now browsing by tag
Share Tweet Share Share Share Email Providence, Rhode Island-based Citizens Financial Group is advancing the reach of its national point-of-sale (POS) offering for merchants, renaming it Citizens Pay, the company announced Monday (Jan. 11). “Our platform has demonstrated the ability to drive impressive sales growth with a best-in-class customer experience,” Andrew Rostami, president of Citizens […] View full post on National Cyber Security
Konica Minolta’s IT Services Division Supporting Customers with End-to-end Remote Workforce Offering | #corporatesecurity | #businesssecurity | #
All Covered Home Assurance Ecosystem Ramsey, NJ, July 21, 2020 (GLOBE NEWSWIRE) — Konica Minolta Business Solutions U.S.A., Inc. (Konica Minolta), together with its IT Services division, All Covered, today […] View full post on National Cyber Security
#cyberfraud | #cybercriminals | Department of Parliamentary Services gives itself cyber tick of approval
The Australian Department of Parliamentary Services (DPS) has self-assessed that everything is mostly fine with its infrastructure, following a leaked report that everything was not.
Last month, the ABC reported that an internal audit written by KPMG had given many elements of DPS the lowest cyber maturity rating possible.
At Senate Estimates on Monday morning, DPS secretary Rob Stefanik said the leaked report was a draft prepared after the advisory giant had completed its “preliminary field work”.
“It wasn’t until a process of validation and verification that a lot of the information presented in that draft was simply found to be incorrect and the final report that they had produced, which had an implementation plan in it, in July 2019, did not have the statements in it that the original draft did.”
Stefanik said that instead of receiving the “ad hoc” rating — the lowest possible rating on a scale that ranges from ad hoc to developing, to managing, to embedded as the highest rating — the department bagged a “managing” rating in 85 of 88 criteria, with the remaining three being scored as “developing”.
Labor Senator Kimberley Kitching asked to what extent the department was able to self-assess its cyber maturity.
“It’s entirely self-assessment,” Stefanik replied.
Senate President Scott Ryan said the final report would not be released, and senators could take their concerns to the private Senate Standing Committee on Appropriations, Staffing, and Security.
“It is not appropriate to release that report because it contains information that could be used to weaken our cybersecurity,” he said.
“We have more lengthy discussions on these matters in a non-public forum to which all senators are entitled to attend and, having consulted officials, both in the Department of the Senate and in DPS, it is the view that that committee, which has a specific mandate regarding information technology in its terms of reference, is the appropriate place to discuss matters that should not be drawn to public attention or exposed to public.”
In earlier remarks, Ryan said public sector networks were targeted across a four-day period in October.
“During this period, the investment that DPS made in cybersecurity has paid dividends,” Ryan said.
“Our cybersecurity operation centre was able to leverage information from partners to be well prepared in advance of the campaign, and protective controls in place, blocked many attempts to inject malware into the environment.”
The attackers also went after parliamentary staff on their personal email addresses in an attempt to gain access to the parliamentary network.
“I’m pleased to report that there was a high degree of co-operation by users during this period, combined with the maturing cybersecurity defences that have been put in place. They both ensured that the parliamentary environment was protected from this attack,” the Senate President said.
“This is one example of many cases on a daily basis where parliament is targeted by malicious actors.”
The parliamentary network and Australia’s political parties were not successfully defended during an attack in February 2019.
For eight days, the attacker described as a state actor was able to remain on the network.
“While I do not propose to discuss operational security matters in detail, I can state that a small number of users visited a legitimate external website that had been compromised,” Ryan said at the time.
“This caused malware to be injected into the Parliamentary Computing Network.”
The incident highlighted the awful password practices present with Australia’s parliament.
Parliament House hack report reveals poor password practices
It took eight days to flush February’s cyber attackers from Australia’s parliamentary network. A procedure to authenticate staff asking to reset their boss’ passwords only came another week later.
Ransomware infection takes some police car laptops offline in Georgia
Ransomware infection impacted police car laptops for the Georgia State Patrol, Georgia Capitol Police, and the Georgia Motor Carrier Compliance Division.
Department of Parliamentary Services says February attack was ‘detected early’
The department admitted it has work to do on fighting external threats.
Australian government computing network reset following security ‘incident’
Department of Parliamentary Services says there is no evidence to suggest data has been taken or accessed, or that the incident is part of a plan to influence electoral processes.
Cybercriminals flooding the web with coronavirus-themed spam and malware (TechRepublic)
Hackers have expanded their exploitation of the outbreak fears with hundreds of scams and operations.
