Opinions & Analysis

As an Internet populace we are increasingly being tracked, taken through covert redirects and are often at risk of serious fraud and abuse. And the situation only gets creepier as we put more of our lives online, and as corporations and governments get better tracking and analytics technologies. To be sure, most people are still happy to get “free stuff” and some are still relatively comfortable putting up with the ad infrastructure. We love to...

Read more

This week saw the announcement of the CBEST framework, designed to help the boards of financial firms, infrastructure providers and regulators to improve their understanding of the cyber attacks.   Backed by the Bank of England, Her Majesty’s Treasury and the Financial Conduct Authority, it will also focus on the extent to which the UK financial sector is vulnerable to attacks and how effective their detection and recovery processes are.   CBEST also puts in place...

Read more

Today marks one year since the first major headlines were published about the NSA’s mass surveillance programme.   Published on 6th June 2013, it was revealed by a number of news agencies, including the New York Times and the Guardian, that the NSA monitored user activity on Google, Facebook, Apple and other US internet giants, while 24 hours later it was revealed that the UK was not so innocent, with the UK's GCHQ were cooperating...

Read more

In an interview published this week, WhiteHat Security founder and CTO Jeremiah Grossman said that ultimately, the problem with security is a lack of decent protection.   Grossman said that information security has to change its thinking as there is a problem in a belief that you can put a box in and the problem goes away, and that is most people’s way of doing things and how they are trained.   He said: “We...

Read more

If headlines are to be believed, then the cloud could be in danger of becoming localised almost a year on from the Edward Snowden revelations.   However this year's security conferences and news have shown a renewed vigour for the cloud in the security sector. Take the acquisition of SaaSID by Intermedia, a cloud-based single sign-on service was proven to be valuable and since then, companies such as Pirean and Okta have emerged also. So with this...

Read more

This week saw music streaming website Spotify announce that it had experienced unauthorised access to its systems and internal company data.   In the wake of the eBay breach, it said that there had been no compromise of user’s financial data, as a warning a portion of its 40 million users will need to re-enter, but not change, their login credentials while users of the Android app would be forced to upgrade.   Oskar Stål,...

Read more

In order to make the general public more aware of internet security, could the box in the corner be the answer?   Talking with Professor Alan Woodward, who has embarked on a series of educational ventures with Sophos and SANS Institute’s James Lyne and former Tomorrow’s World presenter Maggie Philbin, he said that the television is a missing part of the way to educate.   He said: “Where are the TV programmes? At best there...

Read more

This week saw the United States Government issue a charge against five Chinese Government agents, who it claimed were officers in Unit 61398 of the Third Department of the Chinese People’s Liberation Army (PLA), aka the APT1 group.   The indictment alleges that three of the men hacked, or attempted to hack, into US entities, while two others managed the infrastructure. It was also alleged that the stolen information would benefit the Chinese Government and...

Read more

It seems the author of a report called “Jackpot! Money Laundering Through Online Gambling” has come out and said the findings of his study have been grossly misinterpreted by the anti-online and pro-online activist groups.   Raj Samani, chief technology officer of leading anti-virus firm McAfee and author of this report has said he felt like he had “kicked a hornets nest” with the amount of responses he has received over his report.   According to Samani,...

Read more

The continued use of default credentials, including passwords, was identified as a key security failing by the Information Commissioner’s Office (ICO) report this week.   Correlating with recent research by NCC Group, it seems that there is an expectation of things working out of the box so much that the security functions are not really considered. I put the question to some key industry spokespeople, and asked why people do not check the settings of such crucial things?...

Read more
Page 29 of 36 1 28 29 30 36