IoT is having a profound effect on business. 57 per cent of all global businesses have adopted IoT practices and 72 per cent of those believe their company is more profitable since embracing IoT. With this large scalability, however, comes the potential for catastrophe. More connected devices bring new business challenges around scale, interoperability, security and the management of devices and endpoints. Businesses need to think strategically about IoT adoption and not become caught up in the next wave of innovation. Any size organisation can benefit by connecting IoT to business processes – but, if a strategy is not in place, companies will find themselves…
ISBuzz Team
MPs have claimed a voter registration site that crashed in the run-up to last year’s EU referendum could have been targeted by a foreign cyber-attack. IT security experts from Infoblox and Veracode commented below. Dr Malcolm Murphy, Technology Director, Western Europe at Infoblox: “While nothing has yet been confirmed, the news that the voter registration site may have been subject to a DDoS attack highlights the current prevalence of large scale attacks of this type, and a pressing need for providers to be able to assuredly identify the signs of a DDoS attack when it takes place in order to take immediate remedial…
Microsoft today buried among minor bug fixes patches for critical security flaws that can be exploited by attackers to hijack vulnerable computers. In a massive shakeup of its monthly Patch Tuesday updates, the Windows giant has done away with its easy-to-understand lists of security fixes published on TechNet – and instead scattered details of changes across a new portal: Microsoft’s Security Update Guide. Cris Thomas (aka Space Rogue), Strategist at Tenable Network Security commented below. Cris Thomas (aka Space Rogue), Strategist at Tenable Network Security: “Microsoft’s updated portal is a change in focus from bulletins to CVEs. This makes it much easier for people to…
2017 Security Pressures Report Shows 53% of Respondents Face Increased Overall Pressure to Secure their Business CHICAGO. Trustwave today released its 2017 Security Pressures Report, based on a global survey of 1,600 information security decision makers that measures the immense pressure in-house cybersecurity professionals face and the key drivers behind that pressure. The fourth-annual report also provides a year-over-year comparison of 2015 and 2016 and includes regional viewpoints from the United States, Canada, United Kingdom, Australia, Singapore and, for the first time, Japan. The report offers recommendations to help businesses ease employee distress and create higher-performing security teams. The new study shows that…
Following the news about the rise in hospital cyber attacks, Wieland Alge, General Manager EMEA at Barracuda Networks commented below. Wieland Alge, General Manager EMEA at Barracuda Networks: “Healthcare records holding sensitive and personal data are 100 times more valuable than stolen credit card details, so it comes as no surprise to us that the NHS is being increasingly targeted by attackers. While the digital security in medical devices has yet to be standardised, hospitals and other medical facilities cannot just wait until devices become secure and safe. They must build resilient infrastructures that protect their patients from attack and exploitation. Many…
M-Files Enables Organisations to Easily Manage Personal Data and Adhere to GDPR requirements M-Files Corporation, a provider of solutions that dramatically improve how businesses manage documents and other information, today announced offerings that help companies better protect their customers’ personal data and adhere to GDPR requirements. The objective of the European Union (EU) General Data Protection Regulation (GDPR) is to simplify and harmonise data privacy laws across Europe, and give EU citizens control of their Personally Identifiable Information (PII). There are substantial non-compliance fines — up to €20M or 4 percent of global annual turnover based on the preceding financial…
Following the news that the FDA, regulators and medical-device-makers are bracing for an expected barrage of hacking attacks even as legal and technical uncertainties leave them in uncharted territory. Mike Ahmadi, Global Director – Critical Systems Security at Synopsys commented below. Mike Ahmadi, Global Director – Critical Systems Security at Synopsys: “If the past year in hacking news is any indicator, the medical industry and regulators should indeed be wringing their hands over what is likely on the horizon. Medical devices remain extremely vulnerable by any standard, and device manufacturers are simply neither incentivized to resolve security issues, nor are they…
Unit 42, Palo Alto Networks threat research unit has observed multiple new samples of the Android Adware family “Ewind”. Researchers believe the attacker is Russian however “Ewind” appears to deliberately target Russians – unusual as Russian actors tend to avoid targeting Russian subjects. The adware Trojan potentially allows full remote access to the infected device, it includes other functionality such as collecting device data, and forwarding SMS messages to the attacker. Some of the popular Android applications that Ewind targets include: GTA Vice City AVG cleaner Minecraft – Pocket Edition Avast! Ransomware Removal VKontakte Opera Mobile. “Ewind” is more than…
Following the news that IBM has discovered the Mirai botnet deploying a bitcoin mining payload, Stephen Gates, Chief Research Intelligence Analyst at NSFOCUS commented below. Stephen Gates, Chief Research Intelligence Analyst at NSFOCUS: “Many fail to realize that botnet herders are fully capable of commanding their bots to perform all sorts of different activities. Since herders have full control over their minions via command and control (C&C) communications, instructing them to download and execute additional code to launch different types of DDoS attacks, help spread malware, and perform bitcoin mining are all achievable. Having access to large amounts of compute…
Trusona, the only insured authorization platform, just released a 100% free product to help protect those who manage WordPress sites, as well as their readers, from hacks and Malware. Trusona’s WordPress Plugin eliminates static, username / password-based logins (which are made available after a breach) and guarantees that the right person is logging into an account (not just someone who has the credentials). By using Trusona’s WordPress Plugin, managers of WordPress sites can insure they are the only ones making updates to content and protect their readers from Malware. With Clef shutting down in June, Trusona’s WordPress Plugin can serve…
