One of the world’s biggest aluminium producers, Hydro which employs more than 35,000 people in 40 countries, has switched to manual operations at its Norwegian smelting facilities following a cyber-attack. It is now confirmed that it has been hit by the LockerGoga ransomware variant and had to shut down some of its plants as a result. https://twitter.com/NorskHydroASA/status/1107925735048646656 Experts Comments Below: Tim Mackey, Senior Technical Evangelist at Synopsys: I sincerely hope that Norsk Hydro details the attack methods and nature of the cyberattack they are experiencing. Given they are shutting down operations at some of their plants implies those plants had control system access…
ISBuzz Team
Outdoor clothing retailer Kathmandu announced that it is investigating a potential breach of customer card data harvested from its websites. In a statement posted to the New Zealand Exchange (NZE), the firm said it was notifying potentially affected customers directly, advising them to contact their banks and card providers: “Kathmandu has recently become aware that between January 8, 2019 NZDT and February 12, 2019 NZDT, an unidentified third party gained unauthorized access to the Kathmandu website platform,” it said. “During this period, the third party may have captured customer personal information and payment details entered at check-out.” Although the cause is still unlear,…
The BBC has reported today that the government has been told there are “failings” in the way it is planning to protect the UK’s critical infrastructure from cyber-attacks. The warning came in a National Audit Office (NAO) assessment of the UK’s national cyber-defence plan. The government is increasingly worried that these essential sectors will be targeted by foreign states seeking to disrupt UK life. Israel Barak, Chief Information Security Officer at Cybereason: “Risks to critical infrastructure such as industrial control systems can be minimised and managed. However, threats against this industry in particular will never be completely eradicated. In the past, the cyber criminals Cybereason has observed attacking networks in this…
MySpace has lost over 50 million songs that were uploaded to the site between the years of 2003-15, due to a server migration error. https://twitter.com/Techmeme/status/1107625405396254720 Gijsbert Janssen van Doorn, Technology Evangelist at Zerto: “The news that MySpace has lost over 50 million songs as a result of a server migration is shocking. For any organization that is looking to move data and workloads confidently, implementing an IT resilience plan is crucial. Wherever data is moving to, owners will expect it to be transparent and fast, while allaying any risk to the data that is being moved. That’s it; that’s all you need to do. …
According to a global study by Quocirca, print is considered a top security issue (66 per cent) for most organisations, second only to cloud-based services. However, with recent incidents such as the latest PewDiePaw hack, in which over 50,000 printers were affected, it is crucial for businesses to rigidly manage their print estate and what information can be sent to them through adopting biometric security. This is according to Y Soft Corporation, a leading enterprise office solution provider. James Turner, Regional Sales Manager at Y Soft said: “Today’s multifunction devices (MFDs) have become instrumental machines for office productivity. These devices have become smarter and more…
A new strain of the ever-persistent Mirai botnet has begun to focus on TVs, digital signage and projectors according to recently released Palo Alto research. https://twitter.com/kaspersky/status/1107774445639385088 Experts Comments: Israel Barak, CISO at Cybereason: “Millions of inexpensive interconnected devices, such as cameras, routers, printers, TVs, baby monitors, refrigerators, and so on, have flooded the market with public IP addresses are found very quickly by botnets. Most have no patches, have known vulnerabilities and typically are using default passwords. Within an organization who is watching the shop and monitoring the printers and TV monitors that are all connected to the Internet? The answer is likely…
Seventy-two percent believe nation-states have right to ‘hack back’ cybercriminals Venafi®, the leading provider of machine identity protection, today announced the results of a survey on cyberwar and offensive hacking that evaluated the opinions of 517 IT security professionals attending the RSA Conference 2019. According to the survey, eighty-seven percent of respondents say the world is currently in the middle of a cyberwar. “It’s clear that security professionals feel under siege,” said Kevin Bocek, vice president of security strategy and threat intelligence at Venafi. “With the increasing sophistication and frequency of cyberattacks targeting businesses, everyone is involved in cyberwar.” Additional findings include: …
Following the news that the National Cyber Security Programme is facing criticism over the way it was set up in 2016, and therefore is unlikely to meet its targets, Jake Moore, Cyber Security Specialist at ESET commented below. Jake Moore, Cyber Security Specialist at ESET: “In 2016, £1.9billion may have sounded like a huge financial injection but cyber security needs a constant flow of resources, both people and financial support. If this money were to simply dry up in 2021 then over a short period of time all the good work done thus far could unravel. Admittedly, the government set itself some tough goals…
In light of the one-year anniversary of the Cambridge Analytica scandal on Sunday 17th March, please see below for a comment from Jasmit Sagoo, senior director at Veritas. Jasmit explains how in the last year, the way consumers create and share data has changed, as have their expectations of how businesses should use their data. Jasmit Sagoo, Senior Director at Northern Europe, Veritas Technologies: “Have businesses learnt the lesson about responsible data collection and usage, one year on from the Cambridge Analytica scandal that shook the world? “Over the last year, the way that consumers create and share data has changed – and so has the way…
I have always loved Heraclitus’ teaching of, “No man ever steps in the same river twice.” It is a reminder of the impermanence of life. Though the Greek who lived 2500 years ago was speaking in broad terms, he very well could have been speaking about iOS app development. Although he finished his quote with, “for it’s not the same river and he’s not the same man,” I’d like to remodel his musing into “No iOS app developer ever creates the same app for an Apple device twice, for it’s not the same app and it’s not the same device.…