Eskenzi PR ad banner Eskenzi PR ad banner
  • About Us
Saturday, 1 April, 2023
IT Security Guru
Eskenzi PR banner
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
IT Security Guru
No Result
View All Result

Waking Shark 2 "did not reflect the real world"

by The Gurus
February 7, 2014
in Editor's News
Share on FacebookShare on Twitter

The Waking Shark 2 exercise has been described as a waste of time.
 
In an email to IT Security Guru, Professor John Walker, a member of the British Computer Society Elite Group, said that he did not feel that Waking Shark 2 was a success as “it did not reflect the real world” and that banks “still have massive issues”.
 
Walker said: “They were exposed as the Bank of England do not understand the real issues. If you are going to deal with real world, dangerous people, you need to understand the matters in hand. But then maybe, to play at it to keep people happy, then I am sure it’s worth every penny.
 
“I know from speaking to those involved. This was about doing something for the public, and not for security – but sadly, that is the world we live in and why the cyber criminals are winning.”
 
Walker said that there were issues with a lack of investment and massive exposures at the Bank of England to social engineering attacks, while there is a lack of process and procedures and also internal security issues with configurations.
 
“How can so many be fooled by what was a massage of the issues,” he asked. “This is becoming the travesty of cyber security with massive fails, and yet we are praising those responsible to allowing it to happen. The question is, is cyber security about fixing, or about PR?”
 
Commenting, Sarb Sembhi, analyst and director of Incoming Thought and ISACA London Security Group member, told IT Security Guru that he felt Waking Shark 2 was a “resilience exercise for the industry not to find a single organisation that is weak, but to show there is no single point of failure.”
 
He said that Waking Shark 2’s findings about future tests being harder were right, but as this was only the second effort, it may be the case that in a few years the tests are stronger. “It is still early days and the organisers don’t want to put people off or be so rigorous that they find holes and have to identify them in the report,” he said.
 
“It is an exercise which tried to find out that if one failed, was this a single point of failure or was it a slight to the whole system. If there was one failure on a financial institution, then the network should survive.”

FacebookTweetLinkedIn
Tags: APTBankDDoSfinancial services
ShareTweetShare
Previous Post

Security B-Sides London tickets on sale Sunday

Next Post

Microsoft to release 5 patches next week

Recent News

Data Privacy Day: Securing your data with a password manager

For Cybersecurity, the Tricks Come More Than Once a Year

March 31, 2023
cybersecurity training

Only 10% of workers remember all their cyber security training

March 30, 2023
Pie Chart, Purple

New API Report Shows 400% Increase in Attackers

March 29, 2023
Cato Networks delivers first CASB for instant visibility and control of cloud application data risk

Cato Networks Recognised as Leader in Single-Vendor SASE Quadrant Analysis

March 29, 2023

The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY

Follow Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

This site uses functional cookies and external scripts to improve your experience.

Privacy settings

Privacy Settings / PENDING

This site uses functional cookies and external scripts to improve your experience. Which cookies and scripts are used and how they impact your visit is specified on the left. You may change your settings at any time. Your choices will not impact your visit.

NOTE: These settings will only apply to the browser and device you are currently using.

GDPR Compliance

Powered by Cookie Information