From the desk of Paul Davis – his opinions and no-one else’s]
Make sure you’re keeping on top of patching Adobe. New patch released
For now for the news:
Data retention: Netherlands court strikes down law as breach of privacy
Under the Dutch law telephone companies were required to store information about all fixed and mobile phone calls for a year. Internet providers had to store information on their clients’ internet use for six months.
The written judgment by Judge GP van Ham conceded that scrapping the data storage “could have far-reaching consequences for investigating and prosecuting crimes” but added that this could not justify the privacy breaches the law entailed.
The judge did not set a deadline for disposing of the data.
Link: http://www.theguardian.com/technology/2015/mar/12/data-retention-netherlands-court-strikes-down-law-as-breach-of-privacy
BT enhances security portfolio with Darktrace’s cyber threat detection capabilities
BT today announced that it is integrating technology from Darktrace, one of the world’s fastest growing cyber threat defence companies, to deliver next-generation cyber threat detection and intelligence services to the global market.
Darktrace’s Enterprise Immune System technology, which is capable of detecting sophisticated cyber threats from within enterprise networks, will be added to BT’s security portfolio. The service will be available as both part of an integrated cyber security offering, as well as a point solution within BT’s Assure portfolio of managed security services.
Link: http://www.btplc.com/news/articles/showarticle.cfm?articleid={6d66f1bb-fa9f-4c25-a149-609502423a8e}
Public Sector Increasingly Targeted by Powerful DDoS Attacks
The Q4 2014 DDoS Trends Report (gated) reveals that the public sector is increasingly being targeted by distributed denial of service (DDoS) attacks, most likely due to politically motivated attacks by hacktivists targeting government networks in reaction to highly publicized events like the protests in Hong Kong and Ferguson, Missouri.
We expect 2015 to yield even more instances as these types of events gain significant public attention and DDoS-as-a service grows in availability and popularity.”
Using threat intelligence to identify and block potentially malicious activity and the automatic implementation of mitigating controls in real time – before the perimeter is ever compromised – can greatly reduce the overall attack surface of an organization.
Link: http://www.infosecisland.com/blogview/24371-Public-Sector-Increasingly-Targeted-by-Powerful-DDoS-Attacks.html
This Might Be The Next Coveted Leadership Position Of 2015
The most transformational job in the corporate world right now isn’t glamorous, certainly isn’t easy, and at times is even a little thankless. It’s a job where little can go right and a lot can go catastrophically wrong. If that isn’t enough, it’s probably the hottest seat in corporate America today.
The job I am talking about is that of the chief information security officer (CISO). And, if I were rising through the ranks of an enterprise IT department, CISO is the job I would seek out to make my mark.
Link: http://www.fastcompany.com/3043376/how-to-earn-respect-from-the-hottest-seat-in-leadership-today
Why IAM is topping security investments in 2015
Most high-profile information security breaches in the past year have featured some form of credential theft to enable abuse of privileged accounts, and therefore it is not surprising that identity and access management (IAM) is set to move to the fore in 2015.
IAM is to be the top security initiative by UK and European firms in 2015, according to the latest annual TechTarget/Computer Weekly IT Spending Priorities survey, replacing network security in the top spot of European countries in 2014 and mobile endpoint security for UK companies.
According to Forrester Research, investment in IAM has grown from just 7% of the total IT spend in 2012 to 10% in 2014. The TechTarget/Computer Weekly data shows this trend is set to continue.
Although no longer in top spot for Europe, network-based security has moved down only one position and therefore remains a high priority for 32% of respondents.
Unsurprisingly, data loss prevention (31%) and cloud security (28%) remain among the top priorities for European companies in the light of increased cyber attacks aimed at stealing intellectual property and the growing adoption of cloud technologies to cut costs and improve efficiency.
Link: http://www.computerweekly.com/news/2240242097/Why-IAM-is-topping-security-investments-in-2015?asrc=EM_EDA_40613056&utm_medium=EM&utm_source=EDA&utm_campaign=20150312_UK%20businesses%20report%20increase%20in%20female%20IT%20pros%20over%20past%20five%20years_
The Battle Has Moved to the Endpoints and Beyond
The threat of web-based malware has caused a shift in investment into more perimeter-based security systems that focus more on detection and response rather than prevention in 2015—explains Ericka Chickowski, reporting on recent Ponemon findings in Dark Reading.
The survey, based on the responses of over 700 IT and IT security practitioners, shows that an astounding 95% of organizations reported that they are moving from prevention to a detect-and-respond-based approach to security. It also found that 80% of the respondents consider web-borne malware as their most frequent attack vector and 68% of organizations represented consider endpoint security as a higher priority in 2015.
