expert-profile | Information Security Buzz

Niamh Muldoon

Senior Director of Trust and Security EMEAfeature_status*/ ?>

OneLogin

Comments Dotted : 28

January 22, 2021

Cyber Expert On Malware Found On Laptops Provided By Government For Home-schooling

New and young students using online learning for the first time are most vulnerable.

During the start of an academic year and preparing for lock-downs with the pandemic, students and professors alike are often caught in the chaos. Distractions are plentiful as people reconnect from over the break, and individuals navigate new ways of learning and schedules. Information floods in, typically by email and collaboration tooling. Unfortunately, recipients are often ill-prepared to determine if devices are configured with security in mind. New and young students using online learning for the first time are most vulnerable. Seeing that cybercriminals have consistently targeted academic institutions through various threat vectors including phishing campaigns, it would be wise for these education institutions to offer support and training. The training really should be provided prior to providing devices and online system access. It is only through security awareness training that students and staff can make better informed decisions. Partnering with IAM trusted providers to implement two-factor authentication reduces associated risks of unauthorized access to education devices and systems.

Read Less

January 22, 2021

How Much Are You Worth On The Dark Web? (Credit Card, PayPal, SSN)

Now individuals need to stay conscious and aware, choosing to only use service providers who protect their finances and identity.

I believe the introduction of Strong Customer Authentication (SCA) as part of the EU revised Payments Services Directive (PSD2), will reduce the risk of credit cards being stolen in the future. With Strong Customer Authentication, the financial and banking industry have enabled individuals to make informed risk-based decisions. Now individuals need to stay conscious and aware, choosing to only use service providers who protect their finances and identity with strong authentication, or

This regulation came into effect on the 31st of December 2020 for EU and EAA regions. As a result, we are seeing an increase in demand for identity and access management expertise to support businesses in meeting these requirements as well as balancing cost, compliance, and risk

Read Less

January 21, 2021

70% of UK Finance Industry Hit With Cyber-Attacks In 2020

Ransomware will remain a global cyber security threat during 2021.

The COVID19 pandemic has created a new reality for the finance sector globally, not just in the UK. Unfortunately during this crisis we saw malicious actors and attackers take advantage of the smaller more vulnerable financial organisations and exploit the weak access control measures and utilising social engineering phishing campaigns as their main vehicle to target and exploit targeted audiences, resulting in data breaches and or ransomware attacks.

Ransomware will remain a global cyber

Ransomware will remain a global cyber security threat during 2021 for these smaller financial providers and the associated risk of this threat is increasing. With the business disruption caused by COVID19, we have seen an accelerated need for digital transformation within the financial sector particularly the smaller financial industry providers..

The fundamental security requirement for the finance industry is to understand who and what is trying to access finance technology environments and the data stored within. The cycle of lockdowns and the return to work regulations require organisations to put hybrid operating models in place that cater for both office and remote working, further highlighting the importance of identity and access management to support the business through this transformation.

Understanding financial data is subject to both regulatory and compliance requirements, we are seeing an increase in financial providers and general practitioners reaching out to us as industry experts to partner on identity and access management.

Read Less

January 15, 2021

Cybersecurity Experts On CISA Announcement On Hackers Bypassing MFA To Access Cloud Services

Access control processes of provisioning and de-provisioning are great examples that need conscious focus.

Security culture and maintaining security consciousness with your entire organization and/or end-users is critical not just for identifying and responding to security threats but following security processes. Access control processes of provisioning and de-provisioning are great examples that need conscious focus and attention to ensure only those that have a business requirement for access have access and their access is approved, reviewed and monitored per the access control principles of

Read Less

January 13, 2021

Expert Reaction On Latest Update On Data Breach At Capcom

Cybercrime is a business so all should think of it in this way.

Cybercrime is a business so all should think of it in this way. Out of all the various types of cybercrime activities ransomware is the one activity that has a high direct return of investment associated with it, by holding the victim's ransom for financial payment. Taking the global economic environment and current market conditions into consideration cybercriminals will, of course, continue to focus on their efforts to this revenue generating stream. Remember that your employees are your most valuable assets both from a security threat awareness perspective but to provide valuable insights into the pulse and culture of the organization so it's important to keep a close eye on the ground. The key message here is no one, industry or company, is exempt from the ransomware threat and it requires constant focus, assessment and review to ensure you and your critical information assets remain safeguarded and protected against it.

