Following the news that NHS Digital is investing in a central cybersecurity unit with a team of ethical hackers. IT security experts commented below. Rob Bolton, Director and GM, Western Europe at Infoblox: “Our recent research found that 1 in 4 UK healthcare IT professionals do not feel confident in their organisation’s ability to defend against a cyberattack after the devastation caused by WannaCry, therefore the news that NHS Digital is investing in a devoted cybersecurity unit is incredibly welcome. The healthcare industry is currently facing major challenges that require it to modernise, reform and improve services to meet the…
ISBuzz Team
Despite fears, nearly 20% already own an IoT-ready vehicle Thales, a leader in critical information systems, cybersecurity and data security, announces new research revealing the security concerns UK consumers associate with connected devices, including cars. Surveying 1,000 consumers across the US and UK, the findings show that over half of Brits now own at least one internet-connected device, with wearable fitness trackers (24%), vehicles (18%) and smartwatches (16%) being the most common. Consumer considerations When asked to identify internet-connected devices which were most vulnerable to hacking, cars with integrated Wi-Fi or Bluetooth technology came second only to home security cameras…
It’s being reported that only a month after launching the Amazon Key, security experts are warning a flaw in the devices mode of operation could allow for rogue deliverymen entering homes without it ever being recorded- a potentially devastating security flaw. Adam Brown, Manager of Security Solutions at Synopsys commented below. Adam Brown, Manager of Security Solutions at Synopsys: “No amount of penetration testing, code scanning or other techniques to discover security bugs would have identified this. That’s because this is a design flaw and highlights the importance of conducting architectural risk analysis at the start of the design.”
Following the news about GDPR, IT security experts commented below. Jes Breslaw, Director of Strategy, EMEA at Delphix: “In a digital age, data privacy is a basic human right. With the clock counting down to the deadline for compliance with the EU’s General Data Protection Regulation (GDPR), businesses should be putting the final processes in place to provide the best, most efficient way of protecting customers’ most valuable assets – their data and identity. Regulators have given businesses enough time to get their house in order. They will now be itching to make an example of companies that have failed to show…
In response to the Chancellor’s Autumn Statement and the government’s spending plans to invest in the tech sector and our digital infrastructure, Chas Moloney, Director at Ricoh UK commented below. Chas Moloney, Director at Ricoh UK: “We welcome that the Chancellor reaffirmed his commitment to reinvest in the future, science and technologies and research and development (R&D). Whilst investing £500 million in new technologies such as robotics and artificial intelligence (AI) is positive, this has been a long time coming. By allocating a further £2.3 billion into the National Productivity Investment Fund, it’s clear that the government is reaping the rewards, and by…
Last year’s Black Friday saw more than a billion pounds being spent online and this year, McAfee research showed that a third of Brits (75%) are planning to buy gifts online. This means millions of people will be inputting personal and financial details to websites and apps such as name, address and card details. Following the news around the Uber hack over the last couple of days, security concerns are probably at the front of consumer minds at the moment. Nick Viney, VP Consumer, Mobile and Small Medium Business at McAfee, commented below on cshoppers acting frivolously with their personal information and explains why…
HANDD Business Solutions (HANDD), an independent specialist in global data security today shared six predictions on how it expects the world of technology, with a particular focus on information security, to evolve in 2018. Artificial Intelligence 2018 will be the year that Artificial Intelligence (AI) comes of age in cybersecurity terms. AI will grow in every area. The detection of insider threat is becoming artificially intelligent by monitoring the way in which people communicate and the growth in demand for an automated AI approach will continue. In 2017, we saw the likes of Wannacry create havoc across almost every market sector…
An increasing number of vendors have warned customers over the past weeks that their industrial networking products are vulnerable to the recently disclosed Wi-Fi attack method known as KRACK. The KRACK (Key Reinstallation Attack) flaws affect the WPA and WPA2 protocols and they allow a hacker within range of the targeted device to launch a man-in-the-middle (MitM) attack and decrypt or inject data. A total of ten CVE identifiers have been assigned to these security bugs. IT security experts commented below. Edgard Capdevielle, CEO at Nozomi Networks: “The KRACK malware, which attacks wireless devices, including industrial routers, access points and…
Significant updates provide actionable guidance to reflect new European personal protection obligations The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment, today released the CSA Code of Conduct for GDPR Compliance, which provides cloud service providers (CSPs), cloud customers, and potential customers with much-needed guidance in order to comply with the new obligations stemming from the European General Data Protection Regulation (GDPR). As part of this release, the CSA has also launched the CSA GDPR Resource Center, a new, community-driven website with tools and resources to help…
High-Tech Bridge, a global web security company, has launched an application discovery and inventory service named ImmuniWeb® Discovery that enables users to build an actionable and up2date application inventory. The free service, which is a part of the ImmuniWeb® Application Security Testing (AST) Platform, has been designed to reduce AST costs, minimize external attack surface and help achieve compliance and regulatory requirements. ImmuniWeb Discovery enables companies and organizations to maintain a comprehensive inventory and classification of their external web and mobile applications, as well as their APIs. The free service provides continuous and non-intrusive application discovery, leveraging a wide spectrum of reconnaissance and OSINT information gathering…
