A rise in hybrid work and a shift to cloud platforms has changed how businesses operate – but it’s also leaving them vulnerable to cyberattacks. Source: Terrible cloud security is leaving the door open for hackers. Here’s what you’re doing wrong | ZDNetRead More →
A leader of a new effort to teach cybersecurity to local community organizations and the public at large offers some basic tips to get everyone started. 1. Keep everything up to date Many breaches, including the 2017 one at the Equifax credit bureau that exposed the financial information of almost every American adult, boil down to someone leaving out-of-date software running. Most major computer companies issue regular updates to protect against newly emerging vulnerabilities. 2. Use strong, unique passwords Remembering passwords, especially complicated ones, isn’t fun, which is why so much work is going into finding better alternatives. For the time being, though, it’s importantRead More →
Top Three IoT Security Trends Here is the top three IoT security trends to follow in 2018, including digital identity and regulatory challenges. Gartner estimates the mushrooming number of connected devices will reach more than 20 billion in 2020. Keeping these devices secure will present major challenges for Internet of Things (IoT) hardware and solution vendors in the years ahead. Here are some of the major IoT security trends to follow in 2018. Security trend #1: The Identity of Things Traditional identity and access management (IAM) systems were developed to identify humans, not machines. To cope with the new connected IoT world, IAM leaders mustRead More →
The Open Web Application Security Project (OWASP) puts out a regular list of the top 10 most critical web application security risks with the hopes of raising awareness and helping organizations develop a culture of more secure code. With that in mind, let’s take a look at the top five: 1. Broken Access Control This means that restrictions on authenticated users are not properly enforced, leading to one user able to see other users’ files or modify other users data. 2. XML External Entities Fun to say, not fun when it happens. This occurs when older or badly configured XML processors evaluate external entity references within XMLRead More →
How India Inc is losing its cybersecurity war Cyber experts say what makes Indian industry vulnerable is changing threat profile due to resource rich nation states now targeting companies. Mumbai’s top cybercop Brijesh Singh has his hands full these days. With increasing cybercrime, including a rising tide of corporate cyber incidents, there’s no respite for the Maharashtra Police cybercrime team that the suave 1996 batch IPS officer leads. Recently Singh’s crack team solved a host of high-profile cases including the Reliance JioInfocomm unauthorised data access case and Game of Thrones leak. “We end up getting at least three-four corporate cybercrime cases in a week. Earlier the corporatesRead More →