High Frequency, Long Duration, Repetitive Attacks from DDoS-for-Rent Tools Becoming More Common; Cost of Mounting Attacks Drops as a Result Imperva, Inc. (NYSE: IMPV), committed to protecting business-critical data and applications in the cloud and on-premises, today released its Q2 2015 Global DDoS Trends Report. The report findings, based on over 3,000 mitigated DDoS attacks and 60 million blocked bot sessions across all sites which were protected using Imperva Incapsula, show a high frequency and long duration of DDoS attacks against organizations during the period from March 1 through May 7, 2015. The report also details DDoS attacks that are beginning…
ISBuzz Team
Magna Carta: My Digital Rights – the public can now help build a ‘Magna Carta for the digital age’ The public to choose from more than 500 My Digital Rights clauses generated by over 3000 students worldwide Analysis shows students leaning towards safety and privacy on the Web, over freedom of speech The public’s ‘Top 10’ clauses will be published on Magna Carta Day, Monday 15 June For Voting : Visit HERE This week the public have the chance to shape a ‘Magna Carta for the digital age’ by voting for My Digital Rights clauses generated by school students from…
On 1st June 2015 the new PCI (Payment Card Industry) 3.0 standard became mandatory, and includes a requirement to conduct web penetration testing at least once a year. However, while compliance is obligatory this enhanced standard shouldn’t breed complacency – annual pen testing should be seen as a minimum, and pen testing itself is only capable of mitigating a specific range of threats. There’s considerable emphasis on ‘at least’, and the PCI guidelines 3.1 (mandatory in June 2016) spell frequency requirements out more clearly: “Examine the scope of work and results from the most recent external penetration test to verify that penetration…
Comments from Nathan Wenzler, Senior Technology Evangelist, Thycotic on 2 year Snowden anniversary “Two years after the Snowden leaks, it’s clear that the vast majority of the IT security community doesn’t believe that the level of government surveillance has changed. What has changed is peoples’ views towards NSA surveillance. Many people suspected back in 2013 that there was a large-scale surveillance program in place, but the Snowden revelations started a national debate about privacy and security. If the recently passed legislation is any indication, people are demanding greater privacy and less government surveillance now than they did two years ago.” By Nathan Wenzler,…
There’s no need to hide shopaholics, you’re in good company. The internet’s connectivity has exploded into the retail market in the last decade, and everything from chickens to chalkboard paint can be ordered online now. With the convenience online shopping offers, many customers are skipping Black Friday for Cyber Monday, and even letting their groceries get delivered right to their door. There’s a lot to be said for never having to step out your front door and fight traffic to get what you need, and the world is totally onboard. All of this convenience and availability coupled with free shipping…
Infosecurity Europe has been hot on the agenda for the UK IT security industry, with many taking to Twitter to express their views on the top trends and issues. As this year’s show draws to its close, identity security specialist Ping Identity wanted to share social media statistics and analysis of this year’s event with you. Looking at trends mentioning the ‘#infosec15’ hashtag with an in-house analytics tool, Ping Identity reveals the top seven trends being talked about from this year’s show, followed by commentary from Clare Rees, director of marketing EMEA, on what these trends mean for the information…
Adaptive Privilege Management and Security Management Solutions Impede the Three Steps Common to Land and Expand Cyber Attacks In today’s cyber security environment, a common assumption is that advanced zero day threats are now indefensible due to the sophisticated and automated nature of the attacks. This week, in booth 325 at the Gartner Security and Risk Management Summit, Lieberman Software Corporation is exhibiting technology that can prevent zero days and other advanced cyber attacks from expanding throughout the enterprise. “There’s an assertion among some cyber security firms that the types of zero day attacks that afflicted Sony Pictures, Home Depot…
Enterprise and SMB data shows online threats originate from various applications and therefore traditional Web security should be augmented with application control Allot Communications Ltd. (NASDAQ, TASE: ALLT), a leading global provider of intelligent broadband solutions that empower communication service providers to optimize and monetize their networks, enterprises to enhance productivity and consumers to improve their digital lifestyle, announced today the availability of its new Allot CloudTrends Report Q2/2015, which highlights the magnitude of web security challenges faced by today’s modern enterprise, and the significance of an effective application-aware Acceptable Use Policy (AUP) in mitigating threats. The findings of this…
Comprehensive DDoS Protection Helps Keep Over 100,000 Players Online Every Day Imperva, Inc. (NYSE: IMPV), committed to protecting business-critical data and applications in the cloud and on-premises, today announced that InnoGames, a developer and publisher of online games, has implemented Imperva Incapsula to protect its 150 million registered players from outages due to DDoS attacks. Incapsula Infrastructure DDoS Protection safeguards critical network infrastructure from attacks that would interrupt gamer experience, disrupt business operations, and damage the InnoGames brand. Online gaming platforms are highly sensitive to latency and availability issues, making them ideal targets for DDoS attacks. Over the past year, InnoGames…
Provides Government and Private Sector Peace of Mind That Varonis Solutions Meet Stringent, Internationally-Recognised Security Certification Standards Varonis Systems, Inc. (Nasdaq:VRNS), the leading provider of software solutions for unstructured, human-generated enterprise data, today announced that its Data Governance Suite has achieved “In Evaluation” status in the Common Criteria security certification process. Common Criteria evaluation of security products is mandated for commercial information security products purchased by the U.S. government for use in national security systems. Varonis’ participation in this process reinforces the company’s commitment to providing the highest quality assurance to its customers. Common Criteria provides both public and private sector…