Opinions & Analysis

By Kevin Bailey, Managing Director & Principal - Security Research at Omnisperience  When I look back at the cybersecurity industry, in the early 2000s it involved a few hundred vendors battling for their share of a ~$750 million market. The hacker was motivated by the chase and notoriety rather than monetary rewards. Fast forward to 2020 and sophisticated hackers have now established a matrix structure comparable to multinational corporations with the discipline, skills, diversity of...

By Prof. John Walker To say we live in unprecedented times must be the understatement of the century – in fact, what we have seen in recent years does amount to gross disbelief. Terrorist attacks finding their way to the streets of the UK, active Russian agents seemingly acting with murderous impunity, whilst looking wondrously up at Church Spires, not to mention the murder of a US based journalist within the walls of a Egyptian...

In the span of a couple months, the world as we knew it was turned upside-down. As scientists across the globe conduct experiments in search of the COVID-19 vaccine, the labour market has found itself within its own experiment. That is, the experiment of remote working on a massive scale.   In an effort to slow down the spread of the virus, millions of employees around the world are being told to write their emails, compile their spreadsheets, and hold their meetings from the confines of their dining room...

A security software-as-a-service solution that continuously scans the entirety of an organisation’s digital assets is perhaps the clearest indicator of how much the cybersecurity world has changed since the old days, when one ad-hoc penetration test and an antivirus would do the trick. We asked Eoin Keary, CEO and founder of edgescan, to tell us more about this model of security how should ensure they are making an informed choice. Which organisations should consider adopting...

With one of the most anticipated cybersecurity events of the year just around the corner, we thought to help you navigate around the 700 exhibiting vendors we’d highlight some of what a handful of those companies will be talking at the show. ‘The Human Element’ is the theme of RSA Conference 2020, but there is also a lot of noise around issues and challenges surrounding election security, open source tools, product security and anti-fraud. So, what...

Corin Imai, senior security advisor at DomainTools:  “Cybercriminal operations thrive off the kind of data that this database left exposed: sensitive personal identifiable information can be sold online and exploited in all sorts of subsequent campaigns. Fortunately, security researchers promptly brought the misconfiguration to the attention of Estee Lauder, who quickly secured the database. Although there is no evidence that data was stolen, people potentially affected should be weary of any email they receive that requests...

Privacy Day, or Data Protection Day in Europe, was instituted to raise awareness on the importance of upholding data protection best practice. The recent institution of privacy regulations such as GDPR and CCPA made organisations reflect on how they store and use consumers' personal information across the board, marking a significant milestone in the way data is handled in the digital era. Here's what experts had to say: Corin Imai, Senior Security Advisor at DomainTools:...

Cyber defence is often focused on protecting the digital assets of an organisation, such as its networks, endpoints and databases, as well as assets exposed on the internet, such as company websites. However, what many fail to realise is that there is yet another class of assets that need to be considered – company executives. In fact, some hackers find that targeting the chief executive officer (CEO), chief operating officer (COO), or chief financial officer...

Data privacy is at the center of core issues that governments are trying to solve this year. Privacy advocates have been requesting more stringent privacy laws and governments have responded. The European Union’s General Data Protection Regulation (GDPR) has served as an effective blueprint for new privacy laws. This year, we are seeing new privacy laws come into effect, such as Brazil’s LGPD, the United States’s CCPA, and more. Under GDPR, there have been over...

DevOps culture makes things happen faster. Faster delivery, faster testing, faster release. On one hand, it adds control over what is going on in the infrastructure. You can recover faster. You can redeploy your compromised app components. You can roll back to the previous build. On the other hand, fast changes mean fast decisions. Some security vulnerabilities can pass through automatic testing. Some DevOps tools may be compromised also. We experienced a security issue when...