Once there was a little girl named Goldilocks who used cloud computing. Starting out she launched a C5.18xlarge instance but at over $3.00 per hour, she realized it would cost more per month than the rent of her little cottage in the woods. Next she tried a t2.nano, but try as she might, 500 meg of memory was not for the Photoshop work she wanted to do on her photo library, comprised of montages of her friends the three bears. Then Goldilocks fired up an m4.medium, it did the trick, with multiple cores, and enough memory to run here Iheartporridge.com…
ISBuzz Team
Hackers are opportunistic by nature. As device manufacturers continue to add more CPU cores and gigabytes of RAM to smartphones and tablets as well as enterprise-grade cloud servers, these devices will continue to be increasingly useful targets for botnets. What’s more, hackers will seek device vulnerabilities or exploit mobile applications and devices when a network is insecure. Ransomware took the dark web by storm by creating an easy way for relatively unskilled hackers to monetize these vulnerabilities. As a side-effect, the cryptocurrency market exploded from the increased attention. And now, developers are looking for ways to make money in a…
Following the announcement of the government’s new internet safety strategy to send children who are at risk of online grooming automatic alerts, David Emm, Principal Security Researcher at Kaspersky Lab commented below. David Emm, Principal Security Researcher at Kaspersky Lab: “Children and young people are inherently vulnerable and at risk of danger when using the internet or connected devices. Whilst many government officials have highlighted this issue, little has been put in place to combat it and a viable and realistic solution has not yet been found. This threat is particularly real given that the average child spends over 4…
Siemens has issued a patch for its SIMATIC S7-300 and S7-400 families of programmable logic controllers (PLCs)—industrial control systems used to remotely monitor and operate manufacturing equipment. This is in response to a year-old product vulnerability warning originally issued in December of 2016 and recently updated to include another version of the S7-400 line. The controllers were vulnerable to remote attacks that could allow cybercriminals to obtain login credentials to the system or reset it into a “defect” mode, shutting down the controller. Andrea Carcano, Co-Founder and Chief Product Officer commented below. Andrea Carcano, Co-Founder and Chief Product Officer: “These…
Office of National Statistics (ONS) has just released its latest fraud and cyber crime statistics, which analyse data up to September 2017. The results show an improvement for consumers, and suggest that cyber criminals are turning their attention to organisations, which are more profitable. Key findings include: Offences involving computer misuse against consumers showed a 24% decrease from last year’s survey, due to a fall in consumer targeted viruses However, Action Fraud, which include businesses in their data, reported a significant rise of computer misuse by 63%, with cases involving computer viruses rising by 145% (citing major attacks such as WannaCry…
More than a third of all global organizations suffered a breach in 2017 according to the 2018 Thales Data Threat Report. Michael Patterson, CEO at Plixer commented below. Michael Patterson, CEO at Plixer: “With over one third of organizations reporting that they have been breached, and 44% of IT leaders feeling vulnerable, all organizations must come to realization that breaches are inevitable. Prevention strategies have failed. Organization must supplement their current security products with effective incident response technologies and processes. Network traffic analytics, as an example, gathers information relating to every conversation that occurs over the network, and delivers the…
In corporate cybersecurity, UEBA (user and entity behavior analytics) systems are starting to look more like a stray bullet than a magic bullet. Glowing endorsements marked the rise of UEBA tools, which analyze users’ actions and network activity to detect cyberthreats. “Over the next three years, leading UEBA platforms will become preferred systems for security operations and investigations at some of the organizations they serve,” Gartner and industry analyst Avivah Litan proclaimed in 2015. UEBA systems are built on an admittedly strong premise. As they were in 2015, when UEBA took the security world by storm, insider threats continue to be businesses’ top cybersecurity…
2017 was another watershed year for cybersecurity. The breaches at Equifax and Yahoo! stand out for their size, but the more troubling development is how much more targeted attacks have become. The HBO attack showed us that hackers are willing to focus on valuable intellectual property or private conversations and hold them hostage for a hefty ransom. The continued attention on the Democratic National Committee hack also revealed that hackers have political agendas that can transcend financial motives. Perhaps one of the most pernicious attacks of 2017 fell off the radar, though. Hackers targeted offshore law firms and stole information…
In a new blog post researchers from ESET researchers reveal that that the authors behind the infamous Dridex banking trojan are also behind the high-profile, sophisticated ransomware variant FriedEx. The ransomware was discovered in early July 2017 by Michael Gillespie. In August, it returned to the spotlight and made headlines by infecting NHS hospitals in Scotland. FriedEx focuses on higher profile targets and companies rather than regular end users and is usually delivered via an RDP brute force attack. The ransomware encrypts each file with a randomly generated RC4 key, which is then encrypted using the hardcoded 1024-bit RSA public key. In December 2017,…
Earlier today, the Office for National Statistics (ONS) released its latest report. The analysis of fraud and computer misuse shows that this type of crime is more prevalent than many traditional crimes, with data for the year ending September 2017 showing individuals to be 10 times more likely to be a victim of fraud and computer misuse than a victim of theft from the person and 35 times more likely than robbery. Don Duncan, Director at NuData Security commented below. Don Duncan, Director at NuData Security: “It’s reassuring to see cybercrime and fraud stats included in the annual national crime figures. I’m hopeful that…
