Cybersecurity experts commented on a new report issued by the Ponemon Institute and Cyphort, “Challenges to Achieving SIEM Optimization.” Key findings include: 76 percent of respondents value their SIEM as a strategically important security tool Only 48 percent were satisfied with the actionable intelligence they get from their SIEMs 78 percent of the organizations surveyed have one or less full-time staff assigned to SIEM administration 64 percent or organizations pay more than $1 million annually for external consultants and contractors to assist with SIEM configuration and management “The root of their dissatisfaction seems to be related to the complexity of…
ISBuzz Team
Last year prominent companies like Seagate and Snapchat felt the devastating impact of W-2 phishing schemes. Now, according to an alert from the IRS issued earlier in the tax season, not only has the tactic spread beyond the corporate world to other sectors, but fraudsters are coupling these efforts with an older scheme on wire transfers. These advanced social-engineering attacks are causing companies to lose employees’ valuable information and thousands of dollars. According to Sophos’ Senior Security Advisor Chet Wisniewski, businesses should consider the following tips to avoid tax scams as we approach the final month of tax season: The IRS will never contact you for…
Zero-day software vulnerabilities – security holes that developers haven’t fixed or aren’t aware of – can lurk undetected for years, leaving software users particularly susceptible to hackers. A new study from the RAND Corporation, based on rare access to a dataset of more than 200 such vulnerabilities, provides insights about what entities should do when they discover them. RAND researchers have determined that zero-day vulnerabilities have an average life expectancy – the time between initial private discovery and public disclosure – of 6.9 years. IT security experts from Synopsys, Cylance Inc., prpl Foundation, Lastline, Positive Technologies, Alert Logic, AlienVault and Tenable Network Security commented…
LONDON. Global cyber-security company, Kaspersky Lab, today announces the launch of two threatening yet provocative scents. Threat de Toilette pour femme and pour homme are being officially released at an event at iconic Soho restaurant, Bob Bob Ricard. With the aim of educating today’s modern man and woman about the virtual threats we face daily, Threat de Toilette contains all the perfectly coded base notes of cybercrime; hints of spam and drops of ransomware which will ensnare your love affair and cast a love virus. “Fear awakens our senses,” says David Emm, Kaspersky Lab’s principal security researcher and face of the new scent, “The men…
According to the recent Wikileaks documents, British spy agencies worked with the CIA to turn televisions and smart phones into bugging devices that can record conversations and even take photographs. IT security experts from Tripwire, FireMon, Vectra Networks, Core Security, Pushfor, Cylance, Varonis, Synopsys, Comapritech.com, Sentinelone, Balabit and Avast commented below. Craig Young, Security Researcher at Tripwire: “If the reports are correct that intelligence agencies have developed the capability to deploy hacked firmware to a TV through a USB update process, it is also reasonable to believe that this technique could be extended to subvert the firmware update process over the Internet. Doing this…
ESET researchers have discovered 13 new Instagram credential stealing apps on Google play and looked into the motivations behind the fraudulent schemes in a new blog post. Under the detection name Android/Spy.Inazigram, the malicious apps were phishing for Instagram credentials and sending them to a remote server. While they appear to have originated in Turkey, some used English localization to target Instagram users worldwide. Altogether, the malicious apps have been installed by up to 1.5 million users. Key features of the apps: To lure users into downloading, the apps promised to rapidly increase the number of followers, likes and comments…
Following the news about the FBI Director James Comey’s recent remarks with regards to encryption and how it threatens to undermine the “bargain” that has balanced privacy and security, Jacob Ginsberg, Senior Director at Echoworx commented below. Jacob Ginsberg, Senior Director at Echoworx: “If Comey thinks that encryption is increasingly blinding his agency’s investigative capability, I will point out that he’s trying to peer into the digital footprint of citizens more than ever before. The amount of information contained on our smartphones and other devices is unprecedented, and creating cryptographic backdoors diminishes trust and weakens the overall security of the technology being used.…
On Tuesday, 7th March, WikiLeaks published thousands of documents. The documents are alleged to show tactics and tools employed to, among other things, break into computer devices from leading manufacturers, to circumvent installed security solutions and even lay a trail of false flags. Kaspersky Lab believes, along with many of its colleagues across the security industry, that consumers and organizations have a right to personal privacy and to the protection provided by their security solutions and devices. The sharing of information on new vulnerabilities is one of the basic principles of our industry – and is known as coordinated vulnerability disclosure. This…
Retailers are often held financially accountable for credit card fraud. In this regard, ecommerce enterprises are particularly at risk because in every case it’s a “card not present” transaction. In a time when expedience is a competitive advantage, it becomes important to balance speed of processing orders against talking steps to ensure each transaction is a legitimate one. With that said, here are seven solid strategies for preventing ecommerce credit card fraud. 1) Match billing and shipping addresses Yes, people do place orders as gifts, but any time the shipping and billing addresses don’t match, a verification protocol should be…
Following Phillip Hammond’s Spring Budget, Lee Murphy, Owner at Accountancy Software Pandle commented below. Outlines: How the Pound’s seven-week low will be turned around by falling corporate tax rates How SMEs will benefit from business rate cuts Why the Making Tax Digital delay was not only welcomed, but expected Lee Murphy, Owner at Accountancy Software Pandle: “Despite the pound hitting a seven-week low in anticipation of the Spring Budget, Hammond’s plans to bolster the UK economy in light of Brexit are encouraging. By lowering corporate tax to 19% from April this year, the UK will enjoy the lowest corporate tax rate in…
