We all know that the cybersecurity landscape is constantly changing. Amid a backdrop of constantly evolving technology, attack methods and tools with which to protect our data, the situation has only become more complex. For all their additional complexity, businesses have accepted the reality that to remain competitive, they must embrace new technology with open arms, but it often comes at great expense. For example, although businesses abstaining from adopting new opportunities will find themselves stuck in the digital Stone Age, the ones who are entrenched in the world of cloud and mobile applications have to understand that these platforms…
ISBuzz Team
News broke overnight that Google are adding three new features to Google Chrome in order to block websites that redirect users to new URLs without user or website owner consent, landing a massive blow for security professionals against malvertising campaigns. IT security experts commented below. Lisa Baergen, APR, MCC, Marketing Director at NuData Security Inc.: “The news that an estimated quarter million logins are stolen each week serves as a wake-up call on many levels. Gmail and the Google Platform are deeply interwoven into corporations and consumers’ lives – one minor example is the number of people who are likely to have used their work email addresses to verify a new Gmail…
A new survey of contact centre agents conducted by Semafone reveals the dire state of contact centre data security. Drawing responses from more than 500 agents across industries around the globe, the survey shows that a concerning number of contact centres rely on outdated, risky practices for customer interaction, data collection and fraud prevention. This exposes organisations to inside and outside security threats, and puts sensitive customer information at risk. “Our survey confirms that many contact centres are still using inadequate practices when capturing, processing and storing payment card data and other personally identifiable information (PII),” said Tim Critchley, Semafone…
By Michael Fimin, CEO and co-founder of Netwrix, the provider of visibility platform for user behavior analysis and risk mitigation in hybrid environments According to the Verizon 2017 Data Breach Investigations Report (DBIR), ransomware was the top malware variant in Crimeware category in 2016. That trend is likely to hold this year. For example, the headline-making WannaCry ransomware attack, which will probably be marked as one of the greatest cyber attacks of the year, hit over 150 countries and affected hundreds of thousands of organizations worldwide. Although the WannaCry attack seems to be contained, its success has inspired other hackers to jump…
As more information breaks on the Paradise papers story, Ilia Kolochenko, CEO at web security company, High-Tech Bridge commented below, who is an application security and cybercrime expert, member of Forbes Technology Council and currently pursuing his Master of Legal Studies degree. Ilia Kolochenko, CEO at High-Tech Bridge: “Seems that this is another major hacking case where intruders won’t be found and prosecuted. Notwithstanding the allegations of wrong-doing offshore, a crime cannot be justified by investigation of unlawful activities. Victims should explore various legal avenues to claim damages, which may be quite significant. Law firms have become a very attractive target…
Ixia, the network testing, visibility, and security vendor, has announced BreakingPoint Cloud, a SaaS solution that safely models data breaches and threat vectors to deliver quantifiable evidence and insights into the effectiveness of organizations’ cloud-based data and application security, whether private, public or hybrid. Enterprises continue to move workloads to the cloud for its flexibility, but it also expands the network perimeter and attack surface. A new Ixia survey* of 350 IT professionals responsible for cloud deployments and management showed how concerned enterprises are about security in their public and private clouds: Over 90% are concerned about maintaining data and application…
It has been reported that CONFIDENTIAL details of some of Scotland’s most vulnerable people were leaked online by an organisation meant to protect their welfare. The names, emails, phone numbers and computer addresses of around 50 people across the country were obtainable on the website of the Scottish Appropriate Adult Network (SAAN). Mark James, Security Specialist at ESET commented below. Mark James, Security Specialist at ESET: “Data sadly comes in many forms- some is worth money, some is worth notoriety and some is worthless and for the average person, we find it hard to actually understand the real implications of…
Following the latest announcement from Transport Secretary, Chris Grayling that driverless cars are to hit Britain’s roads by 2021, David Emm, Principal Security Researcher at Kaspersky Lab commented below. David Emm, Principal Security Researcher at Kaspersky Lab: “While new technology offers great advantages to drivers, it also brings risks. Connectivity solutions for cars are not always made with security in mind, but manufacturers need to make it a priority issue during the design stage. The software industry learned to provide frequent updates to fix vulnerabilities the hard way – through large-scale malware outbreaks that cost billions of dollars and the…
Mark Sangster, VP and Industry Security Strategist at eSentire: “The parallels of Paradise Papers to last year’s Panama Papers breach are obvious, however beyond the shock factor of the leaked data itself, what’s more alarming is the depth and magnitude of this breach. Law and accounting firms should raise the alarm when it comes to their firm’s cybersecurity rigor. Panama Papers may have been opportunistic; however it laid a blueprint for these kinds of attacks. It has shone a spotlight on tax operations in the Caribbean, and while the mechanics of the breach itself have yet to be revealed, this…
Attackers took over the popular anime streamer Crunchyroll yesterday for a short time after they got access to Crunchyroll’s Cloudflare configuration and targeted Windows users with a malicious code. The website was taken down as soon as it was discovered and fixed. Chris Olson, CEO at The Media Trust commented below. Chris Olson, CEO at The Media Trust: “This is yet another example of how enterprises fail to grasp a simple reality: traditional website security solutions provide inadequate insight and protection for today’s websites, where unmonitored third-party code is rampant. When this third-party vendor code is compromised, so is the…
