Google is rolling out a sweeping redesign of its popular Gmail service, but federal cybersecurity authorities warn that a key new feature on the system could make its 1.4 billion users more susceptible to dangerous phishing attacks that compromise users’ vital personal information. The Department of Homeland Security issued an intelligence note, obtained by ABC News, warning users of the “potential emerging threat … for nefarious activity” with the new Gmail redesign. Because the new feature — called “Confidential Email” — requires users to click a link in order to access confidential emails, according to the DHS alert issued May…
ISBuzz Team
Today, even beginners and technical laymen can easily launch a DoS attack, using one of the many free attack tools that have been made available. The Anonymous group has been making its DoS programs publicly available for years. One of these is the Anonymous Ping Attack tool, which is available on the Clearnet and can be downloaded for free. It’s part of a set of tools that also includes tutorials, and enables any internet user to run denial-of-service attacks on any target of their choosing. The program’s name refers to ping attacks, a specialized type of DoS attack. Generally, the…
In an interesting bit of research, the experts at Comparitech.com took a look at sales of VPNs during the FIFA World Cup. In some cases, sales went up by 400% and another VPN provider reported to Comparitech.com a record number of sales. Top line findings were: More consumers are looking for how to watch the World Cup live online over 2014 More users are looking for and turning to VPNs to bypass geographic content restrictions When free live streams go down in a country, users are far more likely to try to turn to VPN services Following major sporting events like…
Despite 95 percent of CIOs expecting cyberthreats to increase over the next three years, only 65 percent of their organizations currently have a cybersecurity expert, according to a survey from Gartner. The survey also reveals that skills challenges continue to plague organizations that undergo digitalization, with digital security staffing shortages considered a top inhibitor to innovation. Andy Norton, Director of Threat Intelligence at Lastline: “To diligently counter intrusions, organisations need timely access to expertise in order to manage risk. The current levels of data breaches show that there is a significant amount of unmitigated risk due to the skills shortage and lack of appropriate…
Google being hit with a record fine from the European Commission Mark Skilton, of Warwick Business School, is Professor of Practice in Information Systems & Management, and researches and consults on the digital sector. Mark Skilton, Professor of Practice in Information Systems & Management, and researches and consults on the digital sector at Warwick Business School: “It looks like this time the fine will fit the ‘crime’ in this long running dispute of market dominance and manipulation. “Google has always been a contradiction, in that it is a market facilitator who also wants to control that market. Google claims that it…
According to a recent SANS report, less than half of cyberattacks were detected via anti-virus. Commenting on the report, Andy Norton, director of threat intelligence for Lastline, said: Andy Norton, Director of Threat Intelligence at Lastline: “Endpoint security and anti-virus solutions, are like gun laws, they should change, but they won’t. There are simply too many conflicts of interest on a production system, there will always be a trade off between productivity and security at the endpoint. “To diligently counter intrusions, organisations need to embrace adversary resistant AI analytics, to automate prevention and response countermeasures based on a coalesced array of signature, behavioural…
Antivirus systems only detected endpoint compromise 47% of the time; other attacks were caught through automated SIEM alerts (32%) and endpoint detection and response platforms (26%) according to the SANS 2018 Survey on on Endpoint Protection and Response. Justin Jett, Director of Audit and Compliance at Plixer: “The recent SANs 2018 Survey on Endpoint Protection and Response makes clear that point-security solutions are not enough to quell the ever-growing barrage of cyberattacks. Organizations should continue to deploy endpoint security, but with less than half of cyberattacks being detected by antivirus, organizations must deploy other platforms to detect and help remediate…
Insider threats can pose a serious risk to security. Yet out of approximately 250 professionals surveyed by Varonis1, as many as 24% have no breach detection capabilities and 40% are not able to detect when files containing sensitive data are created or accessed. Why are so many enterprises unprepared when they know their intellectual property is at risk every single day of being exposed or stolen by the very same people who are supposed to protect it? It’s certainly no small feat to develop an insider threat program, which is why it’s imperative to establish, enforce, and continually train employees…
How automation and orchestration optimise operations Programmability is critical in modern data centres and the cloud to support automation, orchestration, and standardisation. Security is the vital component that ensures applications and data are robustly protected to deliver value to business operations. Today, traditional network perimeters quickly dissolve when an organisation’s infrastructure begins to decentralise. Data now ‘live’ everywhere with multiple devices accessing applications located across data centres, private clouds and the public cloud. With an increase in surface area, cybercriminals can easily mount attacks. Across the world, CISOs, CTOs and their teams are struggling to keep up with an ever-changing…
Pravin Kothari, CEO of cybersecurity solution provider CipherCloud, today commented on news that LabCorp is investigating a data breach on its computer network that potentially putting millions of people’s sensitive personal information at risk: Pravin Kothari, CEO at CipherCloud: “The LabCorp data breach is yet another heavy blow in the continued assault on healthcare. Consider that LabCorp is one of the largest diagnostic laboratories in the world, and, as you may not be aware, is a very critical part of U.S. healthcare infrastructure. They have hundreds of networked labs across the United States and all of them are likely interconnected centrally with…