In research released today, Barracuda have detailed findings showing that 70% of IT professionals told us they were more concerned about email security now than they were five years ago. Eyal Benishti, CEO & Founder at IRONSCALES commented below. Eyal Benishti, CEO & Founder at IRONSCALES: “It is unsurprising to see email security as a looming threat for IT Professionals; we know that phishing is a threat that remains alive and well for organisations. Over the years, phishing attacks have not only increased in frequency, but also in sophistication, and as a result they are becoming more and more difficult…
ISBuzz Team
A global survey of some 900 CIOs from 23 countries, including Ireland, found that nearly three quarters (72%) of CIOs globally have named corporate extortion and ransomware as the most significant risks to businesses, according to a survey by Logicalis. Following the threats of corporate extortion and ransomware, are attacks targeting corporate systems and application vulnerabilities (60%), followed by increasingly sophisticated social engineering attacks (58%), and identity and credential hijacking (43%). The old chestnut of malicious insiders was highlighted by less than a third (30%) of respondents. The survey found that one in three CIOs admitted that their concerns over security has led…
As you may have heard, Banco de Chile is the latest victim in a string of cyber attacks targeting payment transfer systems and in a similar vein to the recent Mexico heist, hackers wreaked havoc on banking operations. Ofer Israeli, CEO at Illusive Networks, believes the Lazarus Group, one of the most notorious band of cybercriminals, is behind this, using a variant of their highly complex KillDisk malware to distract attention from their key target. Ofer Israeli, CEO at Illusive Networks: “Targeting financial organizations is part of their long term strategy and compromising global financial networks via small to medium-sized banks in Central and South…
Driverless cars will soon be on our roads, whether we want them or not. In response to the discussion of whether we want these vehicles on our roads or not, David Emm, Principal Security Researcher at Kaspersky Lab UK commented below. David Emm, Principal Security Researcher at Kaspersky Lab UK: “It is only a matter of time until driverless cars are on our roads, and part of our everyday lives. While people may be quick to adopt this technology, they need to be aware of the safety concerns that autonomous vehicles present. Historically, driving has always been an aspect of life…
As part of our security experts comment series, Khash Sajadi commented below on the news that broke earlier today about an unprotected server exposing Weight Watchers internal IT infrastructure. Khash Sajadi, Security Expert at Cloud 66: “While there’s no substitute for best practices, good, not even great security practices could easily have prevented this issue from happening. Developers need access to the Kubernetes cluster all the time, to ensure there if the cluster is opened up no one forgets to close it. This can occur with firewalls too, but best practices are well-known in that space while in the Kubernetes world…
Ruchika Mishra commented on the news below that Chinese government hackers had breached a government contractor to steal sensitive information from the US Navy. Ruchika Mishra, Director of Product Marketing at Balbix: “Even an entity as highly regulated and classified as the federal government is not immune from the danger posed by third-party vulnerabilities. It is unfortunately common in the enterprise for a third-parties to be the entry points for attackers, so it makes sense that similar patterns would hold true for nation-states looking to breach their adversaries’ cyber defenses. Any organization’s security personnel must be absolutely clear about the relative values of…
Cybersecurity experts from CipherCloud, STEALTHbits Technologies, and Virsec today commented on the ENCRYPT Act (Ensuring National Constitutional Rights for Your Private Telecommunications), that would preempt state and local government efforts. The billwas introduced yesterday by Reps. Ted Lieu (D-Calif.), Mike Bishop (R-Mich.), Suzan DelBene (D-Wash.) and Jim Jordan (R-Ohio), to create a single, standardized national policy. Anthony James, CMO at CipherCloud: “The trend towards government access to your encrypted data has picked up speed. Many states within the U.S. are moving forward on policies that would essentially enable “back doors” into encrypted data sets. At the top of their well-intended agenda is…
Earlier today DHS assessment report revealed that commercial flight systems are vulnerable to hackers and cyberattacks are only ‘a matter of time’. The research is a continuation of analysis that was made after a group of security experts last year were able to remotely hack a Boeing 757 aircraft without the pilots knowing about it. Edgard Capdevielle, CEO at Nozomi Networks commented below. Edgard Capdevielle, CEO at Nozomi Networks: “The possibility of a cyberattack against commercial airline is not something new. However, one of the most worrying findings from the latest DHS report is that airplanes currently in use do not…
It has been reported that for the first time since Q2 2016, banking Trojans have displaced ransomware as the top malware in email, accounting for almost 59% of all malicious email payloads in Q1. Emotet was the most widely distributed banking Trojan, accounting for 57% of all bankers and 33% of all malicious payloads. Gerhard Oosthuizen, CTO at Entersekt commented below. Gerhard Oosthuizen, CTO at Entersekt: “Trojans are effective because they exploit weaknesses on different levels. Fraudsters often bait unsuspecting users to click on links in emails that seem to be legitimate, which lead them to a fake website or…
With recent news that PageUp has suffered a major data breach, Dr Guy Bunker, SVP of Products at data security company, Clearswift, commented below. Dr Guy Bunker, SVP of Products at Clearswift: “With GDPR enforcement now in operation, PageUp will be facing a fine of up to €20 million, or 4% of their global turnover, alongside all the other challenges that come with a data breach. “Reputational damage is always an issue with a data breach and it’s no different here. A number of customers have already suspended their job websites with PageUp, showcasing just how damaging a data breach can be for…