Read Less

December 22, 2020

Expert Insight On Flavors Designer Symrise Ransomware Attack

Organizations can pro-actively defend against Ransomware by having crisis management in place that practice scenarios involving Ransomware.

Ransomware brings organizations grinding to a halt, causing havoc and shutting down business function in the worst instances. This is of particular concern for manufacturers and developers such as Symrise, for whom just-in-time supply chains mean a total shutdown constitutes a serious problem, for them as well as most likely for other companies at various stages of the supply chain. Organizations can pro-actively defend against Ransomware by having crisis management in place that practice scenarios involving Ransomware. Key learnings come from crisis management table top exercises including business continuity gaps. That this particular ransomware uses an auction system will only make it profitable, and therefore more popular. The best defence against ransomware is a robust Business Continuity Plan which includes regular backups, version control and thorough testing of disaster recovery procedure]s. Companies that leverage cloud-based storage and automatic synching from end point devices will be well-placed to recover from such attacks, but should practice the recovery procedure to minimize downtime if an attack does occur. Rebuilding Customer Trust will be critical to Symrise future brand success and this can be achieved with transparent constant communication as well as continued investment in CyberSecurity. Considering should be given to partnering with Trusted Security expertise who can support Symrise rebuild this trust and their success.

Read Less

December 04, 2020

Experts On Xerox DocuShare Bugs Allow Data Leaks

Security Automation is hugely beneficial to delivering quick responses to reduce risk exposure.

Bugs such as this are very concerning, particularly as document signing happens online more and more. This is an example of the importance of an Enterprise Security Programme, where organisations understand their Information Assets and have an up-to-date Asset Management Inventory. By having these, organisations can prioritise applying patches when vulnerabilities and/or bugs like this are announced. The prioritisation of applying patches varies from organisation to organisation, but should fundamentally be based on risk assessment criteria of the services offered by the exposed website, i.e. payments, authentication credentials, and PII data. Security Automation is hugely beneficial to delivering quick responses to reduce risk exposure. Multi-Factor Authentication (MFA) plays a role in reducing the risk of this vulnerability being exploited, exposing critical data. However, that is dependent on the second and third-factor types, i.e. token type and how they have been implemented/configured with the WordPress Site. Read Less

November 26, 2020

Expert Reaction On Onfido’s Survey Shows UK Consumers Demanding Better Digital Identity Verification

End-users are given the means to make conscious decisions to protect their identity as well as access to data.

These survey results echo what we are seeing on the ground and highlight the continued need for technology service providers to partner with trusted security experts. This way, end-users are given the means to make conscious decisions to protect their identity as well as access to data; not only from a security perspective but equally, from a privacy perspective too.

November 24, 2020

Hoard Of Spotify User Data Exposed By Hackers’ Careless Security Practices – Experts Reaction

Organizations should enable their end-users to be as security first.

This is a great example of why single authentication mechanisms are so weak. It can be hard for individuals to remember all the accounts they hold and to keep up to-date with every data breach that is happening. Therefore, organizations should enable their end-users to be as security first and conscious as possible. An easy way for organizations to do this is by streamlining access via a single sign-on platform, securing their access via two-factor authentication to protect them against risks.....Read More

November 11, 2020

Malicious Use Of SSL Increases As Attackers Deploy Hidden Attacks

Other security controls and alerts would highlight this as malicious activity for investigation.

I agree that using security controls such as SSL cert to secure communications and links could support masking the threat and attack vector and this is why in-depth control frameworks are so important; Other security controls and alerts would highlight this as malicious activity for investigation. An identity and access management platform that accesses risk control from both an authentication and authorization perspective would support identifying these malicious attack attempts as risk factors would change and reduce the associated risks. For any cybersecurity team to be successful they must have security monitoring, alerting technologies and tooling throughout their organisation’s architecture so they can identify a threat and respond accordingly to reduce business impacts and consequences, up to and including preventing a data breach. In a cybersecurity protection role this too can include the ability to monitor encrypted communication channels. There are no privacy implications here; The definition of privacy is the permitted access to data to carry out the business requirements, and in this case access is granted to review communication channels and identify the cybersecurity threat contained within the encrypted channel. That being said, if the security team have been involved in the design and architecture of the network/communication channels using encryption, they will be implemented in a way that they can identify authentication communications to unauthorized users, along with the ability to monitor a specific communication should they need to. Read Less