Following research from Thales eSecurity that has revealed that 50 per cent of US retailers have experienced a breach in 2018, up from 19 per cent last year, Ross Rustici, Senior Director of Intelligence Services at Cybereason, explains why this increase has occurred. Ross Rustici, Senior Director of Intelligence Services at Cybereason: “This jump is most likely a result of two district trends. First, more retailers are rapidly expanding their use of IT to support their business which creates new risk that is a relative unknown to the organization. Second, last year was underreported. As these companies move to more comprehensive data and…
ISBuzz Team
WhatsApp Messenger, Facebook Messenger, and Waze topped the list as the riskiest apps most often found in the enterprise according to the latest report by Appthority. Employees using those apps may pose an even great threat. Chris Olson, CEO at The Media Trust: “The Appthority report underscores the risks that insider threats can pose to a company. While data breaches that grab headlines are often perpetrated by external threats, at least half of all security breaches are carried out by insiders–from malicious insiders, to negligent employees, to third parties. What’s more, insider threats are harder to detect or prevent on…
In response to the latest reports on the Amazon’s downtime during this week’s Prime Day including estimates that the outage potentially resulted in ~$75 million in lost sales and was comparable to a self-invited DDOS) attack, Corero Network Security offers comments. Sean Newman, Director Product Management at Corero Network Security: “Although Amazon appears to have been a DDoS victim of its own making, this just goes to show how even an organization with such immense resources can still be vulnerable to denial of service attacks. And, when you look at the estimated potential financial impact of this, it’s not difficult to understand why…
The notorious hacker group, MoneyTaker, has stolen roughly $1 million from a Russian bank after breaching its network via an outdated router. Ken Hosac at Cradlepoint discussing how SDN can prevent this issue. Ken Hosac, VP of IoT Strategy & Business Development at Cradlepoint: “Software-defined Networking (SDN) enables IoT devices, such as routers, to be deployed on a completely separate network (virtually) that is invisible to the outside world. Traditional networks utilise a “connect first, authenticate second” model that allows hackers to scan networks for devices and their ports using common hacking tools. Those same hacking tools are then used…
Research has been released identifying San Diego International Airport, John Wayne Airport-Orange County (CA) International Airport and Houston’s William P. Hobby International Airport as America’s most cyber insecure airports. Commenting on the news and offering advice to travellers is Lane Thames, Senior Security Researcher at Tripwire. Lane Thames, Senior Security Researcher at Tripwire: “When traveling, there are always security risks to take into consideration for connected devices even when at the airport. Before you leave a secure environment, check your device’s software is up to date and consider removing older applications that you no longer use. It’s common for airports to have public…
It has been reported that cloud-based human resources company ComplyRight said this week that a security breach of its Web site may have jeopardised sensitive consumer information — including names, addresses, phone numbers, email addresses and Social Security numbers — from tax forms submitted by the company’s thousands of clients on behalf of employees. Florida-based ComplyRight began mailing breach notification letters to affected consumers late last week, but the form letters are extremely vague about the scope and cause of the breach. Ryan Wilk, Vice President at NuData Security: “One of the many dangerous things about breaches is the amount of time it takes for companies and…
An expert in IoT security offers perspective on findings by (published on Twitter) by Ankit Anubhav, Principal Researcher at NewSky Security, that login passwords for tens of thousands of Dahua DVR devices have been cached and indexed inside search results returned by IoT search engine ZoomEye. Related: CVE-2013-6117. Sean Newman, Director Product Management at Corero Network Security: “Reports of passwords for thousands of public Internet-facing DVRs being exposed by the ZoomEye search engine, further highlight how connected device vulnerabilities can go unpatched for many years. In this case, a vulnerability from 2013 is being openly leveraged to extract admin passwords for the systems.…
News broke that a cyber espionage campaign is targeting the Ukrainian government with custom-built malware which creates a backdoor into systems for stealing data – including login credentials and audio recordings of surroundings. The remote access Trojan is called Vermin and is delivered alongside two other strains of malware – Sobaken RAT and Quasar RAT – the latter of which is an open source form of malware freely available online. Liron Barak, CEO and Co-founder at BitDam: “Most of the end-points inside and outside organization are not fully patched and therefore they are still vulnerable. This attack is an example of…
Following are main findings of latest CheckPoint Cyber Attack Trends: Mid-Year Report 2018: A 100% increase in organizations who reported being hit by cryptomining malware which hijacked CPU power in 1H:18 vs 2H:17; The three most prevalent exploits in 1H:18 were each cryptominers; New techniques are evolving to attack cloud storage services; and Multi-platform attacks increased, targeting consumer mobile and non-Windows devices. Sean Newman, Director Product Management at Corero Network Security: “The latest threat report on the block, this time from Check Point, shows no sign of abatement when it comes to botnets being a tool of choice for cybercriminal campaigns. The…
Action Fraud has warned of scams which register domains which look similar to UK Universities, attempting to trick supply companies out of vast sums of cash – up to £350,000, reportedly. Andy Norton, Director of Threat Intelligence at Lastline: “This is a pretty low tech attack where the criminal sets up lookalike domains to the University, the premise is similar to a Business Email Compromise attack, except that, impersonation not compromise has taken place. The best defence for organisations Is to have robust policies and procedures that ensure a second pair of eyes validates business transactions and the shipment of goods, services or…