View full post on National Cyber Security
In today’s ever-shifting market, we recognize that you need to be constantly adapting, and Akamai provides a way to enhance your customers’ experiences through our unique expertise, helping you unlock the value of Akamai’s products and services.
Professional Services’ primary mission is to drive customer success and growth. In order to achieve that, Akamai’s Global Services and Support team rationalized the Web Performance and Media Services portfolio that bundles Advisory, Professional Services and Support to focus on value confirmation that is differentiated at each level of service.
As industry experts and trusted advisors, we can help our customers scale, meeting their needs by offering everything from break-fix support to implementation services, to maintaining and optimizing their Akamai products to assisting in addressing their specific business goals through the adoption of Akamai solutions.
The new Premium 3.0 Services and Support provides a high-touch engagement and access to aligned support professionals with extensive knowledge and understanding of all Akamai solutions. This service enables media configuration optimization through best-practices and regular validation of product value to improve viewer experience. As part of its capabilities, Premium 3.0 includes a catalog of Technical Business Assessment with tools such as Ingest Readiness, Reduced Rebuffering and Media Distribution Optimization, all this to ensure that the different aspects of media distribution are set up and configured correctly.
To learn more about professional services, please visit our website: https://www.akamai.com/us/en/services/
*** This is a Security Bloggers Network syndicated blog from The Akamai Blog authored by Nancy Carvajal. Read the original post at: http://feedproxy.google.com/~r/TheAkamaiBlog/~3/MEV-MF3Sx1M/march-2020—professional-services-and-the-media-industry.html
View full post on National Cyber Security
#cybersecurity | #hackerspace | WhiteHat Provides Free Vulnerability Discovery Services to Gov’t Agencies
As part of an effort to help chronically underfunded government agencies combat state-sponsored cyberattacks, WhiteHat Security, a unit of NTT, has decided to offer free of charge two services it provides for discovering vulnerabilities before and after application code is deployed to federal, state and municipal agencies in North America.
Company CEO Craig Hinkley said the decision to make WhiteHat Sentinel Dynamic and Sentinel Source Essentials Edition available for free to government agencies is motivated by civic duty. A native of Australia, Hinkley moved to the U.S. 23 years ago and last year became a U.S. citizen. State-sponsored attacks against election systems are nothing less than an attack on democracy, he said.
Citing data compiled by the Center for Strategic & International Studies, recent examples of state-sponsored cyberattacks against applications and websites included are of increasing concern, with recent examples include the theft of login credentials from government agencies in 22 countries across Asia, Europe and North America and hacking campaign that kicked more than 2,000 websites offline in Georgia.
At the same time, North Dakota officials this week disclosed cyberattacks aimed at the state government nearly tripled last year. Shawn Riley, North Dakota’s chief information officer and head of the Information Technology department, disclosed there were more than 15 million cyberattacks against the state’s government per month in 2019, a 300% increase year over year.
The Texas Department of Information Resources revealed it has seen as many as 10,000 attempted attacks per minute from Iran over a 48-hour period on state agency networks, while the U.S. Coast Guard (USCG) issued a security bulletin after revealing that one of its bases had been knocked offline last month by a Ryuk ransomware attack. Even small school districts are being impacted by cybersecurity: Richmond, Michigan, a small city near Detroit, recently announced that students would be enjoying a few extra days of holiday break this year while its school system recovered from a ransomware attack.
A recent report published by Emisoft, a provider of endpoint security software, estimates attacks against roughly 966 government agencies, educational institutions and healthcare providers created costs in excess of $7.5 billion.
Clearly, a lot of focus on cybersecurity attacks is on state and local governments that are responsible for ensuring the integrity of elections. Just this week, a bipartisan bill was proposed calling for the director of the Cybersecurity and Infrastructure Security Agency to appoint a cybersecurity state coordinator in each U.S. state.
Hinkley said it’s apparent government agencies don’t have the resources required to thwart attacks being launched by states themselves or rogue organized groups acting to advance their interests. By making available cybersecurity vulnerability assessment services for free, WhiteHat Security is moving to help agencies identify vulnerabilities in websites and applications that could be easily exploited, he said.
Making that capability available as a service should make it easier for both application developers and cybersecurity teams to scan for vulnerabilities before and after an application is deployed. It may even help foster the adoption of best DevSecOps practices within government agencies, Hinkley noted.
