expert Archives - Page 4 of 15 - Cybersecurity Magazine

Is Fully Homomorphic Encryption now a reality?

May 2, 2022May 10, 2022 Nigel Smart 1854 Views 0 Comments expert 5 min read

We all know the problems with users picking weak passwords, whether it is “PassW0rd123” or “JamesBond007”. We also know that there are lists of passwords which have been obtained from hacks into websites, and from these we can work out what are the most commonly used weak passwords in circulation. Surely there must be a way of checking, when a user chooses a new password for a website, whether the password lies on the known list of common weak passwords? There are two obvious solutions to this problem: Firstly, the browser could maintain the list of weak passwords locally on the user’s computer. This solution however does not scale as the list is huge, and needs to be continually updated. The second solution is for the new password to be sent to a central site and compared against the list of common weak passwords. But this solution then leaks the new (potentially strong) password to the central site doing the checking. Is there a better way?

General

Pain-Free Cloud Security Transformation? There’s No Such Thing

April 15, 2022April 15, 2022 Joe Darrah 1051 Views 0 Comments expert, expert. opinion, Opinion 7 min read

Seemingly all companies today prioritize cloud security as part of a comprehensive cybersecurity strategy, and for good reason. The proliferation and sophistication of cyberattacks bring endless possibilities for hackers to steal and misuse data at a pace previously unimaginable. Ransomware alone rose more than 100 percent in volume globally in 2021, and the expectation is that with such “success,” the rate of attacks will only grow in 2022.
Yet, too many enterprises and smaller companies still struggle with the transformation to the cloud because of the variables that come along with choosing the best product. Lack of awareness about the complexities with the switch, namely technology-related issues and typical adjustments needed to workflows and processes, also contributes to the confusion. Adding to the quandary is the existence of very few companies that are dedicated to cloud security as opposed to general cybersecurity products.

Business General

Closing the Cybersecurity Communications Gap: What Every CISO Needs the C-Suite to Know

March 18, 2022March 21, 2022 Adam Burns 1426 Views 0 Comments expert, expert. opinion, Opinion 5 min read

The role of the Chief Information Security Officer (CISO) has evolved considerably in recent years. So much so that in many organisations CISOs now regularly consult with the CFO, CTO and CEO on security strategy, cyber risk, and how to approach digital transformation. However, while some CISOs have been given a seat at the table on many executive boards, this hasn’t been the case everywhere.
In the past, digital security was a high priority for highly regulated industries such as banks, insurance companies as well as utilities and public sector organisations. But the recent and rapid escalation of online channels in the wake of the global pandemic has made companies in every industry sector a potential target for cyber criminals. This means C-Suite executives need to be fully informed and educated on the preventative steps that need to be taken – and why.

General

Ethics of the 0-day trade

February 25, 2022February 25, 2022 Tom Madsen 1093 Views 0 Comments expert, expert. opinion, Opinion 6 min read

This is an opinion piece, and an opinion that I am fully aware of, can be controversial in some sectors of the cybersecurity industry. Still, selling the state of the cybersecurity of customers, that most of us are doing our outmost to protect from the nefarious underbelly of the Internet, is actively undermining the security. And yes, I feel that it is actively undermining the security, to sell 0-days to brokers, on the darknet or companies on the Internet, instead of disclosing them to the vendors for patching.

Business

Ransomware’s Evolving – Are You Ready?

February 14, 2022February 14, 2022 Ian Jennings 1314 Views 0 Comments expert, expert. opinion, Opinion 6 min read

Ransomware is big business. It’s difficult to accurately measure just how big; the true size of the ransomware industry is masked by the fact that not all attacks and payments are made public. However, a simple analysis of the ransom payments in the news – where new ransomware headlines appear almost daily – reveals a multi-billion-dollar industry. Ransomware attacks are estimated to occur every 11 seconds, with the total cost of attacks to businesses exceeding $20 billion last year.
In 2022, there are no signs ransomware is slowing down. From ransomware as a service (RaaS) to Big Game Hunting, cybercriminals are becoming increasingly sophisticated; ransomware represents one of the greatest threats facing businesses today. For chief information security officers (CISOs) and the wider executive leadership team, navigating the modern ransomware landscape is challenging. Attackers are almost always one step ahead – with innovative, well-funded and coordinated teams utilising every tool at their disposal to penetrate corporate networks. It can be difficult to know exactly what form a threat might take and where best to focus risk mitigation efforts.

General

Protect what’s yours: How to Safeguard your Data this Data Protection Day

January 28, 2022January 28, 2022 Editor's Desk 1926 Views 0 Comments expert, expert. opinion, Opinion 7 min read

In our increasingly data-driven world, personal data is shared every second – when shopping, at work, travelling, or simply browsing the internet. It is the responsibility of every organisation to make an active commitment to protect the data it holds. After all, it could have serious implications for its reputation if a data breach occurred and its customers’ personal data was stolen and misused.
Data Protection Day seeks to raise awareness and promote best practices around keeping data safe and secure. In this article, eleven experts in the technology industry give advice on how to best protect your data and maintain trust from your customers.

General

Why are People Worried About 5G Interfering With Flights?

January 24, 2022January 24, 2022 Emily Newton 1215 Views 0 Comments 5g, expert, expert. opinion, Opinion 4 min read

The introduction of 5G was supposed to change how humanity uses mobile internet. From providing low-latency connectivity for mobile phones to making things like robotic surgery possible over long distances, 5G has the potential to be an invaluable tool.
On paper, it sounds like the perfect plan, but now that companies have begun to roll out the technology, a new challenge has appeared. Can 5G communications interfere with aviation instruments? Here’s what is known now and what the implications could mean for flight.

covid-19

A Heightened Risk of Digital Exposure: The Cyber Long Tail of Covid

December 6, 2021December 6, 2021 Ian Jennings 1035 Views 0 Comments covid-19, expert, expert. opinion 5 min read

Life is beginning to return to some kind of normal for many of us. But for IT and cybersecurity teams

General

Limiting Data Collection = Limiting Risk

May 24, 2021May 24, 2021 Tom Madsen 2024 Views 0 Comments expert, expert. opinion, Opinion 5 min read

Ransomware attacks can have major impacts for both companies and their customers if successful, and the rate of attack is only increasing. Tom Madsen argues the need to limit the amount of data that is collected and stored long term to help to minimize the risks of a successful ransomware attack.

General

Operational Technology – A New Challenge?

February 22, 2021February 22, 2021 Tom Madsen 1846 Views 0 Comments expert, expert. opinion, Opinion 4 min read

Operational Technology, OT, arrived on the cyber security scene in a big way in 2010 when Stuxnet arrived as the first real example of cyberwar between two countries.

In this article, Tom Madsen looks at the challenges of OT, especially in terms of OT security and the target for attack that using OT can open up.