Consumers trust and expect businesses to keep their personal data safe. They take it for granted that organisations, especially large ones, have the resources to deliver business resilience; with the right protection and safety measures in place to stop their data from being stolen. However, government data released in 2017 showed that almost half of UK firms had been a victim of a cyber breach or attack in the previous year. And our latest research found that 40 percent of frontline IT workers throughout the UK believe their organisation is more exposed today, than it was a year ago, when the WannaCry…
ISBuzz Team
As reported by The Register, researchers based in Germany have discovered how to spoof certificates they don’t own – even if the certs are protected by the PKI-based domain validation. Though the group withheld the names of certificate authorities whose certs could be spoofed, Dr Haya Shulman, of the Fraunhofer Institute for Secure Information Technology, told The Register a “weak off-path attacker” can – using nothing more than a laptop – steal credentials, eavesdrop, or distribute malware using the method. Justin Hansen, Security Architect at Venafi: “While this attack is relatively complex to pull off, it demonstrates a fundamental problem with…
In an analysis of the first half of 2018, Kaspersky Lab has found that more than 40% of all industrial control system computers were attacked by malicious software at least once. Ross Rustici, Senior Director of Intelligence Services at Cybereason: “These findings are not surprising, as the spectrum of cyberattacks against utility providers and the profile of adversaries who target ICS environments are broadening. While ICS attackers linked to APT groups and nation-state actors are still targeting these systems, a greater variety of threat actors with a range of skills is also going after ICS environments. We’ve seen this directly in data collected from…
News broke late last night that 380,000 sets of critical information from BA customers had been stolen. The airline said personal and financial details of customers making bookings had been compromised. BA said the breach took place between 22:58 BST on 21 August and 21:45 BST on 5 September. IT security experts commented below. Mayur Upadhyaya, Managing Director, EMEA at Janrain: “The British Airways breach demonstrates the level of sophistication attackers are now capable of. One of the inherent challenges seen in the industry is dealing with non-brutish types of attacks (DDoS, bot, etc) and how these targeted attacks fit into your detection system. Another potential challenge,…
The giftcard/exchange system of the clothing chain C&A in Brazil has suffered a data breach at the hands of a hacking group known as Fatal Error Crew. Don Duncan, Security Engineer at NuData Security: “Hackers went for the gift card platform and were able to expose the ID numbers of gift cards, email addresses, the amount loaded onto the cards, order number, and date of purchase. What’s more interesting is that, based on the hacker’s statement, their primary goal was not to make money – in their statement they say that they “do not endorse financial crimes” – but to…
On September 7, 2017, Equifax disclosed the worst data breach in history. One year later, what have we learned? Pravin Kothari, CEO at CipherCloud: “One year after the Equifax breach, nothing has changed — our consumer data is still being hacked and exposed. The real lesson to be learned is that you can’t keep cyber attackers out. Most large enterprises still use the “defend a perimeter” strategy that fails with such great frequency as to be almost ineffective. It’s time to adopt a Zero Trust model, which assumes that every user, both inside and outside the network, is untrusted and hostile. Zero Trust employs technologies such…
In response to the news that British Airways has launched an “urgent” investigation and notified police after hundreds of thousands of customers’ personal and financial details were stolen, IT security experts commented below. Jake Moore, Security Specialist at ESET: “After a large scale incident like this, fraudsters from around the world will inevitably jump at the chance to try and catch a few unsuspecting people out. If you receive any emails purporting to be from this incident or such like mentioning it asking for any personal information or to click on unverified links, discard them. If your data is included in this…
A security researcher has warned that almost 400,000 websites are at risk from hacking and data theft via open .git repos and web security company High-Tech Bridge’s CEO Ilia Kolochenko commented. Ilia Kolochenko, CEO at High-Tech Bridge: “Many websites are vulnerable to similar misconfigurations, from default or bruteforceable passwords on FTP or admin panels, CMS reinstallation scripts, backups or a bit more recent problems like unprotected code repositories. Some of them are critical and can compromise the entire website and web server, others will just simplify or accelerate other attacks. Website owners are often busy with many things at once and consequentially forget…
Following the news regarding Google Chrome’s redesign introducing a password manager, Richard Archdeacon, Advisory CISO at Duo Security offers the following comment. Richard Archdeacon, Advisory CISO at Duo Security: “It is good to see that a password manager is being introduced into a browser. To step back, the issue with passwords is that often they are too simple and are used across different sites. Hackers can either guess or test against known lists of passwords using techniques, referred to as password spraying. This allows them to compromise an account once a password is known. There are a number of advantages to using a…
In NetLab 360’s blog it said that MikroTik routers were being compromised with malware. In its post it questioned why the attacker is paying attention to the network management protocol regular users barely use but didn’t have an answer. Sean Neman, Director of Product Management of Corero Networks commented below his thoughts as to what the aim of the attackers might be. Sean Newman, Director of Product Management at Corero Networks: “It’s hard to know what the true motive is, but Crypto-mining is a reasonable guess. With the current number of compromised devices estimated at 7,500, this seems a very small number…