A Kaspersky Lab security expert has uncovered a malware attack that tricked approximately 10,000 Facebook users around the world into infecting their devices after receiving a message from a friend claiming to have mentioned them on Facebook. Compromised devices were used to hijack Facebook accounts in order to spread the infection through the victim’s own Facebook friends and to enable other malicious activity. Countries in South America and Europe were hardest hit. Between 24th and 27th June, thousands of unsuspecting consumers received a message from a Facebook friend saying that they’d mentioned them in a comment. The message had in fact been initiated by…
ISBuzz Team
Adam Palmer, Director of International Government Affairs, FireEye, provides his view about Directive on Security of Network and Information Systems. Adam Palmer, Director of International Government Affairs at FireEye: “The EU NIS directive will have a fundamental impact on the way that most organisations in European Union member states implement security policies and report breaches. Organisations of all sizes will now need to adopt mitigation measures that will manage risk stemming from zero-day exploits and never-seen-before malware as these attacks constitute the majority of advanced attacks in today’s threat environment. Recent research carried out by FireEye shows that many organisations are not fully…
If you’re concerned about the security risks your business faces, then you’re right to be. Although many businesses have moved towards an approach to security of “we know we’re going to be breached at some point, so let’s focus on how we deal with these breaches when they occur,” prudent directors continue to understand the importance of maintaining security integrity in the first place. A negligent approach to security integrity will undermine even the very best response and actions undertaken in reaction to a breach. Your Business and Security: What You Stand to Lose Say your business security is breached. What do you stand to lose?…
Allot and Kaspersky Lab highlight the behavioral profiles most at risk of online threats during sports events, and how CSPs can deliver network-based services to protect their experience Allot Communications Ltd. (NASDAQ, TASE: ALLT), a leading provider of security and monetization solutions that enable service providers to protect and personalize the digital experience, today released Allot MobileTrends Report UEFA Euro 2016: How Sports Events Put Mobile Users at Risk, in collaboration with Kaspersky Lab, a global cyber security company. The report reveals that the risks for digitally active sports fans more than doubled during the 2016 UEFA European Championship. The report also provides insights…
This year’s Hannover Messe (leading international trade fair for industrial technology) has once again demonstrated that the idea of ‘smart’ factories is no longer a futuristic vision but concrete reality. Automation engineers and manufacturing businesses were shown fully developed ‘industry 4.0’ techniques to take the next step on the road to the fully digitised, intelligent manufacturing plant. New developments ranged from mobile ultrasound measuring devices for foresighted machine maintenance to smart liquid analysis, driverless forklifts and even collaborating robots. The growing fusion of IT and automated engineering, and the resulting intelligent collaboration of all components involved in the production process promises…
Over-stretched IT security pros spend more time fire-fighting than doing meaningful security work A study carried out by security management vendor FireMon at this month’s Infosecurity Europe in London has given brutally honest insight into the immense pressure cyber security professionals are under to carry out their jobs and meet outside regulations. A staggering 28% admitted to cheating on an audit just to pass, a figure that is up 6% from five years ago when the same question was posed. This is likely due to growing network complexity and all of the disparate technology, security and otherwise, used to keep…
Data security strategy still dangerously inadequate – but board level awareness is improving Almost two thirds of businesses still don’t know the value of critical data assets being targeted by cyber criminals, research by leading security consultant IRM has revealed. IRM’s Risky Business Report, which surveyed security heads at their recent conference, found that just 28 per cent of CISOs regularly conduct exercises to categorise and value the data within their IT estate in order to evaluate the risk associated with its loss. 55 per cent have taken partial action, while 17 per cent had taken no action at all. This…
Small to medium-sized companies now make up 99.3 per cent of the UK’s private sector business, contributing an astounding £1.6 trillion to the national economy every year.[1] With this in mind, it should come as no surprise that hackers are increasingly turning to SMEs to fuel their criminal operations. This unwanted attention isn’t being attracted solely by profitability; SMEs are also considered much easier targets than their larger counterparts. Though 82 per cent of companies believe they are too small to be considered a worthwhile target for cyber criminals, this couldn’t be further from the truth. In 2014 alone, 92…
Ransomware might be the trending topic in cybersecurity news, but it’s not the only cyber threat you should be looking at. There’s another culprit that tends to slip under the radar: people like you and me. People are responsible for making errors such as accessing an insecure web page, downloading infected software or clicking a phishing link in an email. In fact, of all the data breaches reported in the UK during Q1 2016, ICO data reveals that 62 per cent were caused by human error. These incidents involving human error are putting businesses at a greater risk of data loss. In…
Critical vulnerabilities discovered in Symantec and Norton security products. Here below Chris Wysopal, CTO and co-founder at Veracode, reflecting on how security software is second to worst category of software for application security. Chris Wysopal, CTO and co-founder at Veracode: “The critical vulnerabilities discovered in Symantec and Norton security products are not a surprise – Veracode’s State of Software Security v3 (SoSSv3) report shows security software is second to worst category of software for application security. And in general the code you buy is worse than the code you build because the operator of the software retains all liability not the software vendor.…