value for its customers.

In fact, this week, Adarma revealed it was awarded a £2 million grant from Scotland’s national economic development agency, Scottish Enterprise. The funding from Scottish Enterprise, part of a larger investment programme in R&D by Adarma, will be used to further invest in people – creating over 50 cybersecurity roles and supporting the company’s innovation roadmap which is set to expand its suite of cybersecurity services and Intellectual Property (IP). In particular, the investment will accelerate the development of Adarma’s security operations and threat management platform. Through technology integrations and advanced automation and orchestration, Adarma’s platform seeks to enable security teams to increase the speed and accuracy of their detection and response to advanced threats, at scale.

On this news, Scottish Government Business Minister Ivan McKee commented, “I congratulate Adarma on winning substantial Scottish Enterprise funding, funding which will help create more than 50 highly skilled roles and could make us all safer from cyber threats. The Scottish Government supports these plans to increase diversity through recruitment of entry level staff from a wider pool of talent, which will help support our objectives to transform the economy. Adarma is an Edinburgh-based company which is helping deliver solutions to one of the greatest challenges facing business today and I congratulate them on driving innovation in Scotland and beyond.”

See below for more information on the newly appointed executives:

Niall O’Sullivan, Chief Finance and Operations Officer

O’Sullivan is a transformation leader experienced in executing large scale digital transformation programmes and cost optimisation strategies that deliver measurable, effective and sustainable long-term benefits for all stakeholders.

Prior to joining Adarma, O’Sullivan was the Chief Financial Officer of Datalex plc and had worked in senior finance roles for major global organisations such as Google, Vodafone, Pearson Oracle and Dell. While at Vodafone, he managed a team of over 2,500 people across 20 countries, establishing Vodafone’s first three Finance Shared Service Centres and implementing a company-wide ERP system.

Sarah Coleman, Chief People Officer

With over two decades of experience as a global HR leader and organisation change expert, Coleman specialises in helping organisations implement innovative new ways of working that support long-term culture change, improve employee satisfaction, facilitate change management and drive strategic growth.

Before joining Adarma, Coleman was Global People and Communications Director at WPP, where she was responsible for transforming the organisation’s IT people strategy and delivery model, which scaled the number of employees from 200 to 2,500. This included the transition of IT staff from WPP’s 1,500+ agencies into a centralised operating model.

Prior to her role at WPP, Coleman was Vice President of HR at ICF International, where she headed all aspects of people strategy and change for the European and Asian markets over a period of significant acquisitive and organic growth.

Dan Baker, Chief Delivery Officer

Baker has a diverse background as an Executive Information Security Professional, experienced in defining and delivering on large scale security and digital transformation programmes. He brings a proven record in building and managing high performance teams to deliver major organisation and security change within budget, agreed timescales and importantly, in line with business objectives.

Prior to joining Adarma, he held several senior security leadership roles at DXC Technology, Ladbrokes Coral Group and most recently, as Director of Cybersecurity at Deloitte.

The post Adarma Expands Executive Team During Time of Rapid Growth appeared first on IT Security Guru.

Feedzai, the RiskOps platform for financial risk management, announced that it has been named as a leader in the IDC MarketScape: Worldwide Responsible AI for Integrated Financial Crime Management Platforms 2022 Vendor Assessment.

The IDC MarketScape evaluated the vendors on fairness, explainability, robustness, lineage and transparency – the five foundational elements of responsible Artificial Intelligence (AI), or the framework that builds trust within AI solutions. According to the report, “Feedzai has been at the forefront of responsible machine learning for financial crimes management identification and detection for a few years now and has implemented some of the most widely used open source frameworks and tools for flexibility in ML creation. Organisations appreciate its ability to improve and accelerate development and deployment of those models into a wide variety of environments.”

“There are still many Financial Institutions that make unfair decisions using biased algorithms. And at Feedzai we believe that we don’t need to compromise on accuracy to have fairness,” said Pedro Bizarro, Co-Founder and Chief Science Officer at Feedzai. “This recognition from the IDC MarketScape cements Feedzai’s position as a Leader in the Responsible AI space. It’s a culmination of the hard work, research, investment and dedication at Feedzai to create not only the best performing AI capabilities for detecting and stopping fraud, but also models that are fairer and with much less bias.”

Jerry Silva, Vice President of Financial Insights at IDC noted: “The complexities of identifying and detecting asymmetric criminal behaviour in the current landscape requires approaches that use the best-of-breed and explainable AI technologies while maintaining responsible security practices. Open source tools powered by optimisation like those provided by Feedzai allow organisations to build portable machine learning pipelines that can run on premises or on cloud without significant code changes. Feedzai provides a multi-layered solution approach with patented tools to help measure/identify patterns to keep FIs safe and compliant.”

According to the report, “Feedzai has developed a strong culture of communicating, sharing, and updating ML capabilities with clients to maintain explainability and transparency in model development. This also includes clients developing their own models.”

The company, who already had 12 patent submissions this year and invests about 26% of its annual revenue in R&D, introduced last year Feedzai Fairband, an AutoML algorithm that automatically discovers less biased machine learning models with zero additional model training costs. Fairband introduced Responsible AI to many leaders in the financial services sector and proved how it’s both accessible and attainable for financial services organisations worldwide.

More recently, the company also released FairGBM, a constrained version of gradient boosted trees that optimises for both performance and fairness between groups. And it does so without sacrificing predictive performance. FairGBM was open sourced for non-commercial use, allowing any organisation committed to delivering model fairness the ability to do so at scale.

For more information, visit Feedzai Research.

The post Feedzai tops Vendor Assessment in IDC’s MarketScape for Responsible Artificial Intelligence in financial crime management appeared first on IT Security Guru.

 MIRACL, a single-step, multi-factor authentication provider have been given a gowing review in a CELENT Solution Report into their offering.

Compiled by Zil Bareisis in July of this year, the report opens with the admission that ‘over the years, industry analysts have learned to take some vendor claims with a grain of salt’. Celent goes on to point out ‘…we were positively surprised to find that MIRACL Trust ID is a solution that lives up to its name’. 

When pressed on the specific benefits of the product for financial services, CELENT cites: 

  • Usability: MIRACL Trust ID is intuitive, simple, and easy to use. Login is extremely fast taking just a few seconds 
  • Security: It is multi-factor but without requiring any additional steps for the user, and the company states that there are no known practical or theoretical attacks against their cryptography and protocols
  • Deployability: It can be deployed across different types of devices and operating systems without any additional hardware 
  • CostEffectiveness: The combination of the revenue enhancements and cost savings delivered by the solution result in a superior total cost of ownership against alternatives, particularly given its Pay-As-You-Go pricing model. 

“To receive such a resounding seal of approval from CELENT is hugely important to usand only strengthens our conviction that MIRACL not only assures online security but also transforms users’ experience guaranteeing a high login success rate. An easy-to-use login improves conversion, drives revenue up and pushes support costs down” said Rob Griffin, CEO of MIRACL. “It also highlights how ready the industry is to move away from password-based authentication – something we have championed for a long time and which the industry is not enabling fast enough. 

Passwords are outdated and make users vulnerable to attack yet the requirement for PSD2 Strong Customer Authentication has actually increased their use. Passwordless multi-factor authentication is by far the most effective way of protecting your online accounts and using biometrics or PIN-based solutions removes the need for passwords altogether. Crucially MIRACL offers single-step MFA across 100% of platforms, which has proven the most popular with users both because it enables much higher login success rates and allows them to log in so much faster.” 

This change is clearly relevant for the financial services industry, which due to the financial reward available for successful hacks, has been the most attacked vertical (alongside insurance) for the last 5 years.. However, many other sectors such as streaming, gambling and gaming are now adopting mandatory multi-factor authentication in order to protect users’ accounts and data. These sectors need to place an even higher priority on user experience than conventional online banking. 

Financial services have been the most attacked industry (alongside insurance) from 2015 to 2020, and in all likelihood beyond. 

Please see here for the full report.

The post MIRACL Trust ID Branded ‘an authentication solution that lives up to its name’ by financial services industry analysts Celent appeared first on IT Security Guru.