Earlier today news broke that British banks and other financial services will have 3 months to explain how they can avoid damaging IT breakdowns and respond to the growing threat of cyberattacks. Leo Taddeo, Chief Information Security Officer at Cyxtera, and Former FBI Special Agent: “There are good reasons to worry about a nation-state or “hacktivist” cyberattack on the financial sector. In 2012, U.S. banks suffered a series of significant dedicated denial of service (DDoS) attacks by Iranian state actors. While it’s important to build resilience, enterprises also need to stay ahead of the threat by continuously monitoring all available sources, including social media and dark web sites.”
ISBuzz Team
Earlier this morning, news broke that British spies are on high alert for President Putin to launch another targeted assault on UK infrastructure — or even order a fresh assassination attempt. Andrew Lloyd, President at Corero Network Security: “I can’t imagine that Russia or indeed England are going to enjoy being eliminated from the competition.There is the prospect of a Russia vs. England semi-final. Again, I could imagine that the sore losers from that may look to vent their frustrations. “The World Cup connection apart, this just continues the frequent assertion by politicians and government security agencies that Nation State (sponsored)…
Analysts Will Explore the Trends Security Leaders Face During the Gartner Security & Risk Management Summit, 10-11 September 2018, London, UK Business leaders are becoming increasingly conscious of the impact cybersecurity can have on business outcomes. Gartner, Inc. said that security leaders should harness this increased support and take advantage of six emerging trends, to improve their organisation’s resilience while elevating their own standing. Trend No. 1: Senior Business Executives Are Finally Becoming Aware That Cybersecurity Has a Significant Impact on the Ability to Achieve Business Goals and Protect Corporate Reputation IT security is a board-level topic and an essential part of any solid digital…
British banks and other financial services firms were given three months on Thursday to explain how they can avoid damaging IT breakdowns and respond to the growing threat of cyber attacks. IT security experts commented below. Mark James, Security Specialist at ESET: “Banks and their customers are under continuous attack from cybercriminals because cybercrime is motivated by money and a successful attack against a bank is essentially almost like hitting the ‘cybercrime jackpot’. To protect against these attacks, banks should deploy security with multiple protective layers over their systems, and ensure operating systems and all other software are kept fully…
HMRC has requested the takedown of more than 20,000 malicious websites in the past 12 months, but has warned organisations and the public to remain vigilant. The crackdown on scams and malicious sites has seen a 29% increase in the number of takedown requests made last year – 20,750 against 16,069 between June 2016 and 2017 – according to figures released by the department. Tim Helming, Director of Product Management at DomainTools commented below. Tim Helming, Director of Product Management at DomainTools: “It is of course good news that HMRC are taking the fake websites who target them as seriously as possible. The…
Over the last several years, cybersecurity regulations (like NYDFS and GDPR) have placed pressure on the financial services industry to build and enforce some of the strongest risk management programmes across any industry. These programmes focus not only on internal security performance, but also on managing third party risk. Financial service organisations are both highly regulated and handle extremely sensitive personally identifiable information (PII), and as a result typically have higher security budgets when compared to other industries. Financial services companies also tend to perform towards the higher end of the scale from a cybersecurity perspective. Leveraging data from BitSight Sovereign…
Kaspersky Lab products have detected new malicious samples related to the infamous Trojan family Trojan-Ransom.Win32.Rakhni. The main feature of the malware is that it can choose how to infect its victims – either with a cryptor or with a miner. According to our researchers, the malware primarily targets companies rather than ordinary users, and is mainly spread throughout Russia (95.57%). It also has a presence in Kazakhstan (1.36%), Ukraine (0.57%), Germany (0.49%), and India (0.41%). Over the past year alone, more than 8,000 users have been attacked by Trojan-Downloader.Win32.Rakhni Trojans. The distribution of the malware is implemented through spam emails…
Since the early days of computing, passwords have long been used as a method of identity authentication. However, there is one fundamental flaw in this method of identity authentication; as times have changed, passwords haven’t and they are now no longer enough when it comes to both user experience and security. In fact, towards the end of last year, researchers from Google looked into the black market and found millions of usernames and passwords that had been stolen, as a result of cybercriminal activity. Upon closer inspection, the tech giant also uncovered billions of passwords that had been indirectly exposed,…
The cryptocurrency heists soaring as hackers steal £577m in six months and briefly: a record amount of cryptocurrency has been stolen from online exchanges in the first half of 2018 cybersecurity start-up CipherTrace said that the amount of cryptocurrency being stolen and used in money laundering in the first half of 2018 was already three times the amount stolen in the whole of 2017 company said that it had found that $761m (£577m) had been laundered since the start of the year from cryptocurrency exchanges for all of 2017, the company found that $266m was stolen. Ilia Kolochenko, CEO and founder of…
Google has published a new blog post in response to news earlier this week that detailed how common it is for third-party app developers to be able to read and analyze the contents of a user’s Gmail message. While not offering any substantially new insights into the industry practice, now understood to be quite widespread, Google does outline measures a user and business organization using G Suite can do to protect their privacy and security. Javvad Malik, Security Advocate at AlienVault: “There has been no evidence to support the assertion whether or not a 3rd party has been able to, or…