The Verizon Data Breach Investigations Report (DBIR) series opened the doors to the world of cybercrime – now, this dataset and caseload analysis has been refocused on the role of the insider – forming the Verizon Insider Threat Report. Twenty percent of cybersecurity incidents and 15 percent of the data breaches investigated within the Verizon 2018 DBIR originated from people within the organization, with financial gain (47.8 percent) and pure fun (23.4 percent) being the top motivators. These attacks, which exploit internal data and system access privileges, are often only found months or years after they take place, making their potential impact on…
ISBuzz Team
Rush System for Health says personal information from about 45,000 patients may have been compromised in a data breach. The health system said in a recent financial filing that the exposed data may include names, addresses, birthdays, Social Security numbers and health insurance information. Rush said that to its knowledge none of the data had been misused and didn’t include medical information. Officials say the breach happened after an employee of one of Rush’s financial services vendors improperly shared a file with an unauthorized party. They say it likely happened in May 2018. https://twitter.com/WBBMNewsradio/status/1102684910358274048 Usman Rahim, Digital Security and Operations Manager at The…
A free version, Lumeta CloudVisibility Community Edition, delivers full functionality with limited scale for hybrid cloud environments FireMon today announced Lumeta CloudVisibility, proven cloud visibility, security and anomaly detection for hybrid enterprises. Lumeta CloudVisibility is built on the pioneering technology of its predecessor, Lumeta Spectre, purpose-built for comprehensive network and endpoint discovery. With this release, FireMon introduces real-time infrastructure visibility, change monitoring and leak-path detection for enterprises in any phase of their cloud migration, regardless of cloud platform, for physical, virtual, software-defined, on-premise and hybrid environments. “Gone are the days when only one provider dominates the cloud infrastructure market. Enterprises are using more than one cloud platform, a matrix of public or private…
Microsoft’s new Security Intelligence Report (SIR Volume 24) finds that phishing attacks increased 250% between January and December 2018, with attackers moving to multiple points of attacks during the same campaign, switching between URLs, domains, and servers when sending e-mails and hosting phishing forms. Hosted servers and public cloud tools were also adopted to make it easier to camouflage as legitimate services or products. Colin Bastable, CEO at cybersecurity test and training company Lucy Security: “Hacking is a multi-billion dollar industry. If it was being run by one company, rather than a mix of organized crime syndicates, lone wolves and governments, it would…
Today Gartner released its 2019 Emerging Security and Risk Management Trends report which said that today’s modern SOCs are shifting investment, resources, and time from threat prevention to threat detection and proactive response. Following the release of this report, Matt Walmsley, EMEA Director at Vectra, has provided his thoughts on why moving towards detection and response is vital for organisations. Matt Walmsley, EMEA Director at Vectra: “Detection and response capabilities are a major security gap that’s important and urgent for many organisations to still address as the ability to know if one is compromised is fundamental to effective risk management. Prevention will fail,…
ISACA’s latest State of Cybersecurity Report has found that it’s getting tougher to fill cybersecurity positions, with many organisations waiting three months or longer. https://twitter.com/ISACANews/status/1102606381436293120 Following the release of this report and these findings, Chris Morales, head of security analytics at Vectra, has shared some thoughts. Chris Morales, Head of Security Analytics at Vectra: “Organisations can simply put their attention on staffing, they must address the retention challenge as well. The low rate of retention is linked to the tooling organisations give to their security analysts. According to the Cyenthia Institute, one in three SOC analysts are job hunting and according to the survey Vectra conducted at Black Hat 2018,…
San Francisco, CA, USA — Nearly 70 percent believe their cybersecurity teams are understaffed Organizations are struggling to keep their cybersecurity workforce staffed as competitors increasingly pick off employees who are enticed by higher pay and bonuses, according to ISACA’s new cybersecurity workforce research. The short supply of qualified cybersecurity professionals has led to unfilled positions and a widening work skills gap. A whopping 69 percent of respondents say their cybersecurity teams are understaffed. Part 1 of ISACA’s State of Cybersecurity 2019 report analyzes the trends of cybersecurity hiring, retention, gender diversity and budget implications. “Current Trends in Workforce Development” was released today…
It has been revealed that Facebook lets users search for people by their two factor phone numbers, a number which cannot be hidden from other users. https://twitter.com/ForbesTech/status/1102871376724180992 Expert Comments below: Jake Moore, Cyber Security Specialist at ESET: “At a time when tighter regulations around data privacy are in the spotlight, allowing anyone to search and connect a phone number to a Facebook account might seem a little out of date. Although two-factor authentication is a necessity for individuals in order to help protect their accounts from being hacked, allowing phone numbers to be searched on one of the world’s largest social databases may…
Following the news that researchers have been handed a seized server believed to be used by North Korean Hackers to launch dozens of targeted attacks last year, Corin Imai, senior security advisor at DomainTools, provides the following commentary. Corin Imai, Senior Security Advisor at DomainTools: “Being able to pinpoint where the malware campaign originated from is incredibly valuable information for the purpose of protecting critical national infrastructures. Attributing cyberattacks to specific groups is becoming increasingly difficult given the level of sophistication of the techniques they employ, but these findings are encouraging and will help to shed light on the interests of foreign actors. Governments…
Thomas Owen, Head of Security at Memset: What can users do to prevent themselves from becoming a victim? “Many of these exploits require vulnerabilities in the browser or Operating System, ensuring the user’s browser and OS are up to date (and have automatic patches) and running a reputable antivirus product will protect you from the majority of these issues. Browser plugins such as Web of Trust can also help warn you when attempting to visit a site that is known to be compromised or host malware. Lastly, general good hygiene is key – don’t routinely visit some of the less ‘reputable’…