You are here
Home > News

Neither Covid-19 nor cyber-criminals care who gets infected and suffers

I like Davey Winder's writings, and I especially like the CV19 initiative...: [...] There is not empathy, no community spirit, no moral compass by which such people navigate a global health crisis. All of which sadly makes the NHS a very attractive target right now, and which is why I was somewhat surprised to discover that NHSX, which is committed to driving forward the digital transformation of health and social care, has hit reverse as far as cybersecurity resilience chec

The Average “Cyber Breach” Costs Business £5220 Says this Gov’t Report: Is It Badly Wrong?

Another interesting question would be "How much did you claim on insurance?"...: [...] “An average cost of £5220? That just seems really, really odd” said Alyn Hockey, a VP at Reading, UK-based cybersecurity company Clearswift: “IBM are quoting numbers like $3.92 million. There’s such a huge disparity here” said Hockey. He was referring to IBM’s 2019 Cost of a Cyber Breach Report, conducted by the Ponemon Institute and based on data breach costs reported by 507 organizati

FBI Warns of Teleconferencing and Online Classroom Hijacking

The FBI have a good summary of keeping your WFH sessions reasonably secure. Note that there's nothing about platforms (*cough* Zoom) sharing your details with Facebook (which they have now 'fixed'). As always with software, make sure everything is as up to date as it can be and RTFM...: If you are among the many people turning to video-teleconferencing (VTC) to stay connected during the COVID-19 pandemic, you need to protect yourself from “Zoom-bombing” – the entrance of uni

Vicarious liability: Supreme Court rules in favour of Barclays and Morrisons

This is good news for businesses that transfer risk onto insurers, and good news for insurers in so much that their policies aren't worthless...: The COVID-19 pandemic didn’t stop the Supreme Court from handing down major decisions on vicarious liability on April 01. Here Insurance Business gives you the lowdown. [...] Morrisons “The circumstances in which Skelton committed wrongs against the claimants were not such as to result in the imposition of vicarious liabilit

GTDeploy Cuts Delays in Pushing Out Urgent Security Patches

There's a tendency for developers to think in generic terms about their target platforms and use cases. You'll hear "Mobile First", "Always On", "Fail Fast" and other such aperçu being used liberally. What you will hear less of is "Low Bandwidth", "Intermittent Connection", "Mission Critical System" which are the operating conditions for a lot of maritime (and aviation) systems. I applaud the creation of systems like this one as a way of addressing some of the problems, thoug...

New Resource to Counter Surge in Pandemic Hack Attacks: UK cyber defense center offers tips for …

A lot of this advice has been published before but it could be useful to link to it again so here it is...: [...] The U.K. National Cyber Security Centre (NCSC) has released a guide designed specifically for small companies, including banks, to strengthen digital entry points quickly and cost-effectively. To view the full “Response & Recovery” Small Business Guide, and other resources to gird systems and hardware, click here. Interestingly, there are also some para

“More Alarmed Than Ever” – Americans Take Online Security Personally

If you ever needed a stark comparison between the USA and the rest of us, this...: Americans are taking online security into their own hands, with three quarters “more alarmed than ever” about their privacy, according to the latest research from NortonLifeLock. The data found that just over a third of Americans hold themselves the most accountable for securing their personal information, while only twenty nine percent are willing to give the government responsibility to p

Defense Evasion Dominated 2019 Attack Tactics

There's an opportunity to look for evasion as an IoC, just like you can look for fingerprinting activity as an early indicator...: [...] Discovery and defense evasion were the predominant attacker tactics observed in 2019, a team of researchers report in a new ranking of common MITRE ATT&CK tactics used in the past year. In 2019, Recorded Future's Insikt Group began to integrate data on attack tactics, techniques, and procedures (TTPs) based on the MITRE ATT&CK fr

1.5 Million Patients Affected by February Healthcare Breaches

Healthcare continues to be the source of breaches, especially in the USA. This article gives a breakdown of the kinds of breaches. Might be useful if you're attempting to interest your own healthcare business to invest in cyber security...: The Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) reported 39 February healthcare breaches, affecting 1,531,855 patients. Of the reported incidents, there were 26 breaches due to hacking/IT incidents, 6 brea

Protecting Trade Secrets During a Pandemic: Think Twice Before Loosening Security Measures in the Name of Convenience and Efficiency

Time to issue a reminder to WFH employees to stay safe out there...: When the COVID-19 crisis hit the United States (indeed, before it was even considered a “crisis” here), we provided tips for protecting a company’s trade secrets in the event employees were permitted to work from home. In the ensuing three weeks, not only have employees been permitted to work from home, but many companies have required it. Indeed, an ever-growing list of states, including California, Connec

Top