Cyber Security

Security sector insights in the age of terror and the cyber-attack

Cyber-attacks are one of the defining security threats of our age and cybersecurity a growing priority for business and governments alike.

The internet’s transformation of both our personal lives and the world of commerce has created boundless opportunities for hackers with a wide range of motives and an even broader array of tools. From phishing and clickjacking to ransomware, direct-access attacks and denial of service attacks (DoS) the threats keep on evolving and emerging. It’s a game of cat and mouse as the criminals become more sophisticated and cyber security professionals try to keep up.

The stakes are high. Lloyd’s of London has warned that a major cyber-attack could wreak havoc that costs as much as £92bn to remedy – more than the repair bill for Hurricane Katrina, costliest natural disaster in UoS histry. And ‘destruction of service’ attacks could “disrupt the internet itself” and destroy businesses in one fell swoop, according to research from Cisco.

The GDPR, which comes into force across Europe in May 2018, raises the stakes further still. The fines for data protection breaches – including deficient cyber security protections – will be 79 times higher than under the previous regime: €10 million (£7.9 million) or 2% of an organisation’s global turnover.

A government survey of the FTSE 350 has revealed 68% of board members have not been trained to deal with cybersecurity incidents, potentially leaving their businesses in danger.

If the ubiquity of smartphones have created even more opportunities for criminals, then the internet of things has ramped up the threat further still, with everyday household objects now connected to the internet. In 2016, some 1.5m IoT devices – mostly security cameras – were hijacked during a DDoS attack. Even our cars are becoming vulnerable.

Building systems are also increasingly network-connected too, so even buildings can be hacked. Physical security professionals need to get to grips with cybersecurity too.

Modernisation of telecoms infrastructure will take 90 seconds off alarm call-handling process

The CSL Insurer’s forum was very much focused on a potential future shift to IP and IoT technologies that’s transforming business models, improving physical security but also amplifying the cybersecurity threat. Read More

Security system ‘availability’ jargon buster

There is no shortage of solutions available to minimise disruption if a server fails or you have to recover from a cyber attack. Here is a jargon-busting overview of the best of them. Read More

$60m bitcoin theft: Unless bubble bursts we can expect many more of these attacks

Two Bitcoin thefts – Nicehash and the ecommerce-driven Quant malware exploit – in the last four days and thieves are just getting started, writes chief scientist at Forcepoint Dr Richard Ford. Read More

The internet of things: A beginner’s guide to commercial applications and security risks

Over the last 10 years or so, the world we live in has become much more interconnected, with smartphones, tablets and everyday devices now routinely connecting with one another to provide services. Read More

Apple versus the FBI: The moral maze behind the security backdoor

Apple has claimed that it contacted the FBI immediately after the recent shooting in Texas that left 26 dead to help the Bureau extract information from the gunman's phone. Read More

Uber data breach cover-up: Security experts aghast at negligence

Cybersecurity experts analyse the implications of the Uber breach, which involved the theft of 57 million people's personal information - customers and drivers - following a ransomware attack. Read More

Security & Fire Excellence Awards 2017: Winners revealed

(Photo: ICTS UK & Ireland, winner, ‘Security Guarding Company of the Year Over £50m Turnover’) Pilgrims Group, the Gatwick Airport Behavioural […] Read More

Why are one in three CNI organisations skipping cybersecurity checks?

Mike Gillespie and Ellie Hurst of Advent IM consider revelations that utilities, transportation and other CNI bodies are often neglecting cybersecurity and whether the Network and Information Systems Directive - effectively GDPR for CNI - will motivate them to up their game. Read More

Germany bans kids’ smart watches over privacy concerns

Germany's telecommunications regulator has announced a ban on the sale of children’s smartwatches over concerns that these devices can transmit audio from their surroundings. Read More

Why employee training matters: Negligent users are top insider threat

Inadvertent and negligent data breaches are top of the list of the most serious insider threats, according to a survey of businesses. Read More