Must

now browsing by tag

 
 

#nationalcybersecuritymonth | General election 2019: Source of UK-US trade document leak must be found – PM

Source: National Cyber Security – Produced By Gregory Evans Image copyright Getty Images Image caption Jeremy Corbyn holds up the leaked documents at a press conference on 27 November Boris Johnson has said an investigation is needed into the source of leaked documents on UK-US trade negotiations posted on Reddit. Labour says the documents show […] View full post on AmIHackerProof.com

All of #Texas must #prepare for #cyberattacks

A city government on the verge of shutdown, with multiple city departments not able to function because of a massive technology breakdown. A crippled municipal court system that has stopped working. Millions in lost revenue because residents can’t paying water bills, and vital communications like sewer and infrastructure repair requests can’t be processed. Finally, all electronic communication systems for first responders is rendered inoperable for several days. The cause is a powerful computer virus released into a city system by hackers demanding payment.

If this sounds like the newest plot from a Hollywood disaster movie, think again. It’s the reality of a cyber attack that recently hit the city of Atlanta, and is likely the first of many more that American cities, counties and states are likely to face.

Just two weeks ago, Atlanta was hit by a “ransomware” attack known as SamSam, nearly bringing down all city operations. The city continues to be hobbled by the attack, with many of its systems still not fully functional. Atlanta like most major cities was caught flat-footed and unprepared. Attempted ransomware attacks against local governments in the United States have become all too common. A 2016 survey of the International City/County Management Association (ICMA) for jurisdictions across the country found that one-quarter of local governments reported that they were experiencing attacks of one kind or another.

With such an ongoing threat, you would imagine that cyber-security would be a major priority for municipal government. Shockingly, less than half the local governments surveyed said they had a formal cybersecurity policy, and only 34 percent said they had a written strategy to recover from breaches.

Simply put, American cities are unprepared to deal with the reality of cyber-attacks.

Atlanta is certainly not alone with its cyber preparedness issues. Municipalities often have very limited technology budgets, with investments funneled to meet immediate tech needs rather than focusing on cyber defense. With limited money and expertise, implementing the most basic security practices can be challenging, let alone cutting edge defenses in this fast changing and evolving threat. Compounding the problem is that hackers aren’t necessarily attacking cities specifically, but they are simply looking at vulnerable sites with poorly protected governments an easy target.

Houston may be particularly vulnerable for an Atlanta-style attack.

Webroot, an internet security firm, analyzed the malware infection rates for 2016, to evaluate which communities were most vulnerable to cyber attacks. Houston was the No. 1 ranked city with more than 60,000 infected devices, making it potentially the municipality most likely subject to attack in the country.

Against this backdrop, what if anything can be done to keep Houston safe?

Houston has in many ways led on the issue of cyber-security and protection. One of the earliest cities in the country to have a chief information/technology officer, it has since 2013 also had a chief technology Security officer who is tasked with maintaining a consistent and uniform security plan for the city’s technical infrastructure. Houston, unlike many other cities, does maintain a formal cybersecurity policy that is updated on a real time basis.

What’s missing however, is the budgetary flexibility to quickly update systems and software. In today’s world cyber-security is critically important to our daily lives. We need to prioritize software and critical infrastructure updates in the same way we prioritize first responders with the resources to protect us.

The city continues to operate on outdated systems that are vulnerable to cyber-attack. If we don’t update our systems, we could find ourselves in the exact same position as Atlanta.

In the modern era, maintaining a strong cyber security system is as important as making sure we have adequate police and fire protection.

advertisement:

The post All of #Texas must #prepare for #cyberattacks appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Why Your #IT Staff Must be #Trained in #Cyber Security #Measures

Source: National Cyber Security – Produced By Gregory Evans

Due to increased threats of an online security breach, the performance of IT staff requires a comprehensive optimization for reinforcing cyber security measures.

According to a Cybersecurity Ventures report, cyber security jobs forecasts haven’t been able to keep up with the massive rise in cybercrime, which is estimated to reach global costs of $6 trillion per year by 2021. In other words, the lack of quality cyber protection leaves corporations, and society in general, vulnerable to cyber-attacks.

However, it’s not only the employee shortage that is the problem. More and more employees use the most convenient nearby tools in order to reduce their labor. This includes applying unmanaged devices for implementing traditional safety measures that are frequently proven to be an ineffective approach to data protection.

So what is the best solution for enhancing cyber security and still managing to reduce the long hours and efforts of the IT department?

Cyber Security Jobs Deficiency

In order to correctly address the lack cyber security staff, CIOs and CISOs should consider opening this position to every IT member within the organization. Businesses need to tackle this issue as a collective and appoint every technician to the protection of sensitive data, technology solutions, applications, and consumers.

The corporate culture has to experience productive changes, so it’s a CIOs and CISOs duty to assure that every employee is aware of the situation and potential threats they might encounter. Whether they need to be informed of phishing emails, password protection and sharing, or using unsafe networks, new policies regarding cyber security have to be adopted.

Let’s not also forget that cyber criminals are getting smarter, as they look for new ways to access the information. Thus, creating awareness of online hazards should be a constant practice to reduce the risks they carry.

Therefore, each IT support specialist and manager, including network technicians, administrators, web developers, and so on need to know the threat they are facing. Of course, it would be favorable that the IT workforce already possess some level of cyber security knowledge. However, that doesn’t mean that they can’t learn the subject and become more proficient.

In fact, one way to deal with cyber security staff shortage is by presenting a career opportunity advancement to current employees. Businesses should organize training in cyber security and use it as a valuable step toward online safety.

