Blizzard Entertainment, a gaming company with such offerings as Overwatch, Heroes of the Storm, World of Warcraft, was plagued last weekend by a series of Denial-of-Service attacks that caused lag time for some players and prevented others from logging in. Sean Newman, Director of Product Management at Corero Network Security: “Most services available on the Internet today are vulnerable to DDoS attacks and online gaming is no exception. With the chance for gamers to often get an unfair advantage by blocking their adversaries from playing, the motivation for launching attacks against these platforms is high. For the providers that host…
ISBuzz Team
Timehop has revealed that more even more data had been stolen that originally thought in their breach. Timehop admitted that in their haste to report the incident, they did not have all the facts of the breach at that time. Timehop’s efforts will be reviewed now that GDPR has been instituted. Chris Olson, CEO at The Media Trust: “The GDPR regulators will likely take into account Timehop’s efforts to self-report the breach when they calculate the penalties, but they might take issue with a few things: 1.Did Timehop put in place sufficient security measures? For starters, the attacker gained access…
In Australia yesterday, as reported by abc.net.au, a third party supplier of airport security ID cards was hacked. The breach isn’t necessarily big in number, but it’s serious in terms of airport security as the ID cards are designed to stop criminals or terrorists from accessing planes and other restricted airport zones. Australia’s airports and the people who work at them are considered some of the most sensitive elements of Australia’s national security infrastructure. Pravin Kothari, Founder and CEO at CipherCloud: “In any context, the Aviation ID Australia data breach is a risk for airport security. The cyber attackers may have access to…
A new report from Check Point suggests that the number of companies who have fallen victim to malware which focuses on crypto-mining has double over the last year. Andy Norton, Director of Threat Intelligence at Lastline: “Cryptocurrencies like Monero have really opened the door for botnet operators to create this trend. Monero brought two key things to the criminal arsenal: Firstly it uses the cryptoknight algorithm which is suitable to mine coins on everyday devices, and secondly it uses ring signatures which offer complete anonymity to botnet miner. Recently the botnet operators started adding tried and trusted malware evasion techniques to the mining payloads…
A recent survey, carried out by industry body EEF, revealed that almost half of UK manufacturers have been victims of a cyber-attack. Indeed, of the 48 percent that reported being subject to a cyber-security incident, half had suffered some degree of financial loss or disruption to their business as a result. Worryingly, 45 percent of respondents to the survey felt that they did not have the right tools at their disposal to deal with a cyber-attack and its fallout, and more than one in ten admitted to not having the necessary technical or managerial processes in place for either assessing or…
In response to the news that 12 Russian hackers have been indicted on charges of hacking the Democratic National Committee and the Clinton presidential campaign in 2016, Richard Ford, Chief Scientist at Forcepoint commented below. Richard Ford, Chief Scientist at Forcepoint: “We shouldn’t be distracted by talks of how they did this or why but instead – how will the international community respond to these types of asymmetric attacks that impact the very core of our democratic process? While an indictment is a nice gesture, it has little real consequences beyond drawing yet more attention to the issue. Cybersecurity knows no…
Francesco Giarletta, CEO of Avanite, examines the potential security issues that simple web browsing data can cause and how web data bloat can be reduced Whenever a user visits a website, data is created, downloaded, and stored. Some of this data is useful; it enables us to get the rich browsing experience we expect from the sites we visit. But as web sites and web applications become increasingly connected and complex the amount of browsing data also grows, quickly reaching a point where computer performance is impacted. What’s more, that data in browsing databases can include highly sensitive information putting…
IBM and the Ponemon Institute are out with a new study: Hidden Costs of Data Breaches Increase Expenses for Businesses – Study for First Time Calculates the Full Cost of “Mega Breaches,” as High as $350 Million. Among key findings: Average cost of a data breach of 1 million compromised records is nearly $40 million dollars At 50 million records, estimated total cost of a breach is $350 million dollars The vast majority of these breaches (10 out of 11) stemmed from malicious and criminal attacks (as opposed to system glitches or human error) The average time to detect and contain a mega…
A recent survey by the Bank of England revealed that cyber-attacks were the joint second most cited risk to the stability of the UK financial system. The proportion of respondents that named cyber-attacks increased for the third consecutive survey to a new record high of 62 per cent – an increase of five per cent. Furthermore, an increase of five per cent listed cyber-attack as the risk most challenging to manage, according to Bank of England – Systemic Risk Survey Results – 2018 H1¹ Against this background of increased threats to cybersecurity, and continually strengthening legislation concerning data security, it…
Cybercriminals are using everything from everyday devices like USBs to vulnerabilities in networks, servers, browsers, websites and even employees to infiltrate the supply chain. Matan Or-El, CEO and Co-founder at Panorays: “Other supply chain attacks include targeted attacks against those suppliers storing and processing information for an organization on its behalf. For example, an outsourcing law firm may hold a company’s sensitive and confidential information such as M&A-related documents, sales transactions and financial health statements. An attacker may decide to attack them to retrieve that information and sell it to competitors, other data seekers and even for insider trading information.…