cyber

now browsing by tag

 
 

Fishtech Group Preps North Arkansas Cyber Defense Center

Source: National Cyber Security – Produced By Gregory Evans

Cybersecurity services provider Fishtech Group, which has a Top 200 MSSP arm, has announced plans to open a 10,000-square-foot Cyber Defense Center (CDC) in Rogers, Arkansas.

Fishtech’s Arkansas CDC will complement the company’s CDC in Martin City, Missouri. It will initially house 20 employees and expand to host up to 100 onsite staff, the company stated.

Also, the new CDC will be run by Fishtech CISO Kerry Kilker, a former Walmart executive who joined the company earlier this year. It is expected to open in the second quarter of next year.

Fishtech’s Arkansas CDC will bring cybersecurity training, technology and resources to Northwest Arkansas, the company said. In doing so, the CDC will help organizations bridge the cybersecurity resource and talent gap.

Approximately 58 percent of enterprises have unfilled cybersecurity positions, according to the 2019 “State of Cybersecurity” survey from information security organization ISACA. Furthermore, 62 percent of survey respondents said they have to wait three to six months to fill open cybersecurity positions.

Fishtech Joins the OneLogin Accelerate Partner Program

In addition to announcing plans to open a new CDC, Fishtech in April joined the OneLogin Accelerate identity and access management (IAM) partner program. Fishtech has incorporated the OneLogin unified access management (UAM) platform into its offerings and added IAM solutions to its portfolio.

Fishtech provides data-driven cybersecurity solutions designed to help organizations identify security gaps and comply with industry mandates, the company indicated. It also partners with other cybersecurity companies to deliver on-premises and cloud security solutions.

Source

The post Fishtech Group Preps North Arkansas Cyber Defense Center appeared first on National Cyber Security.

View full post on National Cyber Security

#school | #ransomware | District Cyber Attack: Livingston Superintendent, LHS Principal Provide Updates

Source: National Cyber Security – Produced By Gregory Evans LIVINGSTON, NJ — Two weeks after Livingston Public Schools (LPS) announced that its system was compromised, the district is still without its servers and continues its investigation and district-wide response to the encrypting of the technology systems. Due to the Thanksgiving holiday, there have only been seven […] View full post on AmIHackerProof.com

#cybersecurity | hacker | Church’s Chicken hit by cyber thieves

Source: National Cyber Security – Produced By Gregory Evans

Church’s Chicken suffered a cyberattack
that penetrated the payment processing system at some of the chain’s corporate
locations compromising payment card information.

The company operates 941 locations
across the United States, but in a statement
noted only 165
of those, all owned and operated by the corporation, were impacted. Payment
card numbers, names and expiration dates were exposed.

Church’s does not know
exactly when the breach occurred or when the individual locations were exposed
other than noting it was some time in 2019.

“We believe the incident may
involve the payment processing system that services our company-owned
restaurants.  We are working hard to
determine specific locations and dates for each restaurant that may have been
involved in the attack.  Church’s will
provide updates to guests once we have completed our investigation and know
more about any payment cards that may have been impacted,” Church’s said.

The restaurants impacted are
located in Alabama, Arkansas, Florida, Georgia, Illinois, Louisiana, Missouri,
Mississippi, South Carolina, Tennessee and Texas were involved.

No franchise locations were
hit and those customers who used a delivery app such as Uber Eats or Door Dash
were not compromised.

Original Source link

The post #cybersecurity | hacker | Church’s Chicken hit by cyber thieves appeared first on National Cyber Security.

View full post on National Cyber Security

#cybersecurity | #hackerspace | Quantum Computing Is Coming: Are You Cyber Ready?

Source: National Cyber Security – Produced By Gregory Evans

We’ve been hearing about the vast potential of quantum computing for years. With its exponentially superior processing power, this game-changing technology is expected to dramatically transform fields such as medical sciences, machine learning, particle physics, engineering and meteorology. Although widespread adoption is still in the future, 2019 marks a turning point in its commercial availability.

In January, IBM introduced the world’s first circuit-based commercial quantum computer, the IBM Q System One. This milestone in bringing quantum technology out of the lab and into real-world production environments is motivating IT to come to terms with its opportunities and risks.

Cybersecurity is among the top challenges to consider because industry experts predict that future quantum computers will soon be able to break today’s most sophisticated algorithms. According to “Quantum Computing: Progress and Prospects,” a recent report by the National Academy of Sciences, analysts agree that the time to start preparing for a quantum-safe future is now. For the time being, RSA and ECC algorithms still remain safe. However, the National Academy states that a powerful quantum computer theoretically could crack even a sophisticated 2048-bit RSA key in just a few months. In any case, enterprise and government organizations will need significant time to develop, standardize, and deploy new cryptographic algorithms that can withstand quantum computing threats—post-quantum cryptography (PQC).

