In light of the government’s Cyber Security in Charities report showing a lack of preparedness among charities in matters of cybersecurity, Matt Walmsley, EMEA Director at Vectra commented below. Matt Walmsley, EMEA Director at Vectra: “The third sector is the weak link in the chain when it comes to data security. With limited resources, charities are considered fair game for today’s cybercriminals. Today’s report reinforces the fact that the lack of robust data security measures and processes is being capitalised on. “Hackers will go after any organisation that possesses a hoard of personal information. This is not helped by the sector’s revealed lack…
ISBuzz Team
Majority of the borad members (68%) in the FTSE 350 said they have not been trained in responding to a cyber attack, according to the research by accountants KPMG on behalf of the government. Marco Cova, Senior Security Researcher at Lastline commented below. Marco Cova, Senior Security Researcher at Lastline: “While this is a somewhat worrying revelation, it’s definitely not surprising. Board members with diverse job functions within an organization have struggled in the past to understand how serious a cyber-incident can be. While large-scale incidents like Not Petya may have gone some way towards remedying this, there is still something of a disconnect between the security…
RoughTed malvertising campaign has remained the most prevalent malware in July, despite drop in infections; Fireball continued to decline after the arrest of its suspected distributors Check Point’s latest Global Threat Impact Index shows that the number of organizations impacted by the RoughTed malvertising campaign fell by more than a thirdduring July, from 28% to 18%. RoughTed is a large-scale malvertising campaign used to deliver malicious websites and payloads such as scams, adware, exploit kits and ransomware. Despite its drop-off, RoughTed remained the most prevalent form of malware during July. Hacker Defender, a user-mode rootkit for Windows, increased to second…
The latest government ‘cyber governance health check’ and a survey of the UK’s top 350 companies revealed that more than two-thirds of boards have not received training to deal with a cyber incident. IT security experts commented below. Mike Simmonds, Managing Director at Axial Security Systems: “I am constantly surprised by the lack of preparation we experience in the corporate world when it comes to cyber-security; we see a relaxed attitude to securing hardware, data and communications almost every day in interactions with existing and new customers. One of the most worrying aspects is the lack of understanding of the serious nature…
Date: 14-15 November 2017 Location: Istanbul – Turkey Event Website: www.ifinsec.com Email: [email protected] Reminder: Early bird rate on delegate registration is valid until 08 September 2017 for IFINSEC Financial Sector IT Security Conference and Exhibition (www.ifinsec.com) that will be held on 14-15 November 2017 in Istanbul, Turkey. IFINSEC is a global, niche and dedicated conference focusing on IT Security technologies and solutions for financial industry. Sponsorship and delegate registrations are open. IFINSEC is one of the most important conferences in EMEA region on IT Security technologies and solutions for financial sector. IT Security, Information Security, Network Security, Big…
NHS Digital Report which found that ‘very weak’ passwords and outdated systems are putting NHS hospitals at hacking risk. Ken Spinner, VP of Global Field Engineering at Varonis provides an insight on this report below. Ken Spinner, VP of Global Field Engineering at Varonis: “It’s more important than ever for organisations to have a clear picture of where it’s most sensitive information lives and who has access to it – especially when dealing with regulated health data and customer information. Systems must be updated with the latest patches to address security vulnerabilities- especially after having been hit by WannaCry, but…
Jon Geater, CTO at Thales e-Security: “Digital transformation is increasingly being seen as more of a Hobson’s choice for traditional large industries. Those who fail to adopt the latest computer and data systems will be consigned to the scrap heap of history, while those who adopt them too fast leave themselves open to crippling cyberattacks. Logistics firms, rail companies, power, shipping: nobody is out of the cross hairs of the attackers, whether motivated financially or to cause disruption, anyone on the ‘net is fair game and it is open season. As was the case with NotPetya recently, these attacks are…
Researchers have discovered a security flaw that could potentially affect all new vehicles. It allows an attacker to turn off safety features, such as airbags, ABS brakes, and power-steering — or any of a vehicle’s computerised components connected to its controller area network or CAN bus. Cybersecurity experts commented below. Leigh-Anne Galloway, Cyber Security Resilience Lead at Positive Technologies: “First of all, the words “to shut down remotely” used in news about this vulnerability isn’t quite correct. CAN is a protocol for internal communications in the car, it’s not connected to the Internet. To conduct the DDoS attack via this flaw, a hacker…
Moshe Elias, Director of Product Marketing at Allot Communications commented below on the recent Wi-Fi attacks happening at Google Play’s store or hotels across Europe. Moshe Elias, Director of Product Marketing at Allot Communications: “Mobile users expect to be protected whether they’re using their device at their desk, on the train, or in their hotel room, and who better to fulfill this need than service providers? As we’ve seen with the recent Google Play malware-infested apps and hacked hotels across Europe, mobile users are under constant threat of attack from multiple channels, requiring a unified security approach with both on-net and off-net protection – something local providers can’t offer.…
A leading supplier of U.S. voting machines has confirmed the exposure of data from more than 1.8M Illinois residents. This included voter names, addresses, birth dates and partial Social Security numbers. John Suit, CTO at Trivalent, a leading provider of next generation data protection provides an insight on this breach below. John Suit, CTO at Trivalent: “The Chicago voter record exposure highlights the critical importance of data protection in the public sector. While it appears the data was promptly secured after the exposure was identified on an AWS server by an industry analyst, the breach exposed personally identifiable information (PII) of over…
