Following the news that Threatpost is among media outlets reporting a major vulnerability in Schneider Electric’s industrial controller management software that would allow hackers to remotely execute code on industrial networks. IT security experts from Rubicon Labs, Tripwire, commented below. Rod Schultz, VP of Product at Rubicon Labs: “Remote code execution is one of many vulnerabilities for a digital system that has been connected to a network. While they are sophisticated attacks, once discovered they are incredibly easy to reproduce, and an example of a type of attack that will be seen in IoT. Security is becoming more important and unfortunately,…
ISBuzz Team
– Organisations report distinct lack of in-house cyber skills – Research from Databarracks has revealed that nearly half of UK organisations (47 per cent) feel that they have insufficient skills in-house to deal with the current cyber threat landscape. These figures are from the 2016 Data Health Check, a survey of over 350 IT decision makers in the UK. The report, published last month, revealed that two thirds (66 per cent) of people questioned had been affected by a cyber threat in the past 12 months, with just 53 per cent of organisations feeling they have sufficient cyber security skills…
Report Reveals Consequences of Failing to Appreciate “Second Economy” Dynamics of Cybersecurity; Medical Records Fail to Eclipse Market Value of Stolen Financial Data and Pharmaceutical, Biotech Data NEWS HIGHLIGHTS McAfee Labs finds stolen medical records available for sale from $0.03 to $2.42 per record Comparable stolen financial account records available for $14.00 to $25.00 Credit and debit card account data available for $4.00 to $5.00 per account record Most lucrative cybercrime targeting health care industry data is pharmaceutical, biotech intellectual property Cybercrime-as-a-service economy is developing specifically around health care industry data Concerted effort by cybercriminals to recruit health care…
Tech-savvy youth could plug a widening skills gap as employers seek to combat the growing threat of cybercrime and avert mass disruption to public and private lives. But the industry is failing to provide a clear path for young people to find work, hone their skills, and serve society. Instead, they are being tempted to exacerbate cybercrime, rather than prevent it. In a wide-ranging new survey of 12,000 consumers and IT professionals from across the US and Europe, Kaspersky Lab found under-25s, highly skilled and highly impressionable, are already inured to the shock of large-scale cyber hacks. Their concern only…
Vectra Networks has uncovered a hacking group (code named Moonlight) conducting cyberespionage against targets in the Middle East. Vectra has identified over two hundred samples of malware generated by the group over the last two years. Key findings: The attacks are themed around Middle Eastern political issues and the motivation appears to relate to espionage, as opposed to opportunistic or criminal intentions These are not technically sophisticated attackers, however, they do deploy some novel tactics and the implications of these attacks could be significant Both the tools and targets of Moonlight are reminiscent of “Gaza Hacker Team” – a group of…
As the evenings draw in and get darker and we dig out our warm woolly jumpers, it can only mean one thing — winter is coming! There are now 60 days until Christmas Day and only two pay days to get your gifts for friends and family. As consumers prepare for the festive season, so do retailers. Supermarket shelves are already being filled with festive treats and online retailers are preparing for the biggest Internet shopping weekend, ‘Cyber Weekend’ (25 – 28 November) that stretches from Black Friday through to Cyber Monday. Last year saw record-breaking figures over this weekend with consumers spending…
Following a renewed effort from the Government today to protect UK consumers’ digital identities, Richard Parris, CEO at British cyber security company, Intercede commented below. Richard Parris, CEO at Intercede: “The Government’s renewed attempt to protect UK consumers’ digital identities today with the #thinkrandom campaign is obviously well intentioned. However, what I want to see is the Government putting more of an effort into openly encouraging service providers to eradicate simple password authentication altogether. In reality, how successful are campaigns like #thinkrandom and 2014’s Cyber Streetwise campaign in protecting consumers? Consumers can make their passwords as long and complicated as physically possible, and…
Users beware: a new ransomware is on the loose! After nearly a month without any new releases of the Cryptovirus type – which is a pretty long time in the security sector – it turns out this was just the calm before the storm. In the past 24 hours two brand new ransomware strains were unleashed. We already mentioned the .Shit File Virus Ransomware in our previous post, but it was quickly followed by another member of the Locky family, called .Thor File Virus, less than 24 hours later. As Locky is arguably the most feared ransomware family due to…
Key Takeaways On October 21, 2016, a series of distributed denial-of-service (DDoS) attacks against Dyn DNS impacted the availability of a number of sites concentrated in the Northeast US and, later, other areas of the country. Impacted sites included: PayPal, Twitter, Reddit, GitHub, Amazon, Netflix, Spotify, and RuneScape. While the attacks were still ongoing, Flashpoint was able to confirm that at least one portion of the attack was initiated by a Mirai Command and Control server. Mirai botnets were previously used in the DDoS attacks earlier this month against the “Krebs on Security” blog and the French internet service and…
New research reveals contactless payment fears of data theft, yet people still taking the same risks with their personal information New research has revealed over two fifths of UK consumers (43%) today feel more at risk when paying for items and services on their smartphone compared to a year ago. With data breaches and cyber-attacks hitting the headlines more so than ever before, it’s hardly surprising that consumers are fearful over the safety of their valuable personal data when using these alternative payments methods. Recent figures revealed that the number of Europeans regularly using a mobile device to make payments has tripled in…