State-sponsored cybersecurity attacks have become a global issue. Concerns about such attacks have risen sharply as tensions in the Middle East continue to rise. The challenge now is how best to thwart those attacks before they are launched by eliminating as many existing vulnerabilities as possible.
View full post on National Cyber Security
Source: National Cyber Security – Produced By Gregory Evans A Loft Orbital satellite. Photo: Loft Orbital Startup Loft Orbital wants to shake up space with technology standardization. Their proprietary Payload Hub technology is a universal payload adapter that can fly any payload on a standard satellite bus. The company, which is in its infancy, received […] View full post on AmIHackerProof.com
Source: National Cyber Security – Produced By Gregory Evans by Dan Kobialka • Jan 14, 2020 WatchGuard Technologies, a network security hardware and services provider, now offers automated monthly billing for its WatchGuardONE FlexPay program, according to a prepared statement. That way, WatchGuardONE partners can purchase WatchGuard Subscriptions from participating distributors without upfront costs or […] View full post on AmIHackerProof.com
(Eds: Disclaimer: The following press release comes to you under an arrangement with PR Newswire. PTI takes no editorial responsibility for the same.)
As a partner of AWS, Fractal is co-presenting with Office Depot at NRF 2020 Vision
MUMBAI, Jan. 13, 2020 /PRNewswire/ — Fractal (https://fractal.ai), a global leader in artificial intelligence and analytics, powering decision-making in Fortune 100 companies, announced today that they are a Certified Retail Competency Partner of Amazon Web Services (AWS). As an AWS Certified Retail Competency Partner, Fractal will co-present with Office Depot at the National Retail Federation’s (NRF) 2020 vision event, taking place at the Javits Center in New York City, January 11-14.
Fractal and Office Depot will jointly present on retail technologies enabling customer centricity and growth, using AI and Machine Learning solutions to help retailers make decisions around customer segmentation, next best action, customer churn and more, giving attendees a closer look at the company’s latest innovations.
The AWS Retail Competency status differentiates Fractal as an AWS Partner Network (APN) member that delivers highly specialized technical proficiency with deep AWS expertise, and delivers solutions seamlessly on AWS. AWS Retail Competency Partners undergo rigorous validation by AWS to ensure alignment to AWS’ best practices for building the most secure, resilient and highest-performing cloud infrastructure for industry applications, giving customers increased confidence when making decisions.
“Fractal has been focused on transforming the retail business for some time now. We are thrilled to be recognized as a Retail Competency Partner by Amazon Web Services,” said Amitabh Bose, Chief Practice Officer at Fractal. “AWS is the market leader in cloud computing platforms and well penetrated in the retail sector. This acknowledgment and our strategic partnership with AWS will help us drive significant value for our retail clients by solving their business problems at scale.”
Fractal offers a wide range of retail-focused solutions in areas including personalization, marketing effectiveness, supply chain, promotions optimization, shrink management, and more, which can be deployed either on-premise or through deployed cloud systems. With these solutions, Fractal has helped deliver successful top-line and bottom-line impact for various Fortune-100 retailers.
Fractal is one of the most prominent players in the Artificial Intelligence space. Fractal’s mission is to power every human decision in the enterprise and uses the power of AI to help the world’s most admired Fortune 100 companies.
Fractal’s products include Qure.ai to assist radiologists in making better diagnostic decisions, Cuddle.ai to assists CEOs, and senior executives make better tactical and strategic decisions, Theremin.ai to improve investment decisions and Eugenie.ai to find anomalies in high-velocity data.
Fractal has consistently been rated as India’s best companies to work for by The Great Place to Work® Institute. Fractal has been featured as a leader in the Customer Analytics Service Providers Wave 2019 by Forrester Research and recognized as an “Honorable Vendor” in 2019 magic quadrant for data & analytics by Gartner.
For more information: www.fractal.ai
View full post on National Cyber Security
Source: National Cyber Security – Produced By Gregory Evans For years we’ve been talking about the skills shortage that plagues the cybersecurity industry and which some reports now peg at three million and growing. Organizations lack trained, experienced resources in many areas including expertise in management and monitoring of the infrastructure protecting an environment, incident […] View full post on AmIHackerProof.com
Source: National Cyber Security – Produced By Gregory Evans by Joe Panettieri • Dec 20, 2019 Each business day, MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across that managed security services provider ecosystem. The Content: Written for MSSPs, SOC as a Service (SOCaaS), Managed Detection and Response (MDR) and MSP security […] View full post on AmIHackerProof.com