The evolution of cyberthreats calls for evolution in cybersecurity The latest trends in cybercrime have seen it all — advanced exploits allegedly developed by high-profile threat actors used in massive ransomware attacks, creativity of spam and phishing attacks on trending topics, and attacks relying heavily on social engineering or legitimate software used as cyber weapons. This evolution of cyberthreats calls for evolution in cybersecurity. The new Kaspersky Endpoint Security for Business is another landmark in this journey: more next generation detection with dynamic machine learning, increased visibility and granular security controls including vulnerability management, credentials protection and integration with EDR. Next generation…
ISBuzz Team
Following news that the Government are launching a new cybersecurity centre at London’s Olympic park. They hope the new centre will be a catalyst for growing tech cluster and could help create 2,000 UK jobs in cybersecurity. IT security experts commented below. Paul Farrington, Director, EMEA Solution Architects at CA Veracode: “We are pleased to see the Government continuing to invest in cybersecurity skills in the UK. With news today that cyberattacks against UK organisations are at an all-time high, the need for greater expertise will be crucial in securing the nation’s data and services. However, it is important that industry…
The findings from the annual report of the National Cyber Security Centre today revealed that UK businesses are facing a growing threat from cyber-attacks. In response to this, please see comment below from David Emm, Principal Security Researcher at Kaspersky Lab commented below. David Emm, Principal Security Researcher at Kaspersky Lab: “Businesses come in all shapes and sizes, but in today’s world, no organisation, large or small, can afford to ignore online security. Whether you’re a team operating out of an office, or an individual working from home, cybersecurity is an issue that every business should prioritise. In light of the recent findings…
A number of cars have been identified as the most vulnerable to have their key fobs hacked in ‘keyless’ car thefts. The method involves using two relatively-cheap devices to ‘trick’ a vehicle into thinking its entry fob is nearby. Art Dahnert, Managing Consultant at Synopsys commented below. Art Dahnert, Managing Consultant at Synopsys: “A relay box is used to capture and re-transmit the radio signals of a modern vehicle key in order to fool the vehicle into thinking that the key is in near proximity to the vehicle. Often the key is far enough away from the vehicle when the owner parks it and goes…
Ransomware attacks double since 2017, and now target business critical systems Ransomware is the more prevalent variety of malicious software, found in 39 percent of malware-related cases. Human factor continues to be a weakness: financial pretexting and phishing attacks now target Human Resource (HR) departments. 11th edition of the DBIR includes data from 67 contributing organizations, with analysis on over 53,000 incidents and 2,216 breaches from 65 countries. NEW YORK: Ransomware attacks are a key cybersecurity threat for global organizations, warns Verizon’s 2018 Data Breach Investigations Report(DBIR). It is the most common type of malware, found in 39 percent of malware-related…
92% of UK enterprises have a digital transformation strategy, but current IAM solutions are unable to connect cloud and on-premise end-points to help simplify complex corporate networks Digital transformation is a much-hyped business buzzword, driven by the adoption of cloud IT services around the world. This hype has seen enterprises scramble to become more digitally agile in a fight to stay competitive. In fact, a new study by OneLogin, the industry leader in Unified Access Management, reveals that 92% of UK enterprises have developed a digital transformation strategy, with over two-thirds of those surveyed expecting to deploy up to 100…
Verizon’s latest Data Breach Investigation Report was made public earlier this week. This report contains a number of topline observations regarding the growth in ransomware, the fact that many security breaches are driven by organised crime, etc. Rashmi Knowles, Field CTO for RSA Security, commented below focusing specifically on this access and ID element of the story. Rashmi Knowles, Field CTO, EME at RSA Security: “The use of stolen credentials has been the most successful attack method according to this year’s DBIR, which suggests the biggest struggle for enterprise is still identity and access management. Caches of credentials are available for pittance…
Ahead of UK home secretary Amber Rudd’s speech this afternoon on a planned crackdown criminals using the dark web, Ross Rustici, Senior Director, Intelligence Services at Cybereason commented below. Ross Rustici, Senior Director, Intelligence Services at Cybereason: “The UK is a little different than the US in the fact that GCHQ has a mandate to address child pornography in addition to national security concerns, so the headlines are a little misleading. It isn’t 14 million to start dealing with this issue, it is 14 million to focus on a very specific task. Is it enough? No. Is it better than…
Yesterday, Great Western Railway sent a number of password reset email notifications to its customers, in response to it becoming aware of “unauthorised attempts to gain access to a small number of GWR.com accounts over the past week”. GWR customers have shared screen grabs of the email notification on Twitter. GWR has since confirmed in interview that circa 1,000 accounts were affected. Rashmi Knowles, EMEA Field CTO at RSA Security and expert in data protection and end-user security, implores customers to take heed of the advice from companies like GWR and reset their passwords – commented below. Rashmi Knowles, Field CTO, EMEA at RSA Security: “It is good to see…
Employees download malicious files, click phishing links, correspond with hackers, and even share contact information for their colleagues. Positive Technologies has released a new report Social Engineering: How the Human Factor Puts Your Company at Risk, with statistics on the success rates of social engineering attacks, based on the 10 largest and most illustrative pentesting projects performed for clients in 2016 and 2017. To verify the security of corporate systems, Positive Technologies testers imitated the actions of hackers by sending emails to employees with links to websites, password entry forms, and attachments. In total, 3,332 messages were sent. If the “attacks” had…
