Yesterday in the Queen’s Speech a new Data Protection Bill was proposed. This new plan suggests that the Government will be going even further that the legislation put forward by the GDPR. IT security experts from Delphix and Thales e-Security commented below. Iain Chidgey, VP and General Manager International at Delphix: “The Data Protection Bill as outlined in the Queen’s Speech today suggests the UK plans to go even further than the legislation put in place by GDPR. While GDPR will be folded into UK law post-Brexit, the proposed bill adds additional safeguards, including overhauling the powers of law enforcement and…
ISBuzz Team
In response to news of the QakBot trojan, which uses new exploit methods to continue to use infected machines as control servers, even after its capability to steal personal and financial data from the infected machine has been removed by a security product, IT security experts commented below. Don Duncan, Engineer at NuData Security: “Pinkslipbot is the latest variant of QakBot, which has been causing havoc in the wild for more than 10 years, and is the latest reminder that best practices are a major component of a user’s best defense. Pinkslipbot is extremely persistent, and essentially anyone with fast internet and open…
San Antonio, TX – Digital Defense, Inc., a leading provider of Vulnerability Management as a Service™ (VMaaS), today announced that its Vulnerability Research Team (VRT) uncovered a previously undisclosed vulnerability within the Avaya Application Enablement Services (AES) Management Console. The vulnerability would allow remote code execution if a specially crafted message was sent to the AES server. Digital Defense and Avaya rate this vulnerability as having a high security impact to the system. “Avaya has been very responsive and prompt to verify the flaw and has released a patch to resolve the issue,” said Larry Hurtado, CEO of Digital Defense, Inc.…
More and more businesses nowadays are starting to use different knowledge base solutions for various purposes. A knowledge base can greatly benefit every business, as it offers a number of advantages that can improve the workflow within any organization and increase the chances for success. How can a knowledge base actually benefit a business? A knowledge base is based on the cloud computing model that stores data on remote servers, which are accessed over the internet, that is, the so-called cloud. You can store data inside the cloud and access it anytime and from anywhere, which is exactly what makes…
Social engineering is simple these days, and spam has re-surged as an attack vector. Berkshire, UK: With the decline of exploit kits, spam email has re-emerged as a popular attack vector for spreading malware, frauds and scams. And one trick spammers use to fool recipients is posing as a legitimate company. F-Secure Labs is sharing a list of the top companies email spammers have been spoofing in the first half of 2017. Populated by giants like Apple, Amazon and Microsoft, the list underscores that the bigger the organisation, the more attractive it is to use its brand name as bait…
Reports are surfacing that Honda halted production at one of its vehicle plants for a day this week after finding the WannaCry ransomware that struck globally last month in its computer network. The automaker shut production on Monday at its plant in Japan. IT security experts commented below. Mark James, Security Specialist at ESET: “As with most malware, even after the initial impact of a public or global strike, it’s still working its way around the internet looking for victims. In this case when malware uses exploits in common or older versions of Windows, many large manufacturers that use bespoke or embedded systems with software…
Microsoft has confirmed that it is dealing with an ongoing Skype outage that may be caused by a DDoS attack. The company says its communications app is suffering connectivity issues. While the problem does not affect all users, it is being reported as a global outage. IT security experts commented below. Stephanie Weagle, VP at Corero Network Security: “It’s clear that DDoS attacks continue to impact even the largest global organizations, including the recent confirmed attack against Skype. Continuing to rely on traditional IT security solutions, and/or human intervention to deal with the growing DDoS epidemic will continue to prove devastating…
IBM Security and the Ponemon Institute have released a study that found that the average cost of a data breach is $3.62 million globally, an overall 10 percent decline from 2016 results, but US costs continued to climb. Michael Patterson, CEO at Plixer commented below. Michael Patterson, CEO at Plixer: “Data breaches are inevitable and although EMEA experienced a reduction in the cost of data breaches, much of the rest of the world saw their costs rise. The costs associated with a breach is directly proportional to the time it takes to identify root cause and remediate. From the Board…
Fight Against Cybercrime Shows Both Improvements and Downsides CHICAGO – Trustwave today released the 2017 Trustwave Global Security Report which reveals the top cybercrime, data breach and security threat trends from 2016. The report demonstrates both good and bad news in the world of cybersecurity as intrusion detection and breach containment times were relatively better, but other threats like malvertisements became cheaper and malicious spam saw increases. Key highlights from the 2017 Trustwave Global Security Report include: Intrusion detection gets better, especially when breaches are self-detected: The median number of days from an intrusion to detection of a compromise decreased to 49 days in 2016 from 80.5…
Marie Hattar, CMO of Ixia looks at how network testing and intelligent IP filtering can protect organizations against the growing DDoS threat Have DDoS attacks become the elephant in the room when discussing cyber-threats? We know they’re a huge problem, and that any organization can be targeted, from Government websites to individuals’ blogs. But as attacks have become bigger, more frequent and more widespread, it seems that they’re increasingly being regarded as an unstoppable force majeure, like a hurricane or earthquake, which simply has to be survived. It’s not difficult to understand why this situation has arisen. Neustar’s annual ‘Worldwide DDoS Attacks…
