expert-profile | Information Security Buzz

Adam Bangle

VP EMEA feature_status*/ ?>

BlackBerry

Comments Dotted : 9

June 11, 2021

Italian Government Announces National Cybersecurity Agency

 The success of this new scheme will depend on whether the Italian government can achieve several key goals.

Italy’s plan to set up a national cybersecurity agency comes hot on the heels of several major cyberattacks on national level-infrastructure, which have served as an important wake-up call for all those who have a role to play in securing critical embedded systems.

 The success of this new scheme will depend on whether the Italian government can achieve several key goals. First comes safety standardisation. Establishing security standards and safe software development principles, exercising zero trust across entire systems and ensuring that every security protocol is implemented and enforced to avoid any blind spots in perimeter defences, should be an integral part of any national cyber strategy.   

  Secondly, and most crucially, they must take a proactive prevention-based security posture to cybersecurity. Organisations and in this case national bodies need endpoint defences that stop attacks automatically so that security teams can focus on business continuity, digital transformation, and resilience-building projects. That means adopting a proactive unified endpoint security (UES) strategy based on AI, ML, and automation. Having the capability to stop malware at the exploitation stage means organisations can increase their resilience, reduce infrastructure complexity, and streamline security management.

Read Less

March 30, 2021

Experts Reaction On Harris Federation Ransomware Attack

Even the smallest chink in the nation's digital armour could spell disaster.

The news of the attack on the Harris Federation comes on the heels of last week’s warning from the NCSC of the growing threat to the education sector posed by cybercrime and ransomware in particular. During this pandemic, we have seen a nearly 600% rise in malicious attacks worldwide targeting schools and universities, offices, government departments, and hospitals. This reflects the growing number and sophistication of cyberattacks and ransomware over the last year, as shown in our latest

To ensure the continuity of education, especially in the context of remote learning, we encourage the government to consider the impact on individuals’ wellbeing and ensure security, productivity, and user experience. If these devices become infected with a virus or malware, they can expose sensitive personal information that students share during the learning process.

This should be an alarm bell for the public sector, a demonstration of the need to secure each and every endpoint. Even the smallest chink in the nation's digital armour could spell disaster.

Read Less

March 25, 2021

Experts On NCSC’s Warning To Education Sector Around Cyberattacks

The latest warning from the NCSC is yet another signal of the growing threat to the education sector.

The latest warning from the NCSC is yet another signal of the growing threat to the education sector posed by cybercrime and ransomware in particular. During this pandemic, we have seen a nearly 600% rise in malicious attacks worldwide targeting schools and universities, offices, government departments and hospitals. This reflects the growing number and sophistication of cyberattacks and ransomware over the last year, as shown in our latest 2021 Threat Report.

To ensure the continuity of

To ensure the continuity of education, especially in the context of remote learning, we encourage the government to consider the impact on individuals’ wellbeing and ensure security, productivity and user experience. If these devices become infected with a virus or malware, they can expose sensitive personal information that students share during the learning process.

This should be an alarm bell for the public sector, a demonstration of the need to secure each and every endpoint. Even the smallest chink in the nations digital armour could spell disaster.

Read Less

February 22, 2021

Experts Insight On ‘Silent Stealing’ New Cyber Crime Phenomenon

We must prevent cybercriminals getting hold of the data which allows them to carry out silent fraud.

Cybercriminals exploit confusion and uncertainty. The pandemic has been a case in point with a huge rise in scams and new approaches to exploiting the general public. ‘Silent stealing’ tactics, including unauthorised access to accounts and low level anomalous activity in paystreams are on the rise. But the success of these scams needn’t be inevitable.

We know the scams and hacks are coming, so we must all understand what is at stake. Personal data is worth more than ever – bank details,

We know the scams and hacks are coming, so we must all understand what is at stake. Personal data is worth more than ever – bank details, passwords, even shopping basket history, and it can be used in many ways to steal money from bank accounts.

We must prevent cybercriminals getting hold of the data which allows them to carry out silent fraud. On an individual level, weak passwords and human error – including trusting emails about your order or calls from your bank – will let the hackers in. Organisations that hold customer data also have the responsibility to deploy fully up-to-date cybersecurity that tracks and defends against new threats created by those looking to steal this data. Together, we must all make the job of cyber attackers as difficult as possible. How? By improving cyber hygiene through constant vigilance and exercising zero trust.

Read Less

January 08, 2021

Experts Reacted On Hackney Council Leaked Documents

Cybercriminals exploit confusion and uncertainty.

Cybercriminals exploit confusion and uncertainty. The pandemic has been a case in point with a huge rise in scams, and during this new lockdown we can expect to see more cyber-attacks like this. While these cyber-attacks are inevitable, their success needn’t be.

We know the scams and hacks are coming. Institutions, their employees, and other stakeholders must understand what is at stake: personal data is worth more than ever on the dark web – bank details, passwords, and much more. A lack

Councils and other state institutions have a responsibility to deploy fully up-to-date cybersecurity that tracks and defends against new threats. But employees and other stakeholders also have a role to play: making the job of cyber attackers as difficult as possible. How? By improving their cyber hygiene through constant vigilance and exercising zero trust.

