Cyber Security Institute

Thursday, August 28, 2014

Newsalert - August 27, 2014

Three Things CIOs Should Know About Cyber-Security
At the Information Security Forum, we know that cyber-security is a key business priority as organizations become progressively more digital and cyber-threats grow, both in number and sheer sophistication. With the explosion of today’s digital age, cyber-security is one of the principal issues CIOs. In order to be successful, CIOs must prepare themselves for an always developing cyber-security threat landscape and, with the help of the C-suite, develop a proactive strategy to prepare their organization for today’s omnipresent dangers.
Link: http://www.cioinsight.com/security/three-things-cios-should-know-about-cyber-security.html

Security vulnerabilities on the decline but risk assessment is often flawed ...
PCWorld
“Many in the industry, including security analysts, corporate incident response teams and enterprise software consumers, have become dissatisfied with scoring inconsistencies that often occur across different organizations,” the X-Force researchers said.
Vulnerabilities on the decline, but risk assessment is often flawed, study ...CSO Online
Link: http://www.pcworld.com/article/2599740/vulnerabilities-on-the-decline-but-risk-assessment-is-often-flawed-study-says-says.html

New malvertising campaign hit visitors of several high-profile sites
The attack affected visitors to Java.com, Deviantart.com, TMZ.com, Photobucket.com, IBTimes.com, eBay.ie, Kapaza.be and TVgids.nl between Aug. 19 and Aug. 22, according to researchers from Dutch security firm Fox-IT.
Link: http://www.pcworld.com/article/2599680/new-malvertising-campaign-hit-visitors-of-several-highprofile-sites.html#tk.rss_all

Is Russia Responsible For JPMorgan Hack? FBI Reportedly Opens Probe
The Federal Bureau of Investigation is looking into a reported Russian cyber-attack on JPMorgan Chase & Co. (NYSE:JPM) and at least one other bank, sources told Bloomberg News. The FBI got involved after a significant breach of corporate computer security was found, the Wall Street Journal reported Wednesday.
Link: http://www.ibtimes.com/russia-responsible-jpmorgan-hack-fbi-reportedly-opens-probe-1671732

Intel unveils security controller for software defined data centres
INTEL(McAfee) HAS REVEALED the first product from its Intel Security unit, a programmable security controller designed to be deployed in physical, virtualised and cloud environments in software defined data centre infrastructures.
Link: http://www.theinquirer.net/inquirer/news/2362100/intel-unveils-security-controller-for-software-defined-data-centres

Protegrity : Recognized in Gartner Research Report on Protecting Big Data In Hadoop
STAMFORD, CT—(Marketwired - Aug 27, 2014) -  Protegrity, the leading provider of data-centric enterprise data security solutions, today announced that Gartner Inc. has recognized Protegrity in its July 14, 2014 report, ‘Protecting Big Data in Hadoop.’ With its inclusion in the report, Protegrity believes it establishes itself once again as the industry’s foremost company helping organizations overcome challenges with securing Big Data systems.
Link: http://www.4-traders.com/news/Protegrity—Recognized-in-Gartner-Research-Report-on-Protecting-Big-Data-In-Hadoop—18957130/

Hackers prey on Russian patriotism to grow the Kelihos botnet
Despite the DDoS functionality in some Kelihos malware variants, this new invitation to volunteer computers for attacks against Western government websites is just a ruse to get more systems infected, according to Bogdan Botezatu, a senior e-threat analyst at Bitdefender.
Reported on: Techworld.com on Aug 26, 2014, 16:55
Link: http://news.techworld.com/security/3539891/hackers-prey-on-russian-patriotism-to-grow-the-kelihos-botnet/?olo=rss

Tuesday, August 26, 2014

Newsalert - August 25, 2014

Traditional Log Management Is Dead. Long Live Autonomic Analytics! (25 Aug 2014 05:46 GMT)
… technical resources or organizational size. Log management technologies need to move beyond … of log management because the inherent complexity is hidden by the log management infrastructure … working smarter, as should your log management and analytics service. (Note: Opinions …
Link: http://java.dzone.com/articles/traditional-log-management

Getting ahead on security (24 Aug 2014 17:08 GMT)
… small aspect of detection or incident response. In addition, traditional focus … DNS security and DDoS protection, network firewall, access management, and application security with intelligent traffic management.” So are there security technologies …
Link: http://www.itp.net/599307-getting-ahead-on-security

Cybersecurity’s hiring crisis: A troubling trajectory
There is a severe—and worsening—shortage of information security professionals. Leading industry experts believe it predicts a grave outcome.
Link: http://www.zdnet.com/cybersecuritys-hiring-crisis-a-troubling-trajectory-7000032923/?s_cid=e539&ttag=e539&ftag=TRE17cfd61

Banks to meet with Treasury Department on cyber threats - sources
(Reuters) - A group of Wall Street banks plan to meet the U.S. Treasury Department and other government officials next month to talk about how to cooperate to fend off cyber attacks, people familiar with the matter told Reuters. Bankers and government officials say they want to figure out ways law enforcement can alert financial firms about cyber attacks without violating the privacy of businesses that are victimized. Both sides have long complained that such concerns have hindered notification, preventing the industry from quickly adapting to emerging threats.
Link: http://uk.reuters.com/article/2014/08/25/uk-banks-cybersecurity-idUKKBN0GP17V20140825

Market watchdog warns on danger of cyberattack
sounded the alarm about the growing danger of cyber attacks, on financial markets, warning that firms and regulators around the world need to address the “uneven” response to the threat of online assaults. He warned that there needed to be a more concerted effort to tackle cyber threats around the world as current approaches varied widely. “The feedback we have had from industry in discussions is that there is not a consistency in approach,” he said.
Link: http://www.cnbc.com/id/101943276