Following last week’s news that Google is now rolling out several new cloud security services, Chris Morales, head of security analytics at Vectra, has put together some commentary looking at what primary security concerns enterprises have as they move more workloads and data to the cloud as well as what the current state of security looks like in the cloud. Chris Morales, Head of Security Analytics at Vectra: “I think the biggest problem facing the cloud is ensuring only the right people have access to data stored in cloud workloads. Inside the confines of the enterprise network, misconfigured systems and applications aren’t as…
ISBuzz Team
Check Point’s researchers confirm Coinhive holds the top position in February’s Top Malware index for 15th successive month before it shut down, while GandCrab distribution campaigns increase Check Point Research, the Threat Intelligence arm of Check Point, has published its latest Global Threat Index for February 2019. The index reveals that Coinhive has once again led the Global Threat Index for the 15th consecutive month, despite the announcement that its services have been shut down from March 8th 2019. Check Point’s researchers have also discovered several widespread campaigns distributing the GandCrab ransomware that have targeted Japan, Germany, Canada and Australia. These nations are just part of the targeted countries. These operations have emerged over the…
Security teams are understaffed as cybersecurity skills gap worsens Tripwire, Inc., a leading global provider of security and compliance solutions for enterprises and industrial organisations, today announced results of a survey conducted by Dimensional Research that examines how organisations are addressing the cybersecurity skills gap. The survey was administered to 336 IT security professionals in February. Eighty percent of survey respondents believe it’s becoming more difficult to find skilled cybersecurity professionals. As emerging technology and threat landscapes experience rapid transformation, the skillsets needed change as well. Nearly all respondents (93 percent) say the skills required to be a great security professional have changed over the past few years. …
Jeremy Hunt has said authoritarian regimes view democratic elections as “key vulnerabilities” to be targeted. While he stressed that there was no evidence of successful interference in UK polls he also called for economic and diplomatic sanctions to be part of the response to attacks. He added that the government was expanding its network of “cyber attaches” – diplomats working with governments around the world to address the problem. https://twitter.com/Tjmsandford/status/1103654673448402945 Experts Comments below: Steve Armstrong, Regional Director UK, Ireland & South Africa at Bitglass: “Whilst most people associate “cyber” with the menacing hooded adversaries hacking systems this is slightly more subtle. There has been…
https://twitter.com/jez2a/status/224119183003230208 Expert Comments below: James Linton, Lead Researcher at Agari Cyber Intelligence Division (ACID): Brand spoofing scams where attackers pretend to be your brand have been around for a long time. And it still carries on today. Brand spoofing scams, when done well, can have a high success rate of victims following through with the instructions presented to them. We have seen this type of scam spoofing brands such as Microsoft, Apple and Amazon. Hackers go for the big brands because the likelihood of the person using/owning an account is high. The same reasoning must have led hackers to spoof ANZ Bank in…
Connectivity means financial service providers can have a wider customer reach than ever before – but with more touchpoints comes a greater potential for complexity, and also an increased risk of security breaches. An integrated approach has therefore never been more important, and security must be at the heart of this, particularly as new innovations come into the fold. Ever-growing concerns regarding fraud mean that security remains high on the agenda and should therefore, lead every operation and every innovation. It’s an issue that has a global reach with fraudsters potentially operating completely remotely, with a criminal pushing buttons on…
Juliette Rizkallah from SailPoint discusses what International Women’s Day signifies to her and her experiences as a woman in the cybersecurity industry. Juliette has over 20 years’ experience in the tech sector, with previous roles at Oracle and Check Point Security, having studied in Paris and at Harvard Business School. Juliette Rizkallah, CMO at SailPoint: “International Women’s Day is a special day for me as an international woman working in cybersecurity. It is a day where we can all pause and reflect on how far we have come in creating more gender equality in the workplace. As I look back on my journey…
Last week, security researchers discovered an unprotected, publicly accessible MongoDB database containing 150 gigabytes-worth of detailed, plaintext marketing data—including 763 million unique email addresses. The trove is not only massive but also unusual; it contains data about individual consumers as well as what appears to be “business intelligence data,” like employee and revenue figures from various companies. This diversity may stem from the information’s source. The database, owned by the “email validation” firm Verifications.io, was taken offline the same day it was reported to the company. Chris DeRamus, CTO at DivvyCloud: “The data exposed in this leak of nearly 809 million records…
Kaspersky Lab researchers have detected a new malware spreading through the Pirate Bay – one of the most popular torrent trackers. The malware aims to infect users’ PCs with adware and tools for additional malware installation. It has multilayered structure and due to its hidden, seemingly endless stack of functionality, the threat has been named PirateMatryoshka, after the classic Russian stacking doll. Torrent services are mainly used for the distribution of “pirated” content that is illegal in most countries as it can infringe intellectual property rights, yet they remain easily accessible online. They are a popular target for cybercriminals looking to…
It has been reported that an international phishing campaign that delivers Ramnit Worm/Botnet malware targeting financial organisations in Asia has re-emerged, and could be heading for the UK. Once the fake email is opened by a member of staff, this then executes on the victim’s machine and a malicious file is installed on the corporate network without even the knowledge of the employee who opened the fake email. Unless the financial institution has acquired the software and procedures needed to contain such an attack, the consequences of installing this particular type of malware can be devastating – not only for the company concerned but also for…