Connect with us

News

CYBERTHREATS INCREASING BUT SHIFTING, WITH RANSOMWARE ATTACKS DOWN 17 PERCENT

Published

on

Schaumburg, IL, USA (5 June 2018) —2017 was widely billed as the year of ransomware, but cyberthreats have moved in a new direction this year, according to ISACA’s State of Cybersecurity 2018 research.

Results show that 50 percent of the 2,366 security leaders surveyed have seen an increase in cyberattack volumes relative to last year. In addition, 80 percent of respondents said they are likely or very likely to be attacked this year—a statistic that remains unchanged from last year’s study.

But despite an increase in cyberattacks generally, ransomware attacks are significantly declining. Last year, 62 percent of respondents experienced a ransomware attack, compared to 45 percent this year—a 17-point drop. This is likely because organizations are significantly better prepared after last year’s WannaCry and NotPetya attacks. Eighty-two percent of respondents said that their enterprises now have ransomware strategies in place and 78 percent said they have a formal process—up 25-points from last year.

While these findings are positive, the data show that ransomware attacks may have been displaced by cryptocurrency mining, which is becoming more frequent. Cryptocurrency mining malware can operate without direct access to the file system, making them harder to detect—and as the prices of cryptocurrencies increase, the economics