The second option to reduce this flaw is by making a clear statement in job opening posts that experienced employees or employees with some previous experience in cyber security have an advantage. After all, the world is about to suffer a major revenue loss of an entire $2 trillion by 2019 due to high cyber risks, not to mention the previous projected global costs of $500 billion in 2015.

Cyber Security Training & Awareness Initiative Development

Business owners need to rethink their cyber security strategy as soon as possible. They need to talk with their employees, raise the risk awareness, and establish some ground rules for everyone to follow. Since this initiative should be comprehensive, use several methods and approaches to ensure that the employees understand new policies such as:

  • Classifying and Handling Information. Data need to be encrypted and password protected. Password sharing shouldn’t be allowed.

  • Anti-Virus System. The organization requires a quality and licensed anti-virus software that should be used by all employees on a regular basis for scanning every new piece of information like documentation and files.

  • Backup Always. Every responsible and reputable organization has to have a secure computer backup system. The same applies for employees, as they should perform a backup at least once a week.

  • The Use of the internet. Employees need to be advised that the use of the internet is monitored, and that they shouldn’t be opening malicious web pages or downloading unlicensed tools.

  • Email Security. Staff mustn’t open chain letters, advertising campaign materials, and any other emails that are not business-related.
  • Network Management. Only authorized users may access the network.

  • Third-Party Confidentiality. Confidential information and training materials should not be released to a third-party without a signed confidentiality agreement.     

That being said, there is one more thing to take care of apart from the awareness program. That’s right, we are talking about employee training, because “Training and educating employees to remain secure is key.”

If your employees understand that they could potentially endanger the business by accessing confidential data and are given proper training that could lead to better job positions, the company could prosper in cyber security. Otherwise, they are left vulnerable to online vultures, just like the rest of us.

So let the primary goal be implementing a safer and educated company culture with a clear understanding of the benefits and expected results. But first, businesses need to note to what extent security influences the entire scope of their operations, including products and services.    

While most establishments do provide cloud-based or on-premises training, that might not be enough to stay safe. This approach requires the proper tools and technology investments as well, because that’s the only adequate manner to meet the demands of cyber security programs.

Conclusion

There is no way around it, the worldwide organizations need to act fast if they want to remain protected from cyber-attacks. And their options lead to better employee training, raising cyber-bullying awareness, and investing in quality technological solutions. Only by attacking the issues from all fronts can we manage to escape the risks of a security breach and personal information leakage.

The post Why Your #IT Staff Must be #Trained in #Cyber Security #Measures appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Why Cybersecurity Must Be a Board-Level Discussion

Source: National Cyber Security – Produced By Gregory Evans

“What you don’t know will hurt you.” That’s the topic of a recent SC Magazine article by CrowdStrike CEO George Kurtz, describing the plight of today’s organizations. Faced with an increasing barrage of sophisticated attackers “seeking to compromise a network, obtain intellectual property or bring business operations to a halt,”…

The post Why Cybersecurity Must Be a Board-Level Discussion appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Fiat Must Face Some Claims In Drivers’ Hacking Risk Suit

Source: National Cyber Security – Produced By Gregory Evans

An Illinois federal judge on Monday refused to entirely dismiss a putative class action claiming some Fiat Chrysler Jeeps are susceptible to hacking, saying that the plaintiffs can continue to claim they overpaid for the vehicles. District Court Judge Michael Reagan dismissed remaining claims that possible future car hacking could…

The post Fiat Must Face Some Claims In Drivers’ Hacking Risk Suit appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Hospitals must band together to beat hackers

Source: National Cyber Security – Produced By Gregory Evans

Consider this a rallying cry: Hospitals, health systems and networks need to join forces, organize, come together as a community, to proactively fend off hackers, hacktivists, organized criminals and other emerging threats all trying to penetrate healthcare entities to either steal patient data or, worse, destroy it altogether. It’s not…

The post Hospitals must band together to beat hackers appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

‘Impossible’ to protect children from online threats and they must be taught how to deal with them

To Purchase This Product/Services, Go To The Store Link Above Or Go To http://www.become007.com/store/ Trying to protect children from all online risks may be futile as kids keep their cyber lives secret, says a report. It is more important to make children “resilient” to the …

The post ‘Impossible’ to protect children from online threats and they must be taught how to deal with them appeared first on Become007.com.

View full post on Become007.com

Data Security Must Be a Business Priority

Data Security Must Be a Business PrioritySource: National Cyber Security – Produced By Gregory Evans Data security is being put at risk by the unsafe practices of end users, and security staffers must do more to keep enterprise information safe. In fact, a recent Dell … The post Data Security Must Be a Business Priority appeared first on National Cyber Security […]

The post Data Security Must Be a Business Priority appeared first on AmIHackerProof.com.

View full post on AmIHackerProof.com | Can You Be Hacked?

Bank managers must regularly test their cybersecurity defences

Source: National Cyber Security – Produced By Gregory Evans

Bank managers must regularly test their cybersecurity defences

Fast-moving, dynamic threats are creating new challenges every day. That means institutions must put the right people and the right resources in place to tackle potential security breaches Dear bank …

The post Bank managers must regularly test their cybersecurity defences appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

WHY AMERICANS MUST GET BETTER IN TERMS OF CYBER SECURITY

Source: National Cyber Security – Produced By Gregory Evans

If you spend the majority of your life in the digital world, as millions of people around the world do each day, cyber security should always be one of your top priorities. You would never hand a stranger your credit …

The post WHY AMERICANS MUST GET BETTER IN TERMS OF CYBER SECURITY appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures