Employees May Be a Company’s Greatest Cybersecurity Vulnerability

Posted on by admini

“[A]ll the security controls in the world are useless if an attacker can manipulate an employee with system access,” according to the findings, which include an analysis of more than 450 data breach investigations in 2012.

Whether thieves are after customer data or a company’s intellectual property portfolio, employee email, mobile devices, network passwords, and social media can all open the door for an attack.

The proliferation of smartphones and mobile apps presents another set of security worries, “as these devices routinely connect to unknown networks every day,” says Trustwave. “Posting one’s place of work on Facebook might not seem dangerous,” the report warns, “but when combined with co-worker connections on LinkedIn, pictures of office parties from FlickR and check-ins on Foursquare, an attacker can create a very detailed picture of the internal workings of a company without ever setting foot inside.”

All in all, the authors identified employee education as integral to any other cyber defenses, arguing that “no policy enacted will have much impact if employees aren’t on board (especially if they don’t truly understand the consequences of their actions).”

“This awareness training must include case studies highlighting both obvious pitfalls (clicking on suspicious links) and not-so-obvious ones (posting company photos online in which staff members are wearing their security badges).”

Link: http://www.law.com/corporatecounsel/PubArticleCC.jsp?id=1202588933863&Employees_May_Be_a_Companys_Greatest_Cybersecurity_Vulnerability&slreturn=20130121081231

Read more

Blackberry Enterprise Server Vulnerable To Malware From TIFF Images | Ubergizmo

Posted on by admini

According to the advisory given by Blackberry “Vulnerabilities exist in how the BlackBerry MDS Connection Service and the BlackBerry Messaging Agent process TIFF images for rendering on the BlackBerry smartphone. Successful exploitation of any of these vulnerabilities might allow an attacker to gain access to and execute code on the BlackBerry Enterprise Server. Depending on the privileges available to the configured BlackBerry Enterprise Server service account, the attacker might also be able to extend access to other non-segmented parts of the network.”

The good news for system administrators is that Blackberry has announced solutions within its advisory message and has also published a workaround.

Link: http://www.ubergizmo.com/2013/02/blackberry-exchange-server-vulnerable-to-malware-from-tiff-images/

Read more

Aust businesses held to cyber ransom | adelaidenow

Posted on by admini

“And of course that’s the very thing that should be reported to CERT Australia, the Australian government’s response team, or to the federal police, to get help and prevent the attacks occurring in the first place,” Mr Dreyfus told reporters on Monday.

With one in five major Australian businesses suffering a cyber attack in the past year, the survey reported attacks are becoming more co-ordinated and targeted.

It found only 64 per cent applied IT security standards or guidelines, less than 50 per cent had plans in place for removable storage devices such as USB memory sticks, and almost 35 per cent had IT security staff with no formal training.

He said larger companies without specialized IT security staff would need to think, “pretty quickly I’d suggest”, about hiring people trained in the field if they wanted to protect their business.

Link: http://www.adelaidenow.com.au/news/breaking-news/cyber-attacks-more-targeted-aust-survey/story-e6frea7l-1226580043617

Read more

RSA estimates 2012 global losses from phishing at $1.5 bn

Posted on by admini

Applications will become the center resource for smartphone users and the overall popularity of apps will become just as trendy with cybercriminals. … RSA anticipates cybercriminals will increasingly exploit mobile apps to target mobile users with phishing and other malicious content.

With the world turning to a smaller and more ‘social’ village than ever, cyber criminals are by no means staying behind. RSA expects to see more phishing attacks targeted on social networking sites rather than through traditional spam mail.

Link: http://www.dqweek.com/dq-week/news/174923/rsa-estimates-2012-global-losses-phishing-usd15-bn?WT.rss_f=Home&WT.rss_a=RSA+estimates+2012+global+losses+from+phishing+at+%241.5+bn

Read more

Ponemon Institute Research Reveals Cyber Attacks on Trust Can Cost Every Global Enterprise Up to $39

Posted on by admini

“In partnering with Venafi, we set out to answer for the first time one of the most sought-after questions in information security and compliance: what are the precise financial consequences of failed trust from malicious attacks that exploit cryptographic key and certificate management failures?”

“This new research not only allows us to quantify the cost of these trust exploits, but also gives insight into how enterprise failures in key and certificate management open the door to criminals. More than half of the companies surveyed, for instance, do not know how many keys and certificates they have, which is both a serious security issue and a Governance, Risk and Compliance (GRC) gap that executives must address with proper controls,” said Ponemon. “It’s not surprising then that all companies we spoke with had suffered an attack on trust due to failed key and certificate management, or that these attacks are projected to cost organizations an average of $35 million, with a maximum possible cost exposure of $398 million per organization.

“Cyber criminals understand how fragile our ability to control trust has become, and as a result, they continue to target failed key and certificate management,” said Venafi CEO Jeff Hudson.

As our world becomes more connected and more dependent on cloud and mobile technologies, maintaining control over trust by managing keys and certificates must be a top priority for all CEOs, CIOs, CISOs and IT security managers,” Hudson continued.

Link: http://mw.newsblaze.com/release/2013022006001800010.mwir/topstory.html

Read more

Radware to Present at 2013 RSA Conference: Stock Exchanges in the Line of Fire – Morphology of Cyber

Posted on by admini

Gadot will also discuss exact timelines of the events with real case studies, pre-attack preparation scenarios, attack vectors used and what each vector attempted to achieve. Also covered will be the impact on both the network and business and how each attack victim initiated their mitigation including forensic analysis and eventual arrests, as well as practical techniques that exchanges and similar firms can employ to safeguard their operations.

“Through denial of service attacks, website defacement, information theft and other disruptive techniques, hactivists will continue their relentless cyber-attacks in order to highlight their own ideals and dissent,” says Ziv Gadot. “By sharing a detailed technical account on these stock exchange incidents, I hope to inform and educate those who attend this briefing to better assist their future mitigation efforts.”

Ziv Gadot is Senior Security Researcher for Radware and manages Radware’s Security Operations Center (SOC) , a unit performing analysis and research on DDoS related subjects and the Emergency Response Team (ERT), a 24/7 service intended to assist organizations under DDoS attacks on a daily basis.

He has co-authored Radware’s annual Global Application and Network Security Reports, is a sought-after speaker and regular contributor on security best practices as well as top industry attack analyses on Radware’s blog.

Link: http://www.virtual-strategy.com/2013/02/20/radware-present-2013-rsa-conference-stock-exchanges-line-fire-morphology-cyber-attacks

Read more