security | ProptechNerd - Matt Cohen

Preventing Real Estate Ransomware

I’ve been writing articles for others more than for my own blog these days, but it’s nice to have them posted here too. This article first appeared on the CoreLogic Insights Blog and included some great collaboration with Ethan Bailey. The real estate industry is increasingly aware of the dangers of ransomware, which have

Security Auditing compared with Penetration Testing

12OctoberMatt CohenProfessionalsecurity

Recently, while we were discussing a contract, an industry executive needed me to give an explanation of the difference between a “security audit” and a “penetration test.” The party with whom the executive was negotiating the contract had changed the contractual requirement from the one to the other. Since this might be of interest

Preventing Screen Scraping: Policy, Contracts and Technology Evaluation

5JulyMatt CohenProfessionalsecurity

When organizations create policy requiring screen-scraping and other automated attack prevention and monitoring, it’s important for those organizations to be speciﬁc enough to ensure that compliance with policy can be measured in some way. Indeed, it is equally important for the organization to ensure that their technology contracts contain clear and explicit terms that

Reducing the Risk of Real Estate Wire Fraud

1SeptemberMatt CohenProfessionalbrokerage, security

The Groundbreaking Definitive Paper on the Subject Ongoing bad publicity related to real estate transaction wire fraud threatens to damage the reputation of the real estate industry. Previous issue descriptions have been incomplete and have also not provided thorough guidance for those brokerages, title companies, attorneys, and others that engage internally in the wiring

NAR’s D.A.N.G.E.R. Report – Focusing on the Security Risk

7JulyMatt CohenProfessionalsecurity

Understanding the Risk and How to Address It In the D.A.N.G.E.R. Report, compiled for NAR by Stefan Swanepoel, a “security breach” is listed as a “high risk” for MLSs, though it is quite clear that the risk is to the industry more generally. According to Stefan, “Cyber criminals could attack the industry, breach the