In light of the latest research from Comparitech.com, a leading security and privacy advice and comparison website, which looked at how data breaches affect stock market share prices, found that stocks on average suffer an immediate decrease in share price following a breach of 0.43%, about equal to their average daily volatility. Security experts from AlienVault and One Identity commented on the research. Javvad Malik, Security Advocate at AlienVault: “The research by Comparitech.com shows that it is difficult to determine the full impact of a data breach upon companies immediately, rather the impact can compound over a longer period of time. While data…
ISBuzz Team
AlienVault survey of over 900 attendees at Infosecurity Europe exposes widespread concern about upcoming GDPR legislation, and the UK government’s technology policies Half of those surveyed fear that GDPR could cause people to try and cover up data breaches Over half (54%) believe that a change of leadership at No. 10 would have made the country more cyber secure LONDON, UK – The cybersecurity industry believes that the European General Data Protection Regulation (GDPR) is stifling innovation by making companies nervous about using cloud-based applications and services, according to new research published today by AlienVault®, the leading provider of Unified Security Management™ (USM™)…
Detection, response and recovery time revealed to be critical for edgeless networks July 11, 2017 – Half Moon Bay, California – A new report released today, commissioned by Cyber adAPT and conducted by Aberdeen Group, has revealed that cyber attack detection and response times have a critical status in protecting access to infrastructure and data within modern networks. New insight detailed in the report entitled ‘The need for speed: faster detection requires a new type of platform’, reveals that doubling detection and response speed to cyber attacks produces a median reduction of 70%, compared to the status quo*, in impact on the availability of enterprise computing infrastructure.…
Gartner has predicted that 33% of attacks experienced by enterprises will be as a result of shadow IT resources by 2018. These ‘digital’ shadow IT assets provide the functionality website visitors expect (video, images, social, reviews, customer id, etc.) as well as enable more efficient management of digital property (CMS, DMP, analytics, etc.) The problem is that this code may also contain malware, but website IT would never see it. Chris Olson, CEO at The Media Trust commented below. Chris Olson, CEO at The Media Trust: “With GDPR around the corner, IT departments need to assess the risks present in…
With many organisations still reeling in the aftermath of the Petya and WannaCry ransomware attacks, it’s not only sensible, but crucial, that they analyse what other dangers they face in the digital age. When TalkTalk was hacked in 2015, the company lost up to £60m and approximately 101,000 customers, and the damage to the organisation’s reputation was huge. CIOs must avoid this fate, by proactively looking at today’s big security concerns in order to protect their company tomorrow. Security vectors evolve rapidly because the malicious parties responsible are constantly innovating. Many cybercrime operations have organisational charts similar to legitimate businesses and use best practices…
Hackers have not breached or disrupted core systems controlling critical infrastructure, but US Officials do admit that there has been sustained probing of business computer networks for vulnerabilities to try and find a way into industrial control networks. Andrea Carcano, Co-Founder and Chief Product Officer at Nozomi Networks: “The US has to assume that all parts of critical infrastructure are being probed for vulnerabilities 24 by 7 from a risk management point of view. While Information Technology (IT) and Operation technology (OT) that control the electric grid systems and other critical infrastructure are separated, there have been increasing connections that warrant…
Following the news about the Hard Rock and Loews Hotel breaches, Ermis Sfakiyanudis, Cybersecurity Expert and CEO at Trivalent commented below. Ermis Sfakiyanudis, Cybersecurity Expert and CEO at Trivalent: “The Hard Rock Hotels & Casinos and Loews Hotels breaches highlight the critical need for better data protection across all industries—particularly those that utilize personally identifiable information (PII) data, such as hospitality and retail. In this case, the attacker gained unauthorized access to a third-party reservation system to attain unencrypted credit card payment information, as well as some guest names, addresses and phone numbers. Not only does this breach serve as an example of…
Avanti Markets, which own snack and drink vendor machines across the US, has suffered a breach and has admitted that hackers might have compromised not only customers’ credit card accounts,but also the physical biometrics associated with those accounts. A security researcher has characterized this hack as a classic case of an IoT threat where a network controlled device maintained by a third party was not properly patched, audited or controlled. Michael Patterson, CEO at Plixer commented below. Michael Patterson, CEO at Plixer: “Vending machines have been vulnerable to hacking and thefts since the day they were brought to market. However,…
Employees hide IT security incidents in 40 per cent of businesses around the world – that’s according to a new report from Kaspersky Lab and B2B International, “Human Factor in IT Security: How Employees are Making Businesses Vulnerable from Within”. With 46 per cent of IT security incidents caused by employees each year, this business vulnerability must be addressed on many levels, not just through the IT security department. Walking hackers to your door Uninformed or careless employees are one of the most likely causes of a cybersecurity incident — second only to malware. While malware is becoming more and…
Privileged access hacks will continue Data breaches as a result of compromised privileged access are widespread. It’s all about privilege—hackers need high level access, which they get through targeting privileged users like IT professionals, CEOs and vendors via phishing or malware to achieve their financial goals or other motivations. These users are targeted by the threat actor because they are likely to have access to other privileged credentials that the hacker can leverage to increase dwell time and compromise their target. We have seen this all too often in 2017 as in the leak of content from Netflix’s Orange is the…