Link: http://www.infosecisland.com/blogview/24372-The-Battle-Has-Moved-to-the-Endpoints-and-Beyond.html
Legal Solutions Provider Epiq Systems Expands Data Breach Solutions
NEW YORK, March 12, 2015 (GLOBE NEWSWIRE) — Epiq Systems, Inc. (Nasdaq:EPIQ), a leading global provider of integrated technology solutions for the legal profession, today appointed Brookes Taney as vice president to lead its expanded data breach solutions group.
The data breach solutions group now offers clients a single point of contact to access Epiq’s cross-department expertise in eDiscovery and settlement administration services, including information governance consulting, forensics, electronic discovery, breach notification, breach remediation and call center deployment.
Link: http://www.globenewswire.com/news-release/2015/03/12/714704/10124245/en/Legal-Solutions-Provider-Epiq-Systems-Expands-Data-Breach-Solutions.html
Determining Whether a HIPAA Data Breach Occurred
Covered entities need to be able to determine if a HIPAA data breach has taken place following the potential exposure of sensitive data. The implementation of the HIPAA Omnibus Rule slightly changed this process, in that there were new determining factors for assessing exactly what constitutes a data breach.
It is also important to note that there are three exceptions to the data breach definition, according to HHS. A HIPAA data breach is not always the outcome of a healthcare facility’s security measures being infiltrated. However, it is essential that covered entities are able to determine if this type of breach occurred and know how to take next step.
Link: http://healthitsecurity.com/2015/03/12/determining-whether-a-hipaa-data-breach-occurred/
Report: 71 percent of orgs were successfully attacked in 2014
Altogether, 71 percent of respondents said that their organization’s global network was compromised by a successful cyber attack in 2014 – a number that jumped up from 62 percent in the year prior – and 22 percent said that their organization experienced six or more successful attacks, according to the report.
Report: 71 percent of orgs were successfully attacked in 2014
The number of successful cyber attacks against organizations is increasing, according to the “2015 Cyberthreat Defense Report” from CyberEdge Group, which surveyed 814 IT security decision makers and practitioners from organizations – in 19 industries – across North America and Europe.
Altogether, 71 percent of respondents said that their organization’s global network was compromised by a successful cyber attack in 2014 – a number that jumped up from 62 percent in the year prior – and 22 percent said that their organization experienced six or more successful attacks, according to the report.
Another reason for the rise is that attackers are refining their tactics – for example, they perform reconnaissance to carry out targeted spear phishing attacks involving malware, Piper said. In the report, respondents cited phishing attacks, malware and zero-day attacks as the top threats that are causing concern.
Link: http://www.scmagazine.com/report-71-percent-of-orgs-were-successfully-attacked-in-2014/article/403267/
US industrial control systems attacked 245 times in 12 months
… the US Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) has revealed. The figure was included in a report by the ICS-CERT, which operates within the National Cybersecurity and Integration Center, itself a part of the Department of Homeland Security.The group said that 55 percent of investigated incidents showed signs that advanced persistent threats had been used to breach systems. The energy sector accounted for the most incidents at 79, but perhaps the more alarming figure is that 65 incidents concerned cyber infiltration of the manufacturers of ICS hardware.
Link: http://www.v3.co.uk/v3-uk/news/2399334/us-industrial-control-systems-attacked-245-times-in-12-months
Swimlane launches automated security operations management platform
Tempe, AZ, March 12 — Phoenix Data Security has announced the launch of Swimlane, a new security operations management platform and company focused on empowering enterprises and government agencies with data-driven automation and orchestration for incident response and improved security operations.
Swimlane centralizes an organization’s security alerts, alarms and incidents to automate resolution and deliver a better ROI on current and future security investments. Using software-defined security (SDSec) methods and security orchestration, Swimlane reduces manual effort by automatically responding to alerts, gathering related threat intelligence and automating the implementation of security controls, all which aides in protecting the organization from future attacks.
Link: http://www.gsnmagazine.com/node/44150?c=security_services
Patch Flash now: Google Project Zero, Intel and pals school Adobe on security 101
Hot on the heels of Microsoft’s Patch Tuesday release, Adobe has published security fixes for its Flash Player browser plugin.
The March 12 update for the internet’s screen door addresses 11 CVE-listed vulnerabilities. Adobe is listing the patch as a top deployment priority for Windows, OS X and Linux systems.
Link: http://www.theregister.co.uk/2015/03/12/adobe_kicks_out_flash_security_fix/
Feedback, questions? Our mailing address is: dailynews@paulgdavis.com
If someone forwarded this email to you and you want to be added in,
please click this: Subscribe to this list