The urgency of the risk is clear, especially for IoT-intensive industries. Businesses with IoT devices and applications that have long life cycles may have their products operating out in the world after the first quantum computers become a threat. That means products that had once been considered safe could become a liability. Some examples might include ATMs or automobiles with sensors, onboard computers and connections to the internet. If quantum-safe strategies are not put in place today when manufacturing these devices or products, they could be breached in the future. To be fully protected, businesses need to start addressing the quantum computing threat as soon as possible.

Broad Awareness of Quantum Computing and Plans for Action

For many organizations, the first steps toward managing quantum computing risks are not always clear. In some cases, enterprises may have only a limited understanding of PQC. To learn more about how enterprises are preparing for these new challenges, DigiCert commissioned ReRez Research of Dallas to survey IT professionals within 400 enterprises of 1,000 or more employees in the U.S., Germany and Japan. Participants included IT directors, IT security managers and IT generalists across a variety of industries.

The survey revealed that enterprise IT is well-aware of the threat that quantum computing poses to cryptography. Slightly more than half (55%) said quantum computing is a “somewhat” to “extremely” large threat today, with 71% saying it will be a “somewhat” to “extremely” large threat in the future.

However, the survey also underscored the fact that PQC is a new concept and that people are still learning about its meaning and significance. In fact, in a question designed to gauge understanding of the term, fewer than two-thirds of participants chose the correct definition of PQC.

Survey participants generally agree that the threat is rapidly approaching. The median response for when PQC would be required to combat new risks was 2022—just three years from now. With the threat on the horizon, 83% of respondents said it was “somewhat” to “extremely” important for IT to learn about quantum-safe security practices.

IT is also clear about the cryptographic risks they face from quantum computing. Survey respondents said they worry that the cost of fighting future quantum computing threats or attacks will spiral out of control. They are also concerned that data that is considered safely encrypted by today’s standards will become easy to decrypt in a quantum future, in which stolen data that may be safe for the moment could become vulnerable in the future.

A Proactive Approach is Key

With so much concern about post-quantum risks, putting a forward-looking strategy in place is essential to mitigating tomorrow’s threats. The DigiCert/ReRez survey identified three best practices for organizations seeking to secure their operations, including:

  • Knowing your specific risk and establishing a quantum crypto maturity model.
  • Understanding the importance of crypto-agility in your organization, and making it a core practice.
  • Working with leading vendors to establish digital certificate best practices and ensure they are tracking PQC industry progress to help you stay ahead of the curve, including with their products and solutions.

It’s not surprising that 95% of survey respondents reported that they are discussing at least one tactic to prepare for quantum computing. Organizations are also beginning to take the first steps to fund their initiatives: One-third indicated they have a PQC budget in place, while another 56% are working on establishing one.

Although the challenges of quantum computing are daunting, with advance planning backed by a solid strategy, organizations still have time to get ahead of tomorrow’s cybersecurity challenges.

To review a copy of the DigiCert 2019 Post Quantum Crypto Survey, visit https://www.digicert.com/post-quantum-cryptography/

Recent Articles By Author

Source link

The post #cybersecurity | #hackerspace |<p> Quantum Computing Is Coming: Are You Cyber Ready? <p> appeared first on National Cyber Security.

View full post on National Cyber Security

#school | #ransomware | Cyber security expert breaks down ransomware attacks

Source: National Cyber Security – Produced By Gregory Evans MONROE, La. (KNOE) – Gov. John Bel Edwards declared a state of emergency following a cyber-attack on Nov. 18. An apparent “ransomware” virus infected 1,500 of the state’s 30,000 computers last week. Source: (MGN) An apparent “ransomware” virus infected 1,500 of the state’s 30,000 computers. This […] View full post on AmIHackerProof.com

#cyberfraud | #cybercriminals | Watch out for Cyber Monday scammers

Source: National Cyber Security – Produced By Gregory Evans

Cyber Monday — Dec. 2 this year — is poised to be among the biggest shopping days of the year. The National Retail Federation estimates total retail sales for the season to reach as high as $730.7 billion, and 56 percent of holiday shoppers plan on clicking to shop.

While most online retailers are reliable, some are not. Better Business Bureau received more than 32,000 complaints about online retailers and more than 7,200 BBB Scam Tracker reports about online purchase scams so far in 2019. Online purchase scams ranked as the second riskiest scam of 2018 in the St. Louis region.

A St. Louis woman told BBB Scam Tracker in late October 2019 she never received a college sports-themed gift she purchased for her husband in early September 2019. She said the company charged her credit card the day of the purchase and sent an order confirmation, but never sent a shipping confirmation, nor did the purchased item ever arrive. The woman told BBB when she attempted to contact the company, its phone number had been disconnected, and the website URL listed in the order confirmation email pointed to a day care in Australia.