Read Less

December 07, 2020

Expert Advise On How To Protect From Cybercrime Coming This Christmas

The pandemic has been a case in point with a huge rise in scams.

The harsh truth is that cyber attackers don’t care that Christmas is a welcome relief for many this year. As the pandemic continues, and online shopping becomes a necessity for many, it’s clear that hardworking retailers and their customers cannot drop their guard – no matter the turmoil they’ve been through this year. Cybercriminals exploit confusion and uncertainty. The pandemic has been a case in point with a huge rise in scams. This festive season, we can expect unauthorised access to accounts, phishing emails, suspicious phone calls, anomalous activity in paystreams. These cyber attacks are inevitable – but their success needn’t be. We know the scams and hacks are coming. Retailers and their customers must understand what is at stake: personal data is worth more than ever on the dark web – bank details, passwords, even shopping basket history. They need to know that weak passwords and human error – including trusting emails about your order or calls from your bank – will let the hackers in. Retailers have the responsibility to deploy fully up-to-date cybersecurity that tracks and defends against new threats. But consumers also have a role to play: making the job of cyber attackers as difficult as possible. How? By improving their cyber hygiene through strong two-factor authentication, constant vigilance and exercising zero trust. Read Less

December 04, 2020

Data Protection Is Integral In Wake Of COVID-19 Vaccine ‘Cold Supply’ Chain Network Hack

For the organisations taking part in distribution of COVID-19 vaccines, leveraging a third party to manage data protection is likely wise.

With the country on tenterhooks preparing for the imminent roll-out of the COVID-19 vaccines, it was inevitable that contributing organisations would be targeted by cyber criminals. But what typically differentiates these sophisticated nation-state level groups from more amateur organisations, is their taking the attack surface provided to them and their ability to find a way in, even if there are no known vulnerabilities. Externally exposed services and devices are targets that are often desirable as well as the ever-prominent phishing email. For the organisations taking part in distribution of COVID-19 vaccines, leveraging a third party to manage data protection is likely wise. Many government entities and affiliate organisations suffer from a lack of resources that allow them to adequately protect their assets and data. This is not an excuse, but a realisation that needs to be understood so the problem can be appropriately addressed. From a privacy perspective it is apparent that centralisation of data is necessary to achieve a full vaccine roll-out and other solutions to COVID, at least in the near term. If you’re unable to manage the systems and security themselves, outsource this function to a skilled third party. This comes with its own risks but is significantly better than the alternative – a compromised operation with costly implications. Read Less

November 28, 2020

Black Friday – IoT Devices Bought Today Are Far Riskier Than Consumers Think

Cyber criminals are waiting for organisations and the public to drop their guard.

Anything with an Internet address can and will be attacked. We’ve certainly witnessed this happening on a large scale with the proliferation of Internet of things (IoT) devices in recent years, and we’re likely to see the magnitude and complexity of these attacks escalate in the years ahead, as the IoT grows to 67 billion new connected devices by 2025. The IoT is a misunderstood risk. Securing everything means just that: every ‘thing’ must have secure endpoint protection, or else it can be used as a doorway to entire networks, threatening safety, privacy and data. One concerning case last year saw cyber attackers take over a family’s smart home devices to blast music at loud volumes, talk to the couple through a camera in their kitchen, and crank their thermostat to 90 degrees. The onus should first fall upon IoT manufacturers to secure their devices. But this doesn’t mean the consumer and the enterprise shouldn’t exercise their own cyber hygiene: awareness of what is at risk, usage of secure passwords and multi-factor authentication, and finally an attitude of zero-trust. Before deploying any powerful technology or artificial intelligence, we must learn to anticipate the threat, recognise the value of IoT systems to cyber attackers, and prepare to respond to any sign of unauthorised hackers. Cyber criminals are waiting for organisations and the public to drop their guard. We must not let them seize the opportunity. Read Less

October 27, 2020

Psychotherapy Clinic Data Breach – No Data Is Safe

No data is safe, no matter how sensitive.

No data is safe, no matter how sensitive. As the price of personal data climbs on the dark web, the recent security breach at private Finnish psychotherapy centre, Vastaamo, is further testament to the fact that cybercriminals will leave no stone unturned on their hunt for ransom-worthy personal details. With up to tens of thousands of clients now concerned about the availability of their sensitive, personal data on the dark web, this is one of most disturbing examples of gross misuse of patient records in recent history. The healthcare industry appeals to hackers due to the nature of the data it handles, the amount of Internet of things (IoT) devices collecting sensitive data, the continued use of insecure, legacy devices and the fact that IT and security teams in the health sector lack the resources to deal with the modern threat landscape. Sadly, ransomware and information stealers are the most common type of malware used against the healthcare sector. BlackBerry’s 2020 Threat Report uncovered that globally, healthcare organisations are more likely to pay ransoms than any other industry due to the critical nature of the targeted data. We are all cautious about our personal information, and rightfully so. This breach should serve as an important reminder to healthcare organisations everywhere that service users place a great deal of trust in their practitioner, and this shouldn’t be taken lightly. Companies which are not deploying fully up to date cybersecurity that tracks and defends against new threats are playing with fire, and in the world of healthcare this is too great a risk. Read Less