News broke yesterday that amost two-thirds (63%) of utility executives believe their country faces at least a moderate risk of electricity supply interruption from a cyber attack on electric distribution grids in the next five years. IT security experts commented below. Kyle Wilhoit, Cenior Cybersecurity Threat Researcher at DomainTools: “Electrical grids across the globe have continually targeted both physically and digitally. These attacks come in many forms, from targeted, advanced malware to ransomware locking down HMI’s. The concern raised by the respondents is comforting, knowing that most of respondents appear concerned with cyber security. The respondents across the globe seem to understand the…
ISBuzz Team
News broke overnight that the 2016 Yahoo! data breach, already considered one of the worst in history, was worse than originally thought, affected 3 billion accounts, making it far and away the worst breach in history. Lisa Baergen, Director at NuData Security commented below. Lisa Baergen, Director at NuData Security: “The truth has come out – the 2013 Yahoo! data breach of over 3 billion is at this point the largest cyber-attack in history. As the new October 2017 Identity Proofing Platform Scorecard from Javelin Research reveals, there’s so much for boardrooms, CIO’s and security teams to learn. Here’s just five lessons that haven’t been learned and hardened…
Russian hackers reportedly stole classified NSA cyberweapons from the home computer of one of the agency’s contractors, after the unspecified contractor removed the classified data and stored it one his personal computer. The theft reportedly took place in 2015 and was discovered in 2016. According to a report by the Wall Street Journal, the attackers stole the NSA’s confidential data by exploiting Kaspersky’s anit-virus software, which the NSA contractor was using. The Journal reported that the stolen files include details of the NSA’s offensive and defensive hacking tools as well as the computer code it uses for spying. IT security experts commented below. Piers Wilson, Head of Product Management at Huntsman Security: “In…
Sophisticated threat actors are actively hacking other attack groups in order to steal victim data, borrow tools and techniques and re-use each other’s infrastructure – making accurate threat intelligence ever harder for security researchers, according to Kaspersky Lab’s Global Research and Analysis Team (GReAT). Accurate threat intelligence relies on identifying the patterns and tools that signpost a particular threat actor. Such knowledge allows researchers to better map different attackers’ goals, targets and behaviours, and to help organisations determine their level of risk. When threat actors start hacking each other and taking over tools, infrastructure and even victims, this model quickly…
The General Data Protection Regulation (GDPR) comes into effect in the UK on 25 May 2018. Yet, many organisations remain in denial, with a typical mindset being: ‘if I ignore it long enough, it will probably go away’, or even, ‘I don’t think it really applies to me’. Ultimately though, any business that holds personal data about their customers, employees or that runs a payroll is going to be impacted by the regulation. That’s because GDPR clearly applies to all companies worldwide that process the personal data of EU citizens. There is a world of difference of course, between understanding that your…
Seventy Percent of Business Decision-Makers Say GDPR will Make the European Union the World Leader in Data Protection NEWS HIGHLIGHTS Data protection delivers commercial advantage with seventy-four percent of respondents believing organizations that properly apply data protection laws will attract new customers Nearly half (48 percent) of organizations say they will migrate data as a result of regulation or changing government policies. Currently, it takes 11 days on average to report a breach. GDPR will mandate breach notifications be made by the Controller within 72 hours of becoming aware of it. SANTA CLARA, Calif.– McAfee, one of the world’s leading cybersecurity companies,…
Believe it or not, cloud computing has been around in practice (if not in name) since the 1950s. Back then, computers cost millions of dollars per machine, so companies shared them to cut costs. It wasn’t until 50 years later, in 2006, that we began to call CPU time-sharing “cloud computing.” At an industry conference that year, Google’s then-CEO Eric Schmidt remarked, “What’s interesting is that there is an emergent new model…It starts with the premise that the data services and architecture should be on servers. We call it cloud computing — they should be in a ‘cloud’ somewhere.” Sure enough, Schmidt was right, and his…
Following news that Ancestry.com has been forced to change a controversial policy regarding their usage of customers DNA data; revoking a clause that said they could store it ‘in perpetuity’, Andy Waterhouse, EMEA Director at RSA commented below. Andy Waterhouse, EMEA Director at RSA: “People are right to be concerned. This incident exemplifies why we need GDPR. While the company has consent, it is buried in the paperwork and people might not be aware they are giving so much away. This will not be possible under GDPR, as consumers will need to ‘opt-in’ to such demands – they simply cannot continue to…
Derek Lin, Chief Data Scientist at Exabeam explains why adopting a people-centric approach to network security can significantly reduce the risk of breaches The rising tide of cyber threats has placed the issue of network security in the spotlight. These days, protecting against insider and external threats has become a business imperative – one that has seen IT teams employ traffic flow monitoring and threat analysis tools in a bid to beef up network defences. Despite these investments, security breaches continue to take place with alarming regularity. That’s because phishing, whaling, credential compromise and malicious insider threats all have one…
Many small businesses have little to no budget to spend on cybersecurity protection; only a quarter believe that government initiatives such as Cyber Essentials help improve security practices Duo Security, one of the world’s fastest growing cybersecurity companies, in partnership with YouGov, surveyed 1,009 senior decision makers in small businesses[1]across Britain and found that 38 percent will spend nothing at all to protect themselves from cybersecurity threats this financial year. 30 percent of respondents have less than three percent of overall budget allocated for cybersecurity. Conducted between September 19 and 26, 2017, the survey reveals that 36 percent of…