Shoppers can prepare themselves for online shopping by watching ads and browsing for the items they’re seeking in advance. Many online retailers already have set up sites where Cyber Monday offers will be advertised. Unless you’re educated, it can be hard to tell whether an online deal actually will save you money. Read a site’s policies for returns and understand shipping schedules before you enter your credit card number.

BBB’s 10 tips for safe online shopping are as follows:

1. Protect your computer. Install a firewall, anti-virus and anti-spyware software. Check for and install the latest updates and run virus scans regularly.

2. Check a site’s security settings before entering financial data, such as a credit card number. If the site is secure, the URL (web address) on the payment page should start with “https://.”

3. Shop trustworthy websites. Look for BBB Accredited Business seals on websites and click to confirm they’re valid. BBB’s dynamic seal will take you to a site’s BBB Business Profile. You also may find reviews at bbb.org.

4. Protect personal information. Read a site’s privacy policy and understand what personal information is being requested and how it will be used. Don’t enter that information on unsolicited emails. If a site lacks a privacy policy, it could be a red flag that the site could sell your information without your permission.

5. Beware of too-good-to-be-true deals. Offers on websites and in unsolicited emails may display free or low prices on hard-to-find items. There may be hidden costs, or your purchase may sign you up for a monthly charge. Look for and read the fine print.

6. Beware of phishing. Legitimate businesses do not send emails claiming problems with an order, account or a package to lure the buyer into revealing financial information. If you receive such an email, BBB recommends you call the contact number on the website where the purchase was made to confirm a problem.

7. Pay with a credit card. Under federal law, you can dispute the charges if you don’t receive an item. Shoppers also have dispute rights if there are any unauthorized charges on the card, and many card issuers have zero-liability policies if someone steals and uses your card number. Check your credit card statement regularly for unauthorized charges. Never wire money to someone you don’t know.

8. Keep documentation of your order. Save a copy of the confirmation page of an order or emails confirming the order until you receive the item and are satisfied.

9. Obtain a tracking number for shipments. If you need the product before the holidays, find out when the seller intends to ship it and, if possible, how it will be shipped. The tracking number can help you find a lost order.

10. Know your rights. Federal law requires that orders made by phone, mail or online be shipped by the date promised or within 30 days if no delivery time was stated. If goods aren’t shipped on time, shoppers can cancel and demand a refund. Consumers also may reject merchandise if it is defective or was misrepresented.

Check a company’s BBB Business Profile before you make a purchase by going to bbb.org or by calling 573-886-8965.

Michelle Gleba is the Mid-Missouri regional director for Better Business Bureau.

Source link

The post #cyberfraud | #cybercriminals | Watch out for Cyber Monday scammers appeared first on National Cyber Security.

View full post on National Cyber Security

Coronet, Coalition Promote Cyber Insurance to SMBs

Source: National Cyber Security – Produced By Gregory Evans

Coronet, a security-as-a-service (SECaaS) and data breach protection platform provider, has announced plans to offer Coalition cyber insurance coverage up to $500,000. In doing so, Coronet and Coalition are making cybersecurity and cyber insurance offerings more available than ever before to small and medium-sized businesses (SMBs), the companies stated.

With the partnership, Coronet’s SMB customers can leverage Coalition cyber insurance tailored to their specific cyber risk exposure requirements, according to the companies. They also can access a bundled insurance offering as part of Coronet’s Platinum product at no additional cost.

Coronet, Coalition Are Growing

The Coronet-Coalition partnership comes as both companies have taken steps to extend their market reach in 2019.

In addition to its Coalition pact, Coronet in September partnered with insurance cloud platform company Slice Labs to deliver cyber insurance via AXA XL. Slice offers cyber insurance underwritten by Indian Harbor Insurance, an AXA XL company, to Coronet’s SMB customers.

Meanwhile, Coalition in May raised $40 million in a funding round led by venture capital firm Ribbit Capital, with participation from investors Greenoaks Capital and Hillhouse Capital. The funding is helping Coalition scale its cyber insurance platform and explore ways to provide free cybersecurity risk management tools to SMBs.

Most Organizations Lack Cyber Insurance

Cyber insurance helps organizations avoid financial losses associated with cyberattacks. However, 62 percent of organizations lack cyber insurance, a recent survey of 581 IT professionals conducted by IT systems and network monitoring software company Spiceworks revealed.

As organizations search for ways to limit cyber risk, the demand for cyber insurance could increase in the foreseeable future. Furthermore, organizations could deploy managed security services in combination with cyber insurance to optimize their security posture.

Source

The post Coronet, Coalition Promote Cyber Insurance to SMBs appeared first on National Cyber Security.

