Following the news about European commissioner’s call, Chris Ross, SVP International at Barracuda commented below. Chris Ross, SVP International at Barracuda: “Earlier this week at the CyberSec European Cybersecurity Forum in Poland, Julian King European commissioner for the security union called for increased collaboration in defending against cyber attacks after revealing more than 4,000 ransomware attacks have taken place every day across the EU since 2016. This comes as no surprise to us. While cyber attackers are developing increasingly sophisticated malware such as ransomware to infect their victims, the same can’t be said of the way they’re getting into organisations.…
ISBuzz Team
Following the news that 47GB of medical data from American firm Patient Home Monitoring has been found exposed in an unsecured Amazon server. IT security experts are commented below. Raj Samani, Chief Scientist and Fellow at McAfee: “Mistakes like this should not be happening. There is always the threat of human error, but measures must be in place to anticipate for such errors. All organisations, but especially those that hold sensitive data such as medical details and personally identifiable information, need to ensure they have an integrated system with automated monitoring in place. Having the right combination of people, process and…
It has been reported that over 5000 Morrisons staff are suing the supermarket chain after their personal and financial data was leaked by a insider and are seeking compensation for the distress caused by the incident. Paul Norris, Senior Systems Engineer – EMEA at Tripwire commented below. Paul Norris, Senior Systems Engineer – EMEA at Tripwire: “This biggest chink in the security amour is humans. Despite many of us being trustworthy individuals, there are those insiders that break and severely damage this trust. An insider is the worst possible attack, but is also the hardest thing to uncover. How can you determine one’s…
Manoj Asnani, VP Product & Design at Balbix: “Compromised passwords and keys are one of the most common attack vectors exploited by the adversaries. Enterprises need to have visibility into how exposed or vulnerable they are to this attack vector. Predictive breach-risk platforms can provide organizations with a view into how safe their password practices are – including weak, default or no passwords on their business-critical assets. These types of solutions can also alert organizations about passwords for critical assets that are being exchanged unencrypted.” . Rich Campagna, CEO at Bitglass: “It doesn’t take much for outsiders – malicious or not –…
In response to the news of the prolonged breach of comments hosting site Disqus, exposing the email logins and other data of 17.5 million users from 2007 through 2012, Lisa Baergen, APR, MCC, Marketing Director at NuData Security Inc. commented below. Lisa Baergen, APR, MCC, Marketing Director at NuData Security Inc.: “The ongoing, rising waves of breaches such as Disqus, which remained undetected for years, together with the compromised PII resulting from recent mega-breaches, offers fraudsters a rich palette of personal data for account takeovers. Remember that informed consumers are feeling increasingly helpless and violated, and that each new breach further informs and rightfully spreads…
More than 37,000 Google Chrome users have installed a fake AdBlock Plus extension. The malicious extension, which posed as the popular AdBlock Plus ad blocker but forcibly opened new tabs to show ads to users, has been removed from the Chrome Web Store. Chris Olson, CEO at The Media Trust commented below. Chris Olson, CEO at The Media Trust: “While the magnitude of this incident is large, the concept of fake plugins, extensions, and apps are nothing new when it comes to the world of cybercrime. This incident, like many other cybercrimes, is a direct result of website and app…
Notflix, created by BestVPN.com, highlights the disparity between Netflix libraries around the world UK has only half of US library, but pays almost the same for subscriptions Egypt has just 11% of US library, but pays $2 more per month There’s plenty of inequality around the world, even when it comes to Netflix. Now, a new tool has highlighted the differences between the number of shows and movies on Netflix in different countries. Notflix, created by Virtual Private Network specialist BestVPN.com, allows users to compare library sizes and subscription costs across 20 countries, including the UK and US. The tool…
In response to news reports that Accenture’s misconfiguration of an Amazon S3 server has exposed clients’ private keys, passwords and other valuable data. Satya Gupta, Co-Founder and CTO at Virsec commented below. Satya Gupta, Co-Founder and CTO at Virsec: “It’s astonishing how many security-conscious organizations seem to lack basic security controls for cloud servers. There’s a reason that most users can’t unilaterally setup their own servers in a corporate data center – they need to be secured, managed, and governed. But almost anyone can setup a server in Amazon, Azure or other cloud servers, and expose sensitive data. The cloud can provide robust infrastructure,…
A backdoor found in Hikvision security cameras has been recently exploited by hackers who were able to compromise the devices by displaying the term HACKED. Cesare Garlati, Chief Security Strategist at the prpl Foundation commented below. Cesare Garlati, Chief Security Strategist at the prpl Foundation: “The Hikvision camera hack is a clear indicator of why there is no such thing as a secure backdoor and should be used to advocate security by separation through hardware virtualisation. This flaw should have been located in the development stages of manufacturing and not once the device was on the open market, potentially exposing millions. IoT…
The latest news has revealed that a child’s baby monitor in Australia was hacked and used by cyberattackers to spy on the family. Cesare Garlati, Chief Security Strategist at the prpl Foundation commented below. Cesare Garlati, Chief Security Strategist at the prpl Foundation: “IoT devices being hacked in the home is sadly not uncommon news and this latest attack is evidence of cybercriminals knowing no bounds. This baby monitor hack is an invasion of privacy and should be used as an example for developers to implement security by separation at the hardware layer of the device. Hardware is the key to making…
