Following the News that the Mayor of London Sadiq Khan was starting a recruitment drive to find London’s first ever Chief Digital Officer (CDO). Khan promised to recruit a CDO with a responsibility for overseeing growth in the sector and increasing “digital inclusion” across the capital. Andrew Clarke, EMEA Director at One Identity commented below. Andrew Clarke “The fact Sadiq Khan has announced the appointment of London’s first CDO should come as no surprise. Gartner has predicted that Chief data officers (CDOs) will exist in 90 per cent of enterprises by the end of 2019. Since a CDO is responsible for digitally transforming an organization,…
ISBuzz Team
Multi-Method Prevention Approach Delivers Protection Against Ransomware and Other Advanced Threats, Now With Support for macOS and Android Devices LONDON. U.K.- Palo Alto Networks® (NYSE: PANW), the next-generation security company, today announced enhancements to its Traps™ advanced endpoint protection offering that strengthen its malware and exploit prevention capabilities and extend support to more operating systems, including macOS™ and Android™ (beta). A verified AV-replacement for organisations subject to HIPAA regulations or PCI DSS standards, Traps employs a multi-method prevention approach to blocking both known and unknown malware as well as exploits before they compromise endpoints. Despite increased investment in endpoint security, cyber adversaries continue to compromise endpoints at a rate that outpaces…
Following the news that hackers in Germany have exploited flaws in SS7, please see expert comment from Mark Windle, Strategy and Marketing Director, Security at Mavenir commented below. Mark Windle, Strategy and Marketing Director, Security at Mavenir: “SS7 exploits just reached a new level. News of the first real bank hack executed using SS7 loopholes will serve as a real warning to the mobile community. Operators are already collaborating to better understand the ways in which vulnerabilities can be exploited, and mitigate them. This latest assault will not be easily ignored and now, more than ever, providers will be looking to vendor solutions…
The news that the China-based APT10 hackers have so devastatingly penetrated the cyber defences of some of the world’s biggest commercial and governmental organisations reveals a sickening reality. Described in a new report from PwC UK and BAE Systems as a sustained, “global operation of unprecedented size and scale”, APT10’s Operation Cloud Hopper has stolen high volumes of intellectual property and sensitive data from some of the world’s major businesses by targeting managed services providers and staging direct assaults on Japanese organisations and companies. The unpalatable truth behind these revelations is that Operation Cloud Hopper could all have been prevented…
O2 has confirmed that some of its customers have had their bank accounts plundered by criminals, using a two-stage attack that exploited flaws in the mobile network, Michael Downs, Director of Telecoms Security at EMEA commented below. Michael Downs, Director of Telecoms Security, EMEA at Positive Technologies: “This incident is a sharp wake-up call. It is a sign that it’s getting easier for attackers, motivated by greed and nefarious intent, to access once closed parts of the global mobile infrastructure to not only steal money, but also track location, eavesdrop on private communications and even take down entire areas.” “While no-one denied vulnerabilities existed,…
Following the new research from Recorded Future, a new ransomware Fatboy is being advertised on a Russian-language forum. The ransomware uses a dynamic new targeting strategy that changes the cost of the ransom depending on the victim’s location, using The Economist’s Big Mac Index as a reference. Fatboy is also offered with a ransomware-as-a-service model, with customer support over Jabber, and even a “partner” panel for users to track statistics by country and time. Ilia Kolochenko, CEO at High-Tech Bridge commented below. Ilia Kolochenko, CEO at High-Tech Bridge: “We will see an important growth in the RaaS model in the…
Just 7 years ago, SAP Security associated with Segregation of Duties only. SAP code issues and platform vulnerabilities were terra incognita even for cybersecurity experts. The reality showed that it was rather careless. Just within the last 3 years, several highly significant incidents related to the SAP cybersecurity occurred (NVidia breach in 2014, OPM Breach in 2015, and US-CERT alert on an SAP vulnerability). And this is just a beginning, 89% of security professionals anticipate the number of attacks on ERP systems to increase. A common but true truism states you should be a step ahead of hackers to stay…
As serious concerns over the safety and security of Internet of Things (IoT) devices continue to mount, researchers have discovered that industrial robots can be remotely hacked to cause potentially devastating damage. Researchers at security firm Trend Micro and Italy’s Politecnico Milano found that many internet-connected industrial machines run on outdated software or have poor software protection. The experts targeted an ABB IRB140 industrial robot, capable of carrying a payload of up to 6kg, that was programmed to draw a straight line. By exploiting a remote code vulnerability in the robot’s controller software, they reverse engineered the RobotWare control program and…
With Consumers Around the Globe Increasingly Impacted by Fraud, Hacks, and Password Breaches, Nuance Steps up Biometric Security Solutions LONDON – Today from the Opus Research Intelligent Assistants Conference, Nuance Communications, Inc. announced expanded biometrics offerings to address the alarming rate of consumer fraud around the globe. With new capabilities in voice, facial and behavioral biometrics, Nuance’s Security Suite now takes fraud prevention beyond the contact center by combining digital inputs to more accurately detect fraud across multiple channels resulting in millions saved each year. Recent surveys seeking to understand current consumer perceptions of fraud have revealed that, in the US alone, more than 50% of…
DomainTools identifies over 300 websites tricking web users into thinking they’re clicking on to UK high street bank websites London, UK, – DomainTools, the leader in domain name and DNS-based cyber threat intelligence, today released research regarding the plethora of cybersquatters and how they target popular UK banks. DomainTools found 324 registered domains using the trademarked names of five of the UK’s top high street banks. Domains masquerading as legitimate UK bank websites are often used by hackers to trick customers into handing over personal details or login information. Cybersquatting (also known as domain squatting) is the act of registering a domain…
