Following the news that a group of hackers is claiming to have beaten the iris scanner on the Samsung Galaxy S8 smartphone, IT security experts from Positive Technologies and Comparitech.com commented below. Alex Mathews, Lead Security Evangelist at Positive Technologies: “Any new high-profile security technology, such as the biometrics on the Samsung, are like a red rag to a bull for the cybersecurity community. It invites curious minds to try and figure out where vulnerabilities lie – so they can be fixed. Doubtless the security teams at Samsung will take this report into account when developing the next iterations of such…
ISBuzz Team
The EU facing a wide spread ransomware outbreak, most notably within UK’s National Health Service (NHS). Hospitals are rerouting patients and asking them not to come unless it’s a critical emergency. The type of ransomware making its way through many organizations and industries today is called Wanna Decryptor. The malicious software — known as the Wanna Decryptor, or WannaCry — locks a system and its files from use unless money is paid to hackers. If you see a screen like this, that’s Wanna: Researchers are not sure why it’s spreading so quickly all of a sudden. We believe it’s because Wanna…
Cyber security is now a major industry, whose sheer size and growth is reflected in Statistics MRC data that showed the cybersecurity market is estimated to grow to $224.48 billion by 2022. There is so much data and information available on companies and individuals now, that there has never been as much risk and threat as there is currently. The last few years especially have seen a number of high profile cyberattacks, where the ability, professionalism and organisation of hackers has far outweighed a company’s ability to defend itself. As well as being unable to defend against such attacks, many…
DomainTools research finds new generic top level domains (gTLDs) are hotspots for malicious activity London, UK – DomainTools, the leader in domain name and DNS-based cyber threat intelligence, today released their 2017 DomainTools Report, looking at the various “hotspots” of malicious or abusive activity across the internet. The report examines four domain characteristics: generic Top Level Domains, Whois privacy provider, free email provider and IP geolocation. The DomainTools research team analysed the generic top level domains (gTLDs) with the highest concentrations of malicious activity. Their research found that .science had the highest concentration of bad domains, followed by .study and .racing. None of the 2017 most…
Chris Cooper, Security Team Leader for SureCloud, examines three web application flaws that are still posing a risk to organisations Web application security is finally catching up with the threat landscape in which it is situated. Common vulnerabilities have been identified and are being fixed. The industry has generally adopted the Open Web Application Security Project (OWASP) Top 10, a list of the most critical web application security risks and the steps needed to mediate them. The most recognisable flaws at the highest rungs of this list are in decline, and when they are identified, developers fix them. Awareness is growing…
News broke yesterday that a new worm has been discovered, following on from the WannaCry malware that caused such global devastation over last weekend, which uses seven of the Windows SMB exploits leaked by the ShadowBrokers, creating a worm that has been spreading through networks since at least the first week of May. IT security experts from Alert Logic, Imperva and Lastline commented below. Paul Fletcher, Cybersecurity Evangelist at Alert Logic: “It isn’t surprising that the NSA leaked exploits are being leveraged to introduce new malicious software and causing headaches for cyber security teams. The hacking community will continue to sift through the NSA tools…
A recent study from the Brookings Institution found one in four hacking attempts will focus on the healthcare industry. The study’s findings reflect the scale of these breaches, with it noting since late 2009 that the health information of more than 155 million Americans was exploited through a security breach. These records are valuable because they provide a fairly complete picture of a person, with Social Security numbers, addresses, health data, and sometimes even payment methods. Much of this hacking comes through “cyber-crime-as-a-service”, where criminals can purchase the tools to conduct malware attacks. For example, they can buy exploit kits…
Convincing HR that new-school security awareness training is an important part of an organisation’s culture to keep company assets safe from security breaches It’s a dangerous world out there. Security breaches are rampant, with skilled cybercriminals stealing personal data and crippling brand reputations. The WannaCry ransomware attack is the latest example in a long line of cyber attacks that are making boards nervous across the business landscape. Organisations know they need to invest in security. Yet many don’t realise that security goes beyond the right technology products. People have always played a pivotal role in security, so much so that…
While browsing the internet, an intelligent user will always reach out for a site that is secured through an SSL certificate. However, many of the visitors would likely face issues if your website is not protected enough and that could create distrust among netizens. The security breaches such as the recent ransomware attack known as WannaCry, are those against which you could place strong barriers through protective measures. In this kind of cyber crimes, many of the businesses and organizations are also trapped which causes a great loss to them as well as their customers. Therefore, if you are running…
There’s been a healthy amount of debate regarding cloud security during the last several years. With data hacks of major corporations like The Home Depot and Target as well as the unauthorized release of celebrity photos, the cloud has received a lot of bad publicity. However, the cloud is becoming more and more secure every day, and businesses are flocking to store their data in it. Even highly secure industries, such as the financial and health sectors, are moving to the cloud. So the question is: Does the cloud keep your information more secure? Possible Issues When you move your…
