Last week marked an exciting new first – ransomware on a Mac disclosed by Palo Alto who had seen it with a client. What’s simultaneously encouraging and disappointing is that it could have been prevented without detection using highly recommended best practices – application whitelisting.
Although the message of cyber awareness month is a positive one it has been somewhat overshadowed with media coverage dominated by cyber-attacks and data breaches.
No longer will historic methods of blocking and protection be the only tenets of a security strategy, focus will be on next generation technologies and also detection and response.
During August members of the InfoSec community leave the comfort of their ergonomic desks and head out into the Nevada desert on a spiritual pilgrimage to Las Vegas. This mass movement is no coincidence, the draw is clear with Black Hat, DEF CON, BSides Vegas and the Star Trek Convention all occurring within a week. If you have an interest in offensive security, protecting data or ensuring your car cannot be remotely hijacked, Las Vegas is the place to be in August.
Cyber attackers are savvy, their methods are sophisticated, and we in the InfoSec community need to get over it.
It's understood that a cyber gang, dubbed Carbanak, with members in Russia, Ukraine and China is reported to be behind the attack. The gang, used computer viruses to infect the corporate networks with malware including video surveillance, enabling it to see and record everything that happened on employees screens.
Since 2007, January 28th has marked Data Privacy Day (or Data Protection Day in Europe), the annual awareness day to promote privacy and data protection best practices. The day is recognized in the United States, Canada, the UK and 26 other European countries through a number of initiatives focused on raising awareness among businesses and personal users about the importance of protecting the privacy of their personal information, particularly in the context of social networking.
Just like fashion, malware goes through trends and comebacks, so let's take a look at what's 'in' this season. Anyone involved in IT in the 1990's will remember a few things; plaid shirts, floppy disks and macro viruses. Although I can't envisage the former two making a comeback any time soon, macros are definitely back on the InfoSec agenda, something Microsoft has been highlighting recently.
Many of us usher in the New Year with a set of aims or ambitions. If you've made a vow to get a better grip of IT security in 2015, what can you do to quickly and easily improve your security posture in the year ahead? Here we take a look at the top 5 quick wins.
As 2014 draws to a close, many in the InfoSec community are looking back on what has been an eventful past 12 months.