Cyber Security Institute

Thursday, August 28, 2014

Newsalert - August 27, 2014

Three Things CIOs Should Know About Cyber-Security
At the Information Security Forum, we know that cyber-security is a key business priority as organizations become progressively more digital and cyber-threats grow, both in number and sheer sophistication. With the explosion of today’s digital age, cyber-security is one of the principal issues CIOs. In order to be successful, CIOs must prepare themselves for an always developing cyber-security threat landscape and, with the help of the C-suite, develop a proactive strategy to prepare their organization for today’s omnipresent dangers.

Security vulnerabilities on the decline but risk assessment is often flawed ...
“Many in the industry, including security analysts, corporate incident response teams and enterprise software consumers, have become dissatisfied with scoring inconsistencies that often occur across different organizations,” the X-Force researchers said.
Vulnerabilities on the decline, but risk assessment is often flawed, study ...CSO Online

New malvertising campaign hit visitors of several high-profile sites
The attack affected visitors to,,,,,, and between Aug. 19 and Aug. 22, according to researchers from Dutch security firm Fox-IT.

Is Russia Responsible For JPMorgan Hack? FBI Reportedly Opens Probe
The Federal Bureau of Investigation is looking into a reported Russian cyber-attack on JPMorgan Chase & Co. (NYSE:JPM) and at least one other bank, sources told Bloomberg News. The FBI got involved after a significant breach of corporate computer security was found, the Wall Street Journal reported Wednesday.

Intel unveils security controller for software defined data centres
INTEL(McAfee) HAS REVEALED the first product from its Intel Security unit, a programmable security controller designed to be deployed in physical, virtualised and cloud environments in software defined data centre infrastructures.

Protegrity : Recognized in Gartner Research Report on Protecting Big Data In Hadoop
STAMFORD, CT—(Marketwired - Aug 27, 2014) -  Protegrity, the leading provider of data-centric enterprise data security solutions, today announced that Gartner Inc. has recognized Protegrity in its July 14, 2014 report, ‘Protecting Big Data in Hadoop.’ With its inclusion in the report, Protegrity believes it establishes itself once again as the industry’s foremost company helping organizations overcome challenges with securing Big Data systems.

Hackers prey on Russian patriotism to grow the Kelihos botnet
Despite the DDoS functionality in some Kelihos malware variants, this new invitation to volunteer computers for attacks against Western government websites is just a ruse to get more systems infected, according to Bogdan Botezatu, a senior e-threat analyst at Bitdefender.
Reported on: on Aug 26, 2014, 16:55

Tuesday, August 26, 2014

Newsalert - August 25, 2014

Traditional Log Management Is Dead. Long Live Autonomic Analytics! (25 Aug 2014 05:46 GMT)
… technical resources or organizational size. Log management technologies need to move beyond … of log management because the inherent complexity is hidden by the log management infrastructure … working smarter, as should your log management and analytics service. (Note: Opinions …

Getting ahead on security (24 Aug 2014 17:08 GMT)
… small aspect of detection or incident response. In addition, traditional focus … DNS security and DDoS protection, network firewall, access management, and application security with intelligent traffic management.” So are there security technologies …

Cybersecurity’s hiring crisis: A troubling trajectory
There is a severe—and worsening—shortage of information security professionals. Leading industry experts believe it predicts a grave outcome.

Banks to meet with Treasury Department on cyber threats - sources
(Reuters) - A group of Wall Street banks plan to meet the U.S. Treasury Department and other government officials next month to talk about how to cooperate to fend off cyber attacks, people familiar with the matter told Reuters. Bankers and government officials say they want to figure out ways law enforcement can alert financial firms about cyber attacks without violating the privacy of businesses that are victimized. Both sides have long complained that such concerns have hindered notification, preventing the industry from quickly adapting to emerging threats.

Market watchdog warns on danger of cyberattack
sounded the alarm about the growing danger of cyber attacks, on financial markets, warning that firms and regulators around the world need to address the “uneven” response to the threat of online assaults. He warned that there needed to be a more concerted effort to tackle cyber threats around the world as current approaches varied widely. “The feedback we have had from industry in discussions is that there is not a consistency in approach,” he said.