Research from Kaspersky Lab shows that the debate over whether ransomware victims should ‘pay up’ could be redundant because large numbers of victims don’t actually get their files back even if they have paid the cybercriminals. The study found that over a third of victims (36 per cent) choose to pay a ransom to release their files after a ransomware attack, but one in five users still don’t get their files back. As a result, Kaspersky Lab is urging users not to give in to ransomware criminal demands, but to report crimes to the authorities instead. The findings, which are part of…
ISBuzz Team
REDWOOD CITY, CA. Anomali, provider of market-leading threat intelligence platforms, today announced the results of a Ponemon Institute study revealing that 70 percent of security industry professionals believe threat intelligence is often too voluminous and/or complex to provide actionable insights. The report also showed that organisations neglect to share essential threat data with board members and C-level executives, despite the fact that security is now a business priority. On average, only 31 percent of these key stakeholders receive information that can be used to inform them about critical security and risk issues they face today. Anomali partnered with Ponemon to…
Google has revealed that it has found a Windows zero-day vulnerability that is being used in a number of attacks. Google has reported the issue to Microsoft, but no patch or advisory has been issued as of yet. Thomas Pore, Director of IT and Services at Plixer commented below. Thomas Pore, Director of IT and Services at Plixer: “Zero-day vulnerabilities can be extremely valuable, both to those engaging in offensive protection and to those looking for malicious exploitation. While Windows still dominates the end-user operating system experience, news of an unknown privilege escalation vulnerability is serious business as many are…
According to a recent Gartner forecast analysis, by 2018, ninety percent of organizations will implement at least one form of integrated data loss prevention (DLP), up from 50 percent today: “Organizations have been deploying DLP to address regulatory compliance, intellectual property (IP) protection and data visibility and monitoring. Newer solutions that include user entity and behavior analytics, image analysis, machine learning, and data-matching techniques are being used to augment existing solutions.” DLP has been a challenge for most organizations, failing to fully realize the promise of protecting sensitive data. At best, point-based DLP solutions only deliver a fraction of the…
Following the news on the government’s 1.9 billion announcement in cyber defence spending, IT security experts from Corero Network Security, Glasswall Solutions, HEAT Software, SentinelOne, Imperva, ESET, comparitech.com, CrowdStrike, Veracode, WhiteHat Security, Barracuda Networks, Digital Guardian, ForgeRock and DQM GRC commented below. Dave Larson, COO and CTO at Corero Network Security: “Plans unveiled today by Chancellor Philip Hammond focused on major initiatives to better protect the businesses and ultimately, the citizens of the UK. The ever increasing and evolving cyber threat landscape has become dinner table conversation as of late, these events are becoming increasingly common, and proactive, automated solutions must…
Following the news that the Australian Red Cross blood service has been breach, Jonathan Martin, EMEA Operations Director at Anomali commented below. Jonathan Martin, EMEA Operations Director at Anomali: “This is now the third critical infrastructure network to be breached in Australia in close succession. First the Bureau of Statistics, then the Bureau of Meteorology, and now the Australian Red Cross. This is by far the worst breach that the country has seen, with extremely personal data put at risk by not having any protective system in place. Companies that deal with such sensitive data or valuable intellectual property, are…
‘Paper free’ has been a buzz word for around thirty years now[i]. It’s a phrase that conjures up images of businesses with decluttered and contemporary offices, or people who live minimalistic and entirely modern lives. Lives where all files are digital, where in-trays are banned and where bank statements, bills or other personal paperwork isn’t bringing chaos to home offices and desk drawers. World Paper Free Day (4 November, 2016) is fast approaching, so perhaps it’s time to reflect on our relationship with paper and how we manage our documents. For some, the concept of going paper free is aspirational,…
“Do you have any insect repellent? I’ve been told my computer has a bug.” There is no doubting that cyber security is a very technical subject, and with the current state of hacking for profit and the games of cat and mouse among nation states, it’s more stressful than ever. With Halloween here, Imperva thought they’d offer up a “treat” designed to bring cyber security professionals a laugh or two. We have all heard the phrase, “you’re only as secure as the weakest link,” and sometimes the teams we support ask cringe-worthy questions that really make us wonder. To have a…
Kaspersky Lab has released a report on botnet-assisted DDoS attacks for the third quarter of 2016 based on data received from Kaspersky DDoS Intelligence*. Activity by attack servers located in Western Europe and the number of the resources attacked in the region have both increased. The number of sophisticated DDoS attacks emanating from encrypted traffic has also grown. Over the reporting period, resources in 67 countries were targeted by botnet-assisted DDoS attacks. The number of attacks on resources located in Japan, the US and Russia increased noticeably, while the number of victims in China and South Korea fell considerably. This…
News has broken of a new malware family called Linnux IRCTenet and is written in C++. The malware is aiming for Linux based IoT devices with the main purpose of adding those devices to a botnet and carrying out DDoS attacks. Mike Ahmadi, Global Director – Critical Systems Security at Synopsys commented below. Mike Ahmadi, Global Director – Critical Systems Security at Synopsys: “It is not at all surprising that a new exploit targeting these devices has been discovered, since many of these devices are built using open source third party libraries. When we apply software composition analysis tools to many of the most popular…