Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Vulnerabilities / Threats

12/18/2012
07:52 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

RSA Opens New Anti-Fraud Command Center In Collaboration With Purdue University

RSA AFCC staffed by fraud analysts who work to detect, track, block, and shut down phishing, pharming, and mobile-app based attacks

BEDFORD, Mass., Dec. 18, 2012 /PRNewswire/ --

News Summary:

-- RSA has expanded the global capabilities of its RSA FraudActionSMservice with the opening of a new RSA® Anti-Fraud Command Center (AFCC) site in the United States in collaboration with Purdue University. -- The Purdue Research Park-based RSA AFCC will become part of the RSA FraudAction 24x7 operation and will be staffed by RSA fraud analysts and Purdue University students. -- The opening of the new RSA AFCC builds on EMC's long-standing IT partnership with Purdue University Full Story:

RSA, The Security Division of EMC® Corporation (NYSE: EMC), today announced that it has strengthened its global operations for fighting cybercrime with the opening of a new RSA® Anti Fraud Command Center (AFCC) in collaboration with Purdue University. The RSA AFCC is a 24x7 services operation staffed by expertly trained fraud analysts who work to detect, track, block and shut down phishing, pharming and mobile-app based attacks perpetrated by online fraudsters. The Purdue-based RSA AFCC will leverage the existing relationships RSA has with more than 13,000 web hosting service providers, leading browser developers and ISPs to help ensure the fastest blocking and shut down of phishing sites. To date the RSA FraudAction service has shut down more than 750,000 online attacks globally - a number that is expected to continue growing with the addition of the new center. Located close to the main campus at the Purdue Research Park in West Lafayette, Indiana, the new RSA AFCC will also be a 24x7 organization supporting the RSA FraudAction services globally. The organization will be staffed by highly-qualified students in the computer science department at Purdue University who will be fully trained, supervised and supported by RSA staff to identify and shut down fraudulent phishing sites, deploy countermeasures, and conduct extensive forensic work to help stop online criminals and prevent future attacks and fraudulent activity against RSA FraudAction customers.

This latest venture with Purdue University further strengthens EMC's long term IT partnership with the University. Most recently, both EMC and Purdue announced a five-year relationship to address storage needs for the university's students and faculty as well as a plan to develop solutions jointly that can be adapted throughout higher education. With this addition to the EMC and Purdue relationship, RSA is able to widen global support for its anti-fraud services while students are also gaining valuable real-world cyber security experience that will help enhance their computer science education at the university.

RSA Executive Quote:

Alon Shmilovitz, Head of the RSA Anti-Fraud Command Center

"As online fraud becomes more sophisticated and prevalent, the demand for our RSA FraudAction services continues to grow. By opening a new RSA AFCC facility at Purdue, we are not only expanding our base of security analysts and experts that are equipped to fight cybercriminals, but by working with the students we are helping to foster the next generation of security professionals emerging from the University."

Purdue Quote:

Dr. Gerry McCartney, Vice President, CIO, and Purdue's Olga Oesterle England Professor of Information Technology

"As one of our Foundational IT Partners, EMC is doing more than providing equipment for our enterprise. EMC's presence on campus benefits both faculty and students, and gives students the real-world experience they need to be successful in their careers. EMC is a leader in its educational vision and in working with Purdue to help students prepare for the jobs they'll have after they graduate."

Featured Resources:

-- Learn more about the RSA Anti-Fraud Command Center -- Speaking of Security Blog: Fostering the Next Generation of Security Professionals Additional Resources:

-- Learn more about Trusted IT from EMC -- Connect with RSA via Twitter, Facebook, YouTube, LinkedIn and the RSA Speaking of Security Blog and Podcast. About RSA

RSA, The Security Division of EMC, is the premier provider of security, risk and compliance management solutions for business acceleration. RSA helps the world's leading organizations succeed by solving their most complex and sensitive security challenges. These challenges include managing organizational risk, safeguarding mobile access and collaboration, proving compliance, and securing virtual and cloud environments.

Combining business-critical controls in identity assurance, encryption & key management, SIEM, Data Loss Prevention and Fraud Protection with industry leading eGRC capabilities and robust consulting services, RSA brings visibility and trust to millions of user identities, the transactions that they perform and the data that is generated.For more information, please visit www.EMC.com/RSA.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Why Cyber-Risk Is a C-Suite Issue
Marc Wilczek, Digital Strategist & CIO Advisor,  11/12/2019
DevSecOps: The Answer to the Cloud Security Skills Gap
Lamont Orange, Chief Information Security Officer at Netskope,  11/15/2019
Unreasonable Security Best Practices vs. Good Risk Management
Jack Freund, Director, Risk Science at RiskLens,  11/13/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Navigating the Deluge of Security Data
In this Tech Digest, Dark Reading shares the experiences of some top security practitioners as they navigate volumes of security data. We examine some examples of how enterprises can cull this data to find the clues they need.
Flash Poll
Rethinking Enterprise Data Defense
Rethinking Enterprise Data Defense
Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industrys conventional wisdom. Heres a look at what theyre thinking about.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-19040
PUBLISHED: 2019-11-17
KairosDB through 1.2.2 has XSS in view.html because of showErrorMessage in js/graph.js, as demonstrated by view.html?q= with a '"sampling":{"value":"<script>' substring.
CVE-2019-19041
PUBLISHED: 2019-11-17
An issue was discovered in Xorux Lpar2RRD 6.11 and Stor2RRD 2.61, as distributed in Xorux 2.41. They do not correctly verify the integrity of an upgrade package before processing it. As a result, official upgrade packages can be modified to inject an arbitrary Bash script that will be executed by th...
CVE-2019-19012
PUBLISHED: 2019-11-17
An integer overflow in the search_in_range function in regexec.c in Oniguruma 6.x before 6.9.4_rc2 leads to an out-of-bounds read, in which the offset of this read is under the control of an attacker. (This only affects the 32-bit compiled version). Remote attackers can cause a denial-of-service or ...
CVE-2019-19022
PUBLISHED: 2019-11-17
iTerm2 through 3.3.6 has potentially insufficient documentation about the presence of search history in com.googlecode.iterm2.plist, which might allow remote attackers to obtain sensitive information, as demonstrated by searching for the NoSyncSearchHistory string in .plist files within public Git r...
CVE-2019-19035
PUBLISHED: 2019-11-17
jhead 3.03 is affected by: heap-based buffer over-read. The impact is: Denial of service. The component is: ReadJpegSections and process_SOFn in jpgfile.c. The attack vector is: Open a specially crafted JPEG file.