Following the news that Luxembourg state’s Internet infrastructure has been the target of a malicious cyber attack, Ben Herzberg, Security Research Group Manager at Imperva Incapsula commented below. Ben Herzberg, Security Research Group Manager at Imperva Incapsula: “Organizations need to prepare for DDoS attacks, and know ahead of time what they will do when an attack hits them. DDoS is a family with different types of attacks, so organization need to know they have them all covered. Once they apply protective measures against all types of DDoS attacks, and test the mitigation on their live network, they should make sure that any architecture…
ISBuzz Team
Following the news about the growing threats from cyber-attacks to financial institutions, New York State officially implemented new regulations that require banks and insurers to meet certain cyber security standards. But many are concerned that, with the range of threats facing organizations, the regulations will fall short of truly protecting consumers and organizations from breaches and hacks. Ed Adshead-Grant, General Manager of Payments at Bottomline Technologies commented below. Ed Adshead-Grant, General Manager of Payments at Bottomline Technologies: “In its current form, the cyber security regulation proposed by New York State for banks and insurers is missing the mark, as it fails to address one key…
Following the news that President Donald Trump is seeking what he called a “historic” increase in defense spending, but ran into immediate opposition from Republicans in Congress who must approve his plan and said it was not enough to meet the military’s needs. Ryan Kalember, SVP of Cybersecurity Strategy at Proofpoint commented below. Ryan Kalember, SVP of Cybersecurity Strategy at Proofpoint: “The sophistication and tactics of today’s cybercriminals are outpacing us and throwing billions of additional dollars at defense spending will be meaningless if a robust cybersecurity plan isn’t woven into an overall defense strategy. Modern warfare extends beyond the physical battlefield—and…
The digital age has given rise to a plethora of new possibilities for data storage and sharing. Businesses of all sizes and from all industries are enjoying a larger amount of capabilities than ever before. That said, these new opportunities and advantages do not come without a cost. Security is more important than ever in a professional environment. Everything from customers’ payment information to highly-sensitive company data must be protected to avoid serious liability. Business intelligence specialists are now teaming up with security professionals to provide the solutions organizations need to keep data safe. From secure encrypted online setups to…
The Internet of Things is no longer science fiction. If it’s not in your home already, it will be shortly, and IoT will only grow more pervasive in the coming years. Soon, just about every “thing” that exists will be connected to every other “thing.” That concept is incredibly exciting—and incredibly dangerous. Many of us are aware that online threats are pervasive, and result in devastating cyberattacks on governments, businesses and private citizens. What most people still don’t know is that, within the next 10 years, those attacks will become exponentially more difficult to prevent. The reason: quantum computing. Tech…
Following the news about Government’s post-Brexit digital strategy, Dr Jamie Graves, CEO at ZoneFox commented below. Dr Jamie Graves, CEO at ZoneFox: “Although the Government’s digital strategy is encouraging, currently the lack of detail is concerning. So far, the initiative fails to pinpoint factors such as how it will be measured to ensure its success. Britain doesn’t need any more strategic plans, it needs to start seeing tangible results. “Rolling out free, basic digital skills is a welcome start, but not all the UK needs. Cyber crime is continuing to cripple companies and over two-thirds of businesses can’t find enough talent to…
Intel Security, CSIS Survey: Only half of IT staff agree with executives that their cybersecurity strategies have been implemented HIGHLIGHTS New report from Intel Security, CSIS, finds three key areas of misaligned incentives that advantage cybercriminals: Between fluid attackers and bureaucratic defenders Between organisational strategy and real-world/actual implementation Between executives and implementers who measure success differently Attackers thrive in a fluid, decentralised market, while bureaucracy and top-down decision making constrains defenders 93 percent of organisations surveyed have a cybersecurity strategy, but only 49 percent have fully implemented these strategies Nearly 60 percent of IT executives believe their cybersecurity strategy is…
Major financial firms operating in New York will face stiff cybersecurity obligations under a new regulation introduced in the city. The rules address a broad range of cybersecurity issues, from the maintenance of written policies, governance and auditing, to detection, defence and response measures, testing requirements and incident reporting. Tim Erlin, Director, Security and IT Risk Strategist at Tripwire commented below. Tim Erlin, Director, Security and IT Risk Strategist at Tripwire: “The new NY DFS regulation has the same challenges that all cybersecurity regulations face: how to provide prescriptive requirements that are technology agnostic. The DFS regulation addresses the challenge of keeping up with…
Throughout February, researchers at Forcepoint have been identifying a new and unusual piece of malware – the miniature Monero mining botnet. Just like the California Gold Rush attracted amateurs lured by the promise of easy money (the original ’49ers’), a low barrier-to-entry is tempting unskilled individuals to take up cryptocurrency mining. In January 2017 it was reported that the Sundown Exploit Kit was dropping a cryptocurrency miner based on open source code. At the time, the lack of ‘tradecraft’ evident in this sample was noted and it was suggested that it was representative of a trend towards so-called novices engaging in cybercrime. February 2017 sees a similar, arguably…
Recent figures released by Google have revealed that just 1.2 per cent of Android phones have the most up-to-date version of the operating system installed. This is a clear indicator of just how inconsistently security fixes are implemented across Android devices, and how assuming that the operating system alone can keep apps safe is a naïve approach. This is according to app security specialist Promon. According to the latest statistics, the most popular versions of the Android operating system are Lollipop 5.0 and 5.1 (installed on 32.9 per cent of devices) and Marshmallow 6.0 (30.7 per cent of devices), despite these versions being…
