[From the desk of Paul Davis – his opinions and no-one else’s, apart from the reporter’s opinions ]
Sorry for the delay in sending out the newsletter.
* How MSSPs can address the cybersecurity talent gap
* FireEye: Hackers are racing to infiltrate retail POS systems
* Cyber security budgets on the rise but not in line with threats
* New Report Reveals Cybersecurity Risks Are the Biggest Barrier to Enterprise Mobility and BYOD Success
* Hackers Breach Law Firms, Including Cravath and Weil Gotshal
* Enterprise security trends for APAC
How MSSPs can address the cybersecurity talent gap
The cybersecurity labor market is suffering a severe workforce shortage.
By 2019, the demand for talent is estimated to be about 6 million jobs, with a projected shortfall of at least 1.5 million skilled workers, according to Symantec’s CEO Michael Brown.
The issues of compatibility and integration are also front of mind for IT leaders, because with so many devices and tools, complexity quickly becomes an issue.
That’s one of the biggest problems an MSSP can help solve, says Mark Stevens, senior vice president of global services at Digital Guardian.
The MSSP model can also be a competitive differentiator for companies that can point to their MSSP as proof that they’re actively involved in security best practices with specialists, says Stevens.
It also means threats can often be addressed before clients even know an incident is happening.
It’s much more cost-effective, too, especially for smaller organizations that might not have the budget for high-priced security talent or expensive on premise tools, Stevens says, not to mention that attacks that are simply a nuisance for large enterprise networks can be downright crippling for SMBs or startups.
Link: http://paulgdavis.us3.list-manage2.com/track/click?u=45bf3caf699abf9904ddc00e3&id=f83cd1838d&e=20056c7556
FireEye: Hackers are racing to infiltrate retail POS systems
Nart Villeneuve, a senior threat intelligence researcher with FireEye, wrote on Monday that more than a dozen malware families that target POS systems were found last year.
“Criminals appear to be racing to infected POS systems in the United States before U.S. retailers complete this transition,” Villeneuve wrote.
In response, card issuers and banks have improved their ability to identify and block potentially fraudulent transactions.
But the potential windfall has criminals working overtime.
Villeneuve described a new type of POS malware called Treasurehunt, which steals payment card data from a computer’s memory.
Link: http://paulgdavis.us3.list-manage1.com/track/click?u=45bf3caf699abf9904ddc00e3&id=ff9916f3ff&e=20056c7556
Cyber security budgets on the rise but not in line with threats
The Institute of Information Security Professionals (IISP) has announced the findings from its 2016 member survey.
With over 2,500 members working in security across a wide range of industries and roles, including a significant proportion at Senior/Lead/CISO level, the results of the IISP provide an accurate snapshot of the state of the UK cyber security landscape from those working on the frontline.
The survey reveals that for over two thirds of members, information security budgets have increased, while a further 15% said that they had stayed the same.
These are encouraging figures but they have to be examined alongside increasing risk and the survey also found that 60% of respondents felt that budgets were still not keeping pace with the rise in the level of threats.
Only 7% reported they were rising faster than the level of threat.
The survey also found that when it comes to recruitment, there is still a skills shortage but the problem doesn’t just lie in the number of people.
Respondents point to a shortfall in the level of skills and experience, making staff training, development and retention crucial to the future of the industry.
Link: http://paulgdavis.us3.list-manage.com/track/click?u=45bf3caf699abf9904ddc00e3&id=c8f71bf301&e=20056c7556
New Report Reveals Cybersecurity Risks Are the Biggest Barrier to Enterprise Mobility and BYOD Success
WASHINGTON–(BUSINESS WIRE)–Following industry predictions that the global BYOD and enterprise mobility market will reach $360 billion by 2020, Crowd Research Partners today released the results of its new 2016 BYOD and Mobile Security Report, in conjunction with leading data security vendors Bitglass, Blancco Technology Group, Check Point Software Technologies, Skycure, SnoopWall and Tenable Network Security.
Based on a survey of over 800 global cybersecurity professionals who are members of the 300,000 member Information Security Community on LinkedIn, the study provides a conflicting portrayal of BYOD security barriers and adoption trends in the workplace.
Key BYOD and mobile security trends that surfaced from the study include:
Security (39 percent) and employee privacy (12 percent) are the biggest inhibitors of BYOD adoption.
In contrast, management opposition (3 percent) and user experience concerns (4 percent) rank far lower.
One in five organizations suffered a mobile security breach, primarily driven by malware and malicious WiFi.
Security threats to BYOD impose heavy burdens on organizations’ IT resources (35 percent) and help desk workloads (27 percent).
Despite increasing mobile security threats, data breaches and new regulations, only 30 percent of organizations are increasing security budgets for BYOD in the next 12 months.
Meanwhile, 37 percent have no plans to change their security budgets.
Link: http://paulgdavis.us3.list-manage1.com/track/click?u=45bf3caf699abf9904ddc00e3&id=8a8c5c5fed&e=20056c7556
Hackers Breach Law Firms, Including Cravath and Weil Gotshal
Hackers broke into the computer networks at some of the country’s most prestigious law firms, and federal investigators are exploring whether they stole confidential information for the purpose of insider trading, according to people familiar with the matter.
The firms include Cravath Swaine & Moore LLP and Weil Gotshal & Manges LLP, which represent Wall Street banks and Fortune 500 companies in everything from lawsuits to multibillion-dollar merger negotiations.
It isn’t clear what information the hackers stole, if any, but the focus of the investigation is on whether confidential data were taken for the purpose of insider trading, according to a person familiar with the matter.
Law firms last year formed an information-sharing group to disseminate information about cyberthreats and other vulnerabilities.
It is modeled after a similar organization for financial institutions.
Link: http://paulgdavis.us3.list-manage.com/track/click?u=45bf3caf699abf9904ddc00e3&id=ffc0a1b968&e=20056c7556
Enterprise security trends for APAC
That’s according to Pierre Noel, chief security officer and advisor, Microsoft Asia, ahead of the CommunicAsia2016 Summit.
Noel says that while there will always be new threats, new attacks and new technologies to keep an eye on, there are some security trends businesses in Asia Pacific should know about.
Mobile Malware
Online extortion and hacktivism
Password recovery scams, including spear phishing and smishing
A New Approach To Cybersecurity
“Companies must evolve from a simple, ‘protect and recover’ model to a more holistic protect, detect and respond posture that utilises real-time insights and predictive intelligence across networks to stay ahead of threats,” he says.
Link: http://paulgdavis.us3.list-manage.com/track/click?u=45bf3caf699abf9904ddc00e3&id=81d6d7a179&e=20056c7556
============================================================
Feedback, questions? Our mailing address is: dailynews@paulgdavis.com (mailto:dailynews@paulgdavis.com)
If you know someone else who would be interested in this Newsalert, please forwarded this email.
If you want to be added to the distribution list, please click this: Subscribe to this list (http://paulgdavis.us3.list-manage.com/subscribe?u=45bf3caf699abf9904ddc00e3&id=e09452545a)
Unsubscribe from this list (http://paulgdavis.us3.list-manage.com/unsubscribe?u=45bf3caf699abf9904ddc00e3&id=e09452545a&e=20056c7556&c=f436af6127)
Update subscription preferences (http://paulgdavis.us3.list-manage.com/profile?u=45bf3caf699abf9904ddc00e3&id=e09452545a&e=20056c7556)