Global benchmarking study gives visibility into the security infrastructures of more than 400 organizations to find current and future trends for firewalls and emerging networking technologies OVERLAND PARK, KS & DALLAS, TX – FireMon, the leader in Intelligent Security Management, today released its 3rd Annual State of the Firewall Report that surveyed more than 400 organizations about their current security infrastructure and management challenges as well as adoption and impact of emerging technologies such as SDN, cloud, microsegmentation and Internet of Things (IoT). The study found that firewalls maintain a significant part of the security infrastructure, with 90% believing the firewall will…
ISBuzz Team
Following the news about the Google phishing attack, IT security experts from McAfee and Plixer International commented below. Raj Samani, Chief Scientist at McAfee: “Phishing attacks remain the most common method of manipulating individuals into clicking on links and ultimately installing malicious content onto their systems. Taking advantage of trusted, well-known brands attempts to leverage the use of authority, resulting in the incoming messages to appear trusted to the consumer. “People must be wary of unexpected emails, even if they are cited as being from a sender they know. Think twice before acting; go straight to the source through a different communication channel if you receive a…
A cyberattack has compromised the personal data of up to 26,000 Debenhams customers. The breach, which is understood to have been malware-based, targeted the online portal for the retailer’s florist arm, Debenhams Flowers. Javvad Malik, Security Advocate at AlienVault commented below. Javvad Malik, Security Advocate at AlienVault: “This attack re-enforces the fact that attackers are increasingly targeting any organization that may have personal details either to use directly, or to reuse in attack against other sites. It is similar in vein to the attacks a few months ago against Deliveroo, and Camelot (the national lottery). It is essential that companies enforce strong…
A new privacy-busting technique that tracks consumers through the use of ultrasonic tones may have once sounded like the stuff of science fiction novels, but today it’s reality. These near-silent tones can’t be picked up by the human ear, but there are apps in your phone that are always listening for them. IT security experts from AlienVault and ESET commented below. Javvad Malik, Security Advocate at AlienVault: “As mobile phone capabilities increase, and technologies that can communicate with such devices proliferate, it is only natural that more creative ways will be used to communicate and extract information from phones. However, the fundamental…
Users of Checker ATM Security urged to install vendor-issued security patch Positive Technologies has discovered a serious vulnerability in GMV’s Checker ATM Security. The defect allows an attacker to remotely run code on a targeted ATM to increase his privileges in the system, infect it and steal money. Checker ATM Security protects ATMs by enforcing a wide range of restrictions in software: whitelisting with Application Control to block unauthorized applications, restricting attempts to connect peripheral devices – such as a keyboard or mouse, limiting network connections with a firewall, and more. “To exploit the vulnerability, a criminal would need to pose…
A known flaw in the messaging system in Signalling System No. 7 (SS7) protocol developed in the 1970s which allows networks around the world to interoperate, has provided the hole for hackers to bypass 2-factor authentication and transfer money from customers’ bank accounts. After stealing banking credentials, Cyber criminals were able to leverage the vulnerability to intercept banking passcodes via phone numbers and SMS messages. Bob Noel, Director of Strategic Relationships and Marketing at Plixer International commented below. Bob Noel, Director of Strategic Relationships and Marketing at Plixer International: “This is an example of how phishing and social engineering allow…
Gannett,which owns more than 100 Newspapers across the country has been hit by a sophisticated phishing attack. Bob Noel, Director of Marketing and Strategic Relationships at Plixer International commented below. Bob Noel, Director of Marketing and Strategic Relationships at Plixer International: “Hackers have become so proficient with phishing emails that they can fool even the savviest of tech users which proves that people are the weakest link in the security chain. As such, education should be a top priority, but in most organizations that is not the case. It appears that the breach at Gannet was pulled off after a…
Following the report about Sabre breach, IT security experts from Prevalent, Inc., VASCO Data Security, FireMon, Cyphort Labs and Varonis Systems commented below. Jeff Hill, Director of Product Management at Prevalent, Inc.: “32,000 properties use Sabre’s reservation system, so the attackers were able to penetrate a single system and potentially access 32,000 additional targets. That’s a good day’s work, but what’s more disconcerting is that this number may not encapsulate the entirety of the potential attack surface. The compromised Sabre system, according to its website, offers “seamless connectivity to over 120 property management, 7 revenue management, 7 CRM and 18 content management solutions”, yielding another 152 potential…
Analysts Identify Five High-Priority Actions for Data Controllers and Processors Inside and Outside of the European Union STAMFORD, Conn. – The European General Data Protection Regulation (GDPR) will have a global impact when it goes into effect on 25th May, 2018, according to Gartner, Inc. Gartner predicts that by the end of 2018, more than 50 per cent of companies affected by the GDPR will not be in full compliance with its requirements. “The GDPR will affect not only EU-based organisations, but many data controllers and processors outside the EU as well,” said Bart Willemsen, research director at Gartner. “Threats of hefty fines, as well as…
Following the news that the hackers behind the weekend’s Netflix ransomware attack are now warning of further leaks, low, Raj Samani, Chief Scientist at McAfee commented below. Raj Samani, Chief Scientist at McAfee: ‘Historically ransomware attacks would adopt a scatter gun approach, simply acquiring lists of email addresses and emailing the recipients with malware laden messages, meaning that many businesses would inadvertently get caught up with these attacks. However as shown by this latest run of attacks against Netflix, ABC and Fox, ransomware developers are now adopting a targeted, tailored approach.’ ‘The cybersecurity industry needs to adapt to this new…
