A third of companies say they have experienced a data loss or breach as a direct result of mobile working MANCHESTER, UK. Apricorn, the leading manufacturer of software-free, hardware-encrypted USB drives, today announced new research highlighting that a lack of rigor and consistency when it comes to protecting data poses significant security risks, as 70 per cent of IT decision makers agree that securing corporate data is an ongoing battle. The research, conducted by Vanson Bourne, found that around a third (29 per cent) of surveyed organisations have already experienced either a data loss or breach as a direct result of…
ISBuzz Team
‘73% Risk & Compliance Managers in Financial Sector Admit They’re Not Aware of Penalties of up to 5 Million Euros or 10% of Annual Turnover vs 58% of IT Managers and Decision Makers’ Oxford. A study of IT managers and decision makers and Risk & Compliance managers within UK financial services businesses, reveals a lack of preparation and understanding of the requirements of MiFID II legislation due to come into force in January 2018. The study, carried out in January 2017 for voice security services company Aeriandi, shows managers and decision makers within these institutions have little understanding of the severity…
Smartphones, watches, televisions and fitness trackers could be used to hold people to ransom over personal data, cyber security experts have warned. The risk to business is “significant and growing”, the National Crime Agency and National Cyber Security Centre say. IT security experts from Trustwave, TrapX, SentinelOne, Avast, (ISC)², MWR InfoSecurity, Thales e-Security, Axians UK, Imperva, DomainTools, Tenable, AlienVault, EclecticIQ and Cylance commented below. Lawrence Munro, Security Specialist at Trustwave: “Ransomware has become one of the most popular attack methods amongst cyber criminals because it is both easy to execute and extremely lucrative. Our 2015 Trustwave Global Security Report estimated that a success attack campaign would net a…
Now that the Internet of Things is clearly here to stay, it’s become an attractive target for cybercriminals. While the data stored on devices themselves may not be all that interesting to hackers (they probably don’t care that you took 8,745 steps today or that you need to pick up milk and eggs at the store), IoT devices can provide access to more valuable targets or be used as tools in a larger attack. For instance, in late 2016, internet service provider DYN was the victim of a DDoS attack that used wireless security cameras to send traffic to the…
Worldwide Spending on Information Security to Reach $90 Billion in 2017 STAMFORD, Conn.Organisations are transforming their security spending strategy in 2017, moving away from prevention-only approaches to focus more on detection and response, according to Gartner, Inc. Worldwide spending on information security is expected to reach $90 billion in 2017, an increase of 7.6 per cent over 2016, and to top $113 billion by 2020. Spending on enhancing detection and response capabilities is expected to be a key priority for security buyers through 2020. “The shift to detection and response approaches spans people, process and technology elements and will drive a majority of security…
The latest report from the NCSC and NCA has found that hackers could begin locking smartphones, watches and TVs, and then demand ransom for the release of these devices. Andy Norton, Risk Officer – EMEA at Endpoint protection specialist SentinelOne commented below. Andy Norton, Risk Officer – EMEA at SentinelOne: “Clearly the tactic of ransoming things is here to stay, and the footprint of what is available to ransom is only getting bigger too. In fact, a device may not be the limit of this. In May 2018, GDPR comes into force with fines amounting to 4% of revenue or 20,000,000 euros, for…
The National Crime Agency and National Cyber Security Centre have launched a report into ‘The cyber threat to UK businesses’ – see full report here. The report explores numerous avenues of the UK cybersecurity industry, nothing that ransomware is a “significant and growing” risk. It also states that connected devices and wearables are at risk and are going to be targeted more in future. You can find more on this news here. IT security experts from Micro Focus and Palo Alto Networks commented below. David Mount, Director of Security Solutions Consulting EMEA at Micro Focus: “As this report demonstrates, the IoT is ushering in a…
The Nintendo Switch is currently the hottest gaming console in the market. Yet word has it that a hacker has already cracked the Switch’s code in less than two weeks since the console’s launch. Tyler Reguly, Manager of Software Development at Tripwire commented below. Tyler Reguly, Manager of Software Development at Tripwire: “This is one of those situations where the concern is minimal. If I had a Switch, this wouldn’t concern me nor would it impact my usage of the Switch. While vulnerabilities like this are great for hardware hackers and researchers that want to learn more about the inner workings of the device, they simply aren’t realistic…
For fans of NCAA Men’s Basketball, there may be no greater sign of spring than Selection Sunday. Now that the matchups have been announced, the madness of March can begin — cue the filling out of brackets, the submitting of personal information and online transferring of money for betting purposes. But for hackers, this time of year can often provide some pretty big pay days — at your expense. Social engineering scams like phishing emails, imposter websites, and malicious links and ads are just some of the tactics used by cyber criminals during this popular sporting season. So if you…
Rapid7 disclosed multiple vulnerabilities with the Telepresence Robot from Double Robotics, a mobile conferencing device that allows the remote user to roam around an office for “face-to-face” conversations. Discovered by Deral Heiland, Rapid7’s IoT research lead, the disclosure highlights three primary vulnerabilities: Unauthenticated access to data: An unauthenticated user can gain access to Double 2 device information including serial numbers, current and historical driver and robot session information and GPS coordinates. Status user session management: The access token which is created during account assignment to a Robot never changes. If this is compromised, it can be used to take control of a robot without…
