A Review of the Best News of the Week on Identity Management & Web Fraud

Identiverse 2018 Recap – Identities Cambrian Moment (Ping Identity, Jul 12 2018)
Artificial intelligence is heating up and getting woven into the fabric of the identity conversation. Identiverse was no exception, and there were a number of sessions that explored how AI is starting to make identity smarter. At Identiverse, we announced our strategic acquisition of API cybersecurity provider Elastic Beam and the launch of PingIntelligence for APIs.

UK Reveals Plan for a Centralized Biometric Database That Sounds Like an Absolute Nightmare (Gizmodo, Jul 10 2018)
The UK government’s Home Office released a report this week announcing plans for a forthcoming centralized biometric database of its citizens, compiling DNA, fingerprint, face, and possibly even voice data for law enforcement to access and share…

Centrify’s Next Strategic Step Forward with Thoma Bravo (Centrify, Jul 10 2018)
“We couldn’t be more thrilled to partner with this world class investor who has invested in other great cybersecurity companies like SailPoint, McAfee, Barracuda and others.”


Sponsored by LogRhythm
SIEM Magic Quadrant
Gartner Positions LogRhythm in SIEM Leaders Quadrant for 5th Consecutive Year. Get the report


Facial Recognition Shows Promise as Next Step in Corporate Security (eWEEK, Jul 08 2018)
This technology could be used to bolster corporate and data center security systems by using existing surveillance cameras as part of a biometric security system. Chances are that you’ve already instituted some form of access control for sensitive areas in your company.

As Facial Recognition Use Grows, So Do Privacy Fears (SecurityWeek, Jul 09 2018)
The unique features of your face can allow you to unlock your new iPhone, access your bank account or even “smile to pay” for some goods and services.

Facebook’s Push for Facial Recognition Prompts Privacy Alarms (The New York Times, Jul 09 2018)
Facebook is working to spread its face-matching tools even as it faces heightened scrutiny from regulators and legislators in Europe and North America.

Cognitec’s FaceVACS engine integrates face matching algorithm (Help Net Security, Jul 09 2018)
These datasets range from passport-style images as found in national ID databases, to mugshot-style images used by law enforcement agencies, and facial images turned away from a frontal pose, as recorded by video cameras.

Check-in with a smile: Marriott, Alibaba trial facial recognition… (Reuters, Jul 11 2018)
Chinese guests at Marriott International, the world’s largest hotel chain, may soon be able to check in with a quick scan of their facial features.

Facial recognition startup Kairos acquires Emotion Reader (TechCrunch, Jul 11 2018)
EmotionReader is a Limerick, Ireland-based startup that uses algorithms to analyze facial expressions around video content. The startup allows brands and marketers to measure viewers emotional response to video, analyze viewer response via an analytics dashboard, and make different decisions around media spend based on viewer response.

Broadcom Buys Business Software Firm CA for $18.9 Billion (SecurityWeek, Jul 12 2018)
Broadcom described CA as a major provider of information technology management software, in an acquisition that would help the chip maker diversify its offerings.

Sextortion Scam Uses Recipient’s Hacked Passwords (Krebs on Security, Jul 12 2018)
“The message purports to have been sent from a hacker who’s compromised your computer and used your webcam to record a video of you while you were watching porn. The missive threatens to release the video to all your contacts unless you pay a Bitcoin ransom. The new twist? The email now references a real password previously tied to the recipient’s email address.”

Security Researchers Find New Loophole in IAB’s Ad Fraud Prevention Framework (Adweek, Jul 11 2018)
Thousands of apps are masquerading as premium publishers in order to bypass new industrywide protections against ad fraud, according to new data.

Proposed Changes to New Zealand’s Privacy Act (Infosecurity Magazine, Jul 09 2018)
Increased Breaches, Growing Loss Prompt Changes to NZ Privacy Bill

Two More Convicted in $30M Massive Hacking, Securities Fraud Operation (Dark Reading, Jul 09 2018)
A former hedge fund manager and securities trader participated in a scheme that made $30 million by trading on information from stolen press releases.

Think that bitcoins and a VPN keep you anonymous? Think again… (Naked Security – Sophos, Jul 10 2018)
A popular cryptowallet service has advised users of the Hola VPN to shift their funds to replacement accounts after an alleged hack.

Thai Cave rescue scammers pose as Elon Musk (Graham Cluley, Jul 10 2018)
Time and time again, crypto scammers are creating accounts in the names of known Twitter users and using devious tricks to fool their followers into believing they are reading a genuine message from the likes of Elon Musk.

Valimail makes it harder for hackers to impersonate your boss over email (TechCrunch, Jul 11 2018)
While Valimail’s original focus was mostly on ensuring that your outgoing email was trustworthy, the new solution, dubbed Valimail Defend, centers around two types of attacks that use fake incoming emails: those that come from lookalike domains (think tech-crunch.com) and those that rely on “friendly-from spoofing,” where attackers manage to make the incoming email address look like it’s from a legitimate user, often within your company.

How the access control market has developed and should direct itself in the coming years (Help Net Security, Jul 12 2018)
Smart cards have become synonymous with the access control market, continuing to be used across a variety of end markets including, healthcare, warehousing and storage, education, lodging, and mercantile and office spaces.