View full post on National Cyber Security

#nationalcybersecuritymonth | France Not Ruling Out Response to Cyber Attack on Hospital

Source: National Cyber Security – Produced By Gregory Evans (Bloomberg) — French authorities said they may hit back at cyber assailants who’ve struck a public hospital, forcing it to suspend all but the most vital systems. “The attacker is still active, and looking for targets in France,” said Guillaume Poupard, the head of the national […] View full post on AmIHackerProof.com

#nationalcybersecuritymonth | Monthly cyber security review: November 2019

Source: National Cyber Security – Produced By Gregory Evans As we enter December, many organisations slow down as they turn their attention to Christmas. Office parties, secret Santas and discussions of when it’s acceptable to put the tree up start to take precedence over work, as employees kill time hoping not to start any big […] View full post on AmIHackerProof.com

#nationalcybersecuritymonth | IIT Kanpur and TalentSprint Announce Partnership for Development of Cyber Security Experts to Combat Cyber Threats

Source: National Cyber Security – Produced By Gregory Evans

 




Hyderabad, India:
 ​

  • Equip and Enable 1000 Cyber Security Professionals in coming years
  • Hybrid Executive Format with Bootcamps at IIT Kanpur and Live Online Sessions 
  • Advanced Certification Program in Cyber Security and Cyber Defense 

     


The Indian Institute of Technology, Kanpur (IIT Kanpur) has announced an Advanced Certification Program in Cyber Security and Cyber Defense in partnership with TalentSprint. The program is designed for current and aspiring professionals who are keen to explore and exploit the latest trends in cyber security technologies. A combination of deep academic rigor and intense practical approach will allow participants to master in-demand skills and build world class expertise. The first cohort will start in early 2020.

IIT Kanpur, established in 1959, is widely recognized as a global trailblazer in computer science research and education. Most recently, IIT Kanpur has taken the lead in cyber security by setting up the Interdisciplinary Centre for Cyber Security and Cyber Defence of Critical Infrastructures (C3i). The mission of C3i is research, education, and training, and also spawn startups to create technological safeguards to protect critical national infrastructure. The centre collaborates with other global centres of excellence and is positioned to become a world leader in cyber security.

Speaking on the occasion, Dr. Manindra Agrawal, Program Director and Professor of Computer Science at IIT Kanpur, said: “It is estimated that there will be roughly 200 billion connected devices by 2020. Rapid convergence of Mobility, Internet of Things and Cloud Computing is leading to an explosive increase in security threats and the need for Cyber Defense experts to combat these threats is becoming all the more important. Our program will leverage the deep research capabilities of C3i to arm technology professionals with the right expertise to counter a wide range of emerging threats and vulnerabilities.” 

Dr. Santanu Paul, Co-Founder and CEO of TalentSprint, said: “We are delighted to partner with IIT Kanpur on a mission to create Cyber Security experts. The demand for such professionals is outstripping supply. Companies need sophisticated responders to defend against the growing threat of cyberattacks. There is a huge talent crunch and 59% of the companies have vacant positions suggesting a cumulative global shortfall of 1.5 million such professionals.” 

 

According to NASSCOM, India’s cyber security market is projected to grow to $35 billion by 2025. This 6-month Advanced Certification Program in Cyber Security and Cyber Defense will be delivered in an executive-friendly format with immersion bootcamps at the IIT Kanpur campus, complemented by live online interactive sessions via the TalentSprint digital platform. Program participants will also get direct exposure to C3i and its research expertise during their visits to IIT Kanpur. In addition, TalentSprint will curate state-of-the-art capstone projects for program participants, and actively leverage its digital platform for the purpose of accelerated experiential learning. 

 

Technology professionals interested in this program should apply for selection at: https://iitk.talentsprint.com/Cyber Security/

About IIT Kanpur

 
Indian Institute of Technology, Kanpur, is one of the premier institutions set up by the Government of India. Registered in 1959, the institute was assisted by nine leading institutions of U.S.A in the setting up of its academic programs and laboratories during the period 1962-72. With its record of path-breaking innovations and cutting-edge research, the institute is known the world over as a learning centre of repute in engineering, science and several inter-disciplinary areas. In addition to formal undergraduate and postgraduate courses, the institute has been active in research and development in areas of value to both industry and government. For more information, visit www.iitk.ac.in

 
About TalentSprint

TalentSprint brings high-end and deep tech education to aspiring and experienced professionals. It partners with world class academic institutions and global corporations to develop and offer disruptive programs. TalentSprint’s hybrid platform delivers unique onsite and online experiences that help build cutting-edge expertise, for today and tomorrow. For more information please visit www.talentsprint.com

Click here for Media Contact Details


Submit your press release

Source link

The post #nationalcybersecuritymonth | IIT Kanpur and TalentSprint Announce Partnership for Development of Cyber Security Experts to Combat Cyber Threats appeared first on National Cyber Security.

View full post on National Cyber Security