Following new that DJI have added a privacy mode to its drones to prevent flight data being shared to the internet, Raj Samani, Chief Scientist and Fellow at McAfee commented below. Raj Samani, Chief Scientist and Fellow at McAfee: “Drone security continues to be a key issue. Privacy is just one aspect as drones are fast becoming targets for criminals looking to make a quick buck. This goes beyond using drones for illegal surveillance or hacking into drone systems to steal data. Someone looking to “dronejack” deliveries could easily find a location with regular drone traffic and wait for the targets…
ISBuzz Team
Underwriters Laboratories has developed new cybersecurity standards for the Industrial Control industry in collaboration with the Department of Homeland Security and the Defense Advanced Research Projects Agency. The standards were developed to provide cybersecurity criteria for testing third-party software and to validate the security claims of software vendors. Edgard Capdevielle, CEO at Nozomi commented below. Edgard Capdevielle, CEO at Nozomi: “Having UL standards and certifications for industrial cybersecurity will advance the practices of vendors in terms of building cybersecurity into their products and will make it easier for industrial organizations to purchase products that are designed with cybersecurity in mind. …
Kaspersky Lab experts have discovered a backdoor planted in a server management software product used by hundreds of large businesses around the world. When activated, the backdoor allows attackers to download further malicious modules or steal data. Kaspersky Lab has alerted NetSarang, the vendor of the affected software, and it has promptly removed the malicious code and released an update for customers. ShadowPad is one of the largest known supply-chain attacks. Had it not been detected and patched so quickly, it could potentially have targeted hundreds of organisations worldwide. In July, 2017 Kaspersky Lab’s Global Research and Analysis (GReAT) team was approached…
CNBC reported earlier this afternoon that Uber has agreed to privacy audits for the next 20 years and will be implementing a new privacy program as part of the settlement. The ride-hailing start-up stopped using an automated system for monitoring employee access to consumer data after less than a year, the FTC said. More than 100,000 names and driver’s license numbers were stolen in a 2014 data breach of Uber’s database, operated by Amazon Web Services. Malcolm Harkins, Chief Security and Trust Officer at Cylance commented below. Malcolm Harkins, Chief Security and Trust Officer at Cylance: “In the age of digital business and increasing cyber…
Business Impact of Security Incidents and Evolving Regulations Driving Market Growth Worldwide spending on information security products and services will reach $86.4 billion in 2017, an increase of 7 per cent over 2016, with spending expected to grow to $93 billion in 2018, according to the latest forecast from Gartner, Inc. Within the infrastructure protection segment, Gartner forecasts fast growth in the security testing market (albeit from a small base) due to continued data breaches and growing demands for application security testing as part of DevOps. Spending on emerging application security testing tools, particularly interactive application security testing (IAST), will contribute to the growth of…
New findings from Imperva Incapsula research published today, details the emergence of a new DDoS assault pattern, which has been named Pulse Wave. According to lead researcher Igal Zeifman, “Pulse Wave DDoS represents a new attack methodology, made up of a series of short-lived pulses occurring in clockwork-like succession, which accounts for some of the most ferocious DDoS attacks we mitigated in the second quarter of 2017. In the most extreme cases, they lasted for days at a time and scaled as high as 350 Gbps.” The size of these attacks, and the amount of skill they exhibit, are likely the handiwork of skilled bad actors who have…
Brexit will present a whole host of headaches when it comes to customs processing, but the government aims to ease the transition through the use of technology. An upgrade of the HMRC customs infrastructure is planned for early 2019, but other high-tech solutions are being floated, including blockchain and AI. With this just one of many considerations for those tasked with facilitating our exit from the EU, it is crucial that securing these critical IT systems doesn’t become a secondary concern. In light of this, David Emm, Principal Security Researcher at Kaspersky Lab commented below. David Emm, Principal Security Researcher at…
The idea of working remotely is nothing new — businesses have increasingly allowed employees to telecommute over the last two decades, with some companies even going so far as to hire entire teams of remote workers. According to a recent New York Times report, more than 40 percent of employees work from home at least part- time, and the option to telecommute is a highly sought-after perk among jobseekers. While multiple studies have shown the benefits of telecommuting in terms of productivity and employee morale, that doesn’t mean that it’s without risks. In fact, allowing employees to work remotely can…
According to a report issued yesterday by RPC, the number of retail businesses reporting data breaches to the Information Commissioner’s Office has doubled over the last year and risks involved were growing as “retailers accumulate more and more personal information on their customers as part of their ‘Big Data’ initiative”. Ryan Wilk, Vice President at NuData Security commented below. Ryan Wilk, Vice President at NuData Security: “In today’s online, big-data driven economy, retailers have never been privy to so much sensitive customer information. Even things that might seem relatively benign on the surface can be used for malicious purposes, or can be used in social…
News has surfaced that a hacker has helped a family reunite with their beloved car which they had to abandon for months after they lost a one-of-a-kind key. Without any other alternatives in getting a key, the desperate family agreed for the car to be hacked, with the hacker given access to the vehicle’s on-board immobiliser computer. Cesare Garlati, Chief Security Strategist at the prpl Foundation commented below. Cesare Garlati, Chief Security Strategist at the prpl Foundation: “Despite this being a positive story, with connected devices, the most dangerous aspect is the “connected” part. We have seen the alarming results from cars…
