WinMagic, a leading encryption solutions provider, today announced the launch of its latest software release, SecureDoc 8.2. Purpose-built for a new, unified approach to encryption and key management, SecureDoc 8.2 will enable industry-leading data security across endpoints, data centres, hyper-converged infrastructures and into the cloud – and view it all from a Single Pane of Glass. For over 20 years WinMagic has built and continually evolved SecureDoc Enterprise Server to meet the needs of evolving enterprises. From its early years as a full disk encryption provider to a recent shift into protecting virtualised and cloud environments, WinMagic is constantly improving…
ISBuzz Team
The Middle East and Asia have become the new hunting ground for malicious APT activity, with hackers using new techniques to target organisations according to new research. It was revealed that there had been a surge in the activities of Chinese-speaking hackers targeting government entities mainly in Taiwan and Malaysia, and CardinalLizard, which in 2018 increased its interest in Malaysia alongside an existing focus on the Philippines, Russia, and Mongolia. Chris Doman, Security Researcher at AlienVault commented below. Chris Doman, Security Researcher at AlienVault: “Asia is certainly a heavily targeted region, but this has been the case for a number of…
It’s usually wrong to judge people by their names, but an organisation that calls itself “Snake” probably isn’t up to much good. Citing unidentified security sources, DPA reported that Snake is the group suspected of carrying out a sophisticated and successful attack on the government’s computer network. As always, it’s difficult to be completely certain who exactly is behind a well-executed cyberattack, but this is believed to be connected with Russian intelligence, which has targeted government organisations in Ukraine, Europe and the US for most of the last decade. What does this new attack tell us, other than confirming Russian hackers’ penchant…
LocalBlox, a company that scrapes data from public web profiles, has left the details of over 48 million users on a publicly accessible Amazon Web Services (AWS) S3 bucket. IT security experts commented below. Christopher Littlejohns, EMEA Engineer at Synopsys: “Whilst this data breach has strong similarities to multiple other AWS misconfiguration issues that resulted in data breaches, and the data was “publicly available”, the data captured was interesting in that it consolidated personal information scraped from thousands of web sites. The net result is that it made it easy for an attacker to gain access to a pool of data that would be valuable for subsequent social engineering attacks, account…
DDoS attacks can cost enterprises $50,000 (£35,000) per attack – but lost revenue is still only considered to be the fourth most damaging consequence of this type of cyber-attack, according to research published today by Corero Network Security (LSE: CNS), a leading provider of real-time DDoS defense solutions. The Corero research surveyed over 300 security professionals from a range of industries including financial services, cloud, government, online gaming and media sectors. An overwhelming number of respondents (91%) said that individual DDoS attacks can cost their organisations up to $50,000 in terms of lost business, the cost of mitigating attacks and lost productivity.…
In light of the news surrounding the UK Data Watchdog fine for Kensington and Chelsea council following the Grenfell data breach, Jon Fielding, Managing Director, EMEA at Apricorn commented below. Jon Fielding, Managing Director, EMEA at Apricorn: “This was obviously an honest mistake compounded by the tragic circumstances surrounding it. However, it does serve as a reminder that both public and private sector organisations must get a handle on both their data and the processes around it in advanced of GDPR compliance being enforced next month. GDPR broadens the definition of personal data whilst extending the rights that…
Organisations are getting much better at stopping cyber-attacks, but still suffered on average 30 security breaches last year, causing damage or data loss, according to Accenture. It found that 87% are now preventing “focused” attacks, up from 70% last year, but that still leaves 13% of online raids penetrating defenses. Dr Anton Grashion, Managing Director, Security Practice at Cylance commented below. Dr Anton Grashion, Managing Director, Security Practice at Cylance: Q.What surprises you the most about the findings from this research? A.The most surprising finding is the increase in detection rates. We routinely find malicious code residing in organisations that has had a dwell time in…
Identity fraud hit an all-time high, with almost 175,000 cases in 2017, according to a new report from Cifas that was released today. Lisa Baergen, Director at NuData Security, a Mastercard Company commented below. Lisa Baergen, Director at NuData Security: “Financial fraud offers a lucrative source of income for cybercriminals, with 4.7 million fraud incidents last year. With such tempting promise of high reward and low prosecution rates, emboldened cybercriminals and have grown in their sophistication, exploiting the human-interest factor by posing as banks or suppliers and then duping consumers into revealing their personal details. These scams have also proved effective in targeting commercial organisations,…
CenturyLink tracked 104 million unique botnet targets per day in 2017 Businesses, governments and consumers should pay more attention to the risk posed by botnets, according to a new threat report released by CenturyLink, Inc. (NYSE: CTL). In 2017, CenturyLink Threat Research Labs tracked an average of 195,000 threats per day impacting, on average, 104 million unique targets – from servers and computers to handheld or other internet-connected devices – due to the work of botnets. “Botnets are one of the foundational tools bad actors rely on to steal sensitive data and launch DDoS attacks,” said Mike Benjamin, head of CenturyLink’s Threat…
TaskRabbit, a web-based service that connects freelance handymen with clients in various local US markets, has emailed customers admitting it suffered a security breach. The company has taken down its app and website while law enforcement and a private cyber-security firm are investigating the incident. IT security experts commented below. Tim Helming, Director of Product Management at DomainTools: “This is an indication of how comprehensively nefarious actors can interfere with business functions–and potentially harm users. To take control of a website and expose such trusted resources as TaskRabbit’s GitHub repository, as well as daily transaction volumes and information regarding employees, the threat…
