On the breaking news that airports worldwide are implementing biometric technology to improve the efficiency of identity checks, please find a comment from Kaspersky Lab UK’s David Emm. In it, David identifies how attractive this is to cybercriminals and how serious a breach could be. David Emm, Principal Security Researcher at Kaspersky Lab UK: “The development of biometric technologies has given us the ability to use our bodies for authentication, which is increasingly stretching to travel hubs, such as airports. The major benefit, of course, is greater efficiency. However, the integration of biometric identifiers, such as fingerprint, iris and facial recognition, shouldn’t…
ISBuzz Team
Scam websites luring users to browser notification spam are becoming a popular method to promote unwanted extensions, fake software, adware bundles and more. Chris Olson, CEO at The Media Trust: “Domain spoofing shows no sign of abating in programmatic advertising. They can quickly make the leap from annoying to malicious. If anything, it’s a growing threat along with other forms of malvertising that are reshaping, if not expanding, the role of marketers to include identifying fraud and protecting their brand from misappropriation by unscrupulous online actors. As a growing number of malicious publishers cover their tracks by mimicking legitimate websites,…
Despite revelations that Facebook’s data breach could have affected up to 90 million users, will it, just like Tesco Bank, have its fine reduced for good behaviour? The social networking site disclosed the breach on Friday, ahead of the standard 72-hour window, and to a far tighter deadline than companies usually adopt. Cybersecurity expert and CEO of SonicWall, Bill Conner, has advised both the US and UK governments on cybersecurity matters and has this to say. Bill Conner, Cybersecurity Expert and CEO at SonicWall: “Despite the CEO’s previous testimony and efforts, today’s Facebook data breach is evidence that despite their size, investments and elite security teams, they are…
The story broke today that Apollo, a sales engagement startup boasting a database of over 200 million contact records from 10 million companies, has been hacked. Jacob Serpa, Product Marketing Manager at Bitglass: “For any company that boasts a database of 200 million contacts from 10 million companies, cybersecurity must be a top priority. If other organizations want to prevent breaches like the one experienced by Apollo, they must leverage advanced security capabilities built for the cloud. For example, they should employ multi-factor authentication to verify users’ identities more accurately, as well as contextual access control that can flexibly extend data access based…
After Musicians Dominated Last Year, Stars of TV, the Catwalk and the Silver Screen Return to Top the List NEWS HIGHLIGHTS Kim Kardashian is named the UK’s most dangerous celebrity to search for online according to McAfee study The study reveals which celebrities generate the most dangerous search results that could expose consumers to malicious websites and malware From Kem Cetinay to Britney Spears, celebrities in the top 10 include a variety of musicians, actresses, reality stars and a couple of Kardashians Reality television personality, entrepreneur and social influencer, Kim Kardashian replaced singer-songwriter Craig David as the most dangerous celebrity…
In light of the news that more UK households now own a smart speaker than a pet rabbit, David Emm, Principal Security Researcher at Kaspersky Lab commented below. David Emm, Principal Security Researcher at Kaspersky Lab: “We are becoming increasingly reliant on technology and why shouldn’t we? If a smart speaker can tell you the weather, news headlines and anything else you need to know right away, this is a sure-fire way to convenience consumers. With this being said, people need to be aware of the security implications of having a smart home. Everyone might want a new gadget, but the reality…
In response to the news that Facebook could face billions in fines for its recent data breach, please see below comments from Hitesh Kargathra, Lead Security Consultant at Falanx Group. Hitesh Kargathra, Lead Security Consultant at Falanx Group: “Organisations are being judged less on whether they have suffered a data breach and more on how these breaches are handled. Security is never going to be absolute for any organisation and cyber-attacks are becoming a fact of life, especially for high profile organisations such as Facebook. Following the identification of the breach, Facebook were quick to address the vulnerability, take steps to…
It has been reported that just weeks ahead of the US midterm elections, security experts are warning that America’s voting systems are still vulnerable to being hacked. Attackers could manipulate the outcome of November’s votes which will establish the support that President Trump has in Congress for the rest of his term, according to those warnings. Tim Mackey, Senior Technical Evangelist at Synopsys: “The 2018 DEFCON Voting Village report highlights a clear disconnect between the security of the devices delivered by vendors and security expectations we as citizens have on our voting systems. Basic best practice training we deliver to employees about setting strong…
Following today’s news that Bupa has been fined £175,000 by UK regulators for “systematic data protection failures” after an employee stole thousands of customers’ data and offered it for sale on the dark web, please see below for commentary from Fouad Khalil, Head of Compliance at SecurityScorecard. Fouad Khalil, Head of Compliance at SecurityScorecard: “This scenario is very typical. We are witnessing organisations (even ones with process maturity) having implemented quick and ineffective controls in an effort to speedily claim compliance with GDPR and other privacy laws. The disgruntled employee seems to have had more access than his job role…
Avast’s threat labs team have uncovered “the most sophisticated botnet that they have ever seen”, and it is targeting IoT devices. The new IoT malware strain/botnet labelled ‘Torii’ has spread over poorly secured Telnet services, with the attack coming from Tor exit nodes. The malware captures data from IoT devices and gives attackers remote code execution – allowing them to hijack infected devices, and run any command they choose. Sean Newman, Director at Corero Network Security: “The latest botnet, dubbed Torrii, cashing in on the rapidly expanding global pool of IoT devices may not be based on the ever-morphing Mirai code but,…