Three-fifths (59%) of consumers would feel more secure if their personal information was protected by their fingerprint Despite the introduction of the General Data Protection Regulation (GDPR) in May last year, research from IDEX Biometrics Asa has revealed UK consumers don’t feel their personal information is any safer. In fact, 84% of respondents don’t think GDPR has been taken seriously enough by organisations who hold their data, and its security is still an issue. This highlights the need for UK organisations, to make it clearer to their customers that they are prioritising GDPR compliance. Taking a security-first approach, by embracing innovations, including fingerprint biometric technology via…
ISBuzz Team
Developer knowledge sharing site Stack Overflow has confirmed hackers breached its systems, but said customer data is unaffected. Stack Overflow, founded in 2008, has more than 50 million monthly active users who use the site to share code and knowledge. It remains one of the top 50 most popular sites on the web, according to rankings by internet analytics site Alexa. https://twitter.com/CybersecFill/status/1129675314580381697 Experts Comments: Byron Rashed, VP of Marketing at Centripetal: “Although credentials were not compromised, code can be used by cybercriminals to find backdoors into various platforms or inject malicious code that can create vulnerabilities (if not caught in QA). If code…
It has been reported that fears of a massive global computer virus outbreak have prompted Microsoft to issue security updates for very old versions of its Windows software.One patch is for Windows XP, which debuted in 2001 and Microsoft stopped supporting in 2014. Microsoft said the patch closed a hole that could be used to spread a virus. Malicious hackers exploiting it could kick off a worldwide outbreak like the 2017 Wannacry worm, which hit thousands of machines. Oleg Kolesnikov, Vice President of Threat Research and Head of Research Labs at Securonix: “The new critical Microsoft RDP pre-authentication vulnerability (CVE-2019-0708) is currently being actively discussed in the…
According to new research from Pen Test Partners, hackers could attach an ELM327 Bluetooth module to analyse the traffic and read CAN messages. If left in, a hacker could shut the car down. https://twitter.com/OBD16shop/status/636424859526926336 Dennis Kengo Oka, Senior Solution Architect at Synopsys: “Car manufacturers and suppliers should incorporate security in the entire software development lifecycle. Car manufacturers and suppliers should perform security requirements reviews, design reviews and risk analysis before software development event begins. During software development, code reviews, and automated tools for static code analysis and software composition analysis should be used to detect software vulnerabilities in own developed code as well as open-source…
We all enjoy thinking about ‘what if’ scenarios – what if the sun stopped shining? Or what if an alien spacecraft landed on Earth? This is probably why disaster movies are so popular. They somehow suspend our disbelief, generate excitement and anticipation, and deliver regular box office dividends. In fact, Titanic is still the second most successful move of all time more than 20 years after it was released. From The Towering Inferno, to Jurassic World, and the hotly anticipated Godzilla: King of the Monsters later this year, disaster films have gripped people across the globe, feeding our curiosity about what could happen and how might we respond. It’s far…
News broke this afternoon that Facebook has identified a private Israel-based influence campaign aimed at disrupting elections in various countries and has canceled dozens of accounts that engaged in spreading disinformation. Nathaniel Gleicher, Facebook’s head of cybersecurity policy, told reporters Thursday the tech giant had purged 65 accounts, 161 pages and dozens of groups. Corin Imai, Senior Security Advisor at DomainTools: “It is reassuring to see that tech giants are stepping up to protect the political discourse from disinformation campaigns. Facebook is not new to controversies regarding its involvement in the spreading of fake news, which indeed flourish on the platform. Recently, however,…
Following the news that an international crime gang which used the GozNym banking malware to steal $100m (£77m) from more than 40,000 victims has been dismantled, Roy Rashti, cybersecurity expert, BitDam commented below. Roy Rashti, Cybersecurity Expert at BitDam: “The “Goz” in GozNym stands for the notorious Gozi banker malware which, although not new, was very successfully co-opted and iterated by hackers. This provides yet another example of how adversaries tweak known attacks to bypass legacy security solutions to reach and exploit the end user. This strategy allows cybercrime groups to operate like any successful business – with efficiency, dynamism and always staying one…
With the upcoming 1-year anniversary of GDPR, here are collected insights from 13 industry experts: https://twitter.com/BrianHonan/status/1128924911404232704 Experts Comments: Colin Bastable, CEO at Lucy Security: “From a channel perspective, GDPR has created a whole new class of consultancy, with a significant stream of revenue, not just in the USA but globally. This is because the legislation has real teeth, is sufficiently vague to allow for multiple interpretations and applies to anyone doing business with the EU. Most US organizations now know that GDPR exists and ask for advice and training, so GDPR is now a common term, like PCI and…
Microsoft’s announcement urging users of older versions of Windows to apply a patch to protect against a potential widespread WannaCry-like attack. Two years on from the WannaCry attack, which affected computers in over 70 countries, Tanium’s recent research showed that organisations are still struggling with patching hygiene, leaving their critical assets exposed. https://twitter.com/terlin/status/1128666577178628096 Expert Comments: Matt Ellard, Managing Director, EMEA at Tanium: “Two years after the WannaCry ransomware attack plagued hundreds of thousands of computers across the globe, organisations have been warned of a security flaw that could be exploited to create a WannaCry-like worm. Although no exploitation has been spotted for the latest vulnerability, hackers…
Not sure if it’s on your radar for today but thought you might be interested in the news that Google is having to recall its Titan Security Keys after they were found to have a significant Bluetooth vulnerability which could allow hackers within 30 feet of their victim to gain access to their Google accounts or computers. It’s an ironic twist considering the Titan keys were launched as part of Google’s efforts to combat phishing attacks and improve account security. Mark Miller, Director of Enterprise Security Support at Venafi: “This misconfiguration seems relatively easy to exploit. The fact you must…