Companies Need to Educate Customers and Clients
Companies need to educate customers and clients
To protect online shoppers and users of online banking and payment services, companies must comply with sets of applicable rules and regulations. For example, the Payment Card Industry Data Security Standard (PCI DSS) for card payments is one such regulation. Companies not only have to inform their customers if they are regulatory-compliant but also instruct them on how to conduct their transactions as safely as possible. If they should experience a data breach, they should inform their customers and immediately take measures to limit the damage and (of course) compensate the victims.
Pay attention to your own Web security
True Web security starts at home. Every PC and every laptop needs to have updated anti-malware solution in place. Operating system and application providers regularly issue patches to fix vulnerabilities and to keep their users as safe as possible. Individuals need to protect themselves first and foremost. To prevent becoming a victim, be on the alert for social engineering (phishing) tactics and make sure you have the latest version of your anti-malware in place to prevent data-stealing Trojans and other malware from infecting your PC.
The use of a browser add-on will warn a Web 2.0 user about potentially malicious links-also on social Websites. Especially in the case of shortened URLs, it is hard to find out if the link will go to legitimate content or to an undesirable or infected Web page. Such an add-on will give a security alert before accessing the link, warning about potential malicious content lurking in the URL.
Web security vendors are waging a war against cyber-crime. They have their own labs and research centers where the latest malware trends, developments in cyber-crime and malicious codes are analyzed. They also work together with law enforcement to try and catch cyber-crooks. They also publish the latest findings on threats and trends on their Websites and blogs. Subscribing to newsletters, bulletins and RSS feeds from security blogs is a good way to keep up with the latest developments. Forewarned is forearmed!
Yuval Ben-Itzhak is Chief Technology Officer at Finjan. A security industry veteran, Yuval brings strong technology leadership capabilities to Finjan, as gained in over 15 years of high-level management positions. Prior to joining Finjan, Yuval was the founder and CTO of KaVaDo Inc., a leader in Web application security (acquired by Protegrity). Prior to KaVaDo, Yuval was CTO at Ness Technologies, a global provider of end-to-end IT solutions and services. As a senior project manager at Intel Corp., Yuval was in charge of the design and development of multimillion dollar software projects. He began his professional career as a member of an elite intelligence unit of the Israeli Defense Forces, where he was responsible for the design and development of security systems for mission-critical projects. Yuval earned a Bachelor of Science in Information Systems and Engineering, cum laude, from Ben-Gurion University, Israel. He can be reached at firstname.lastname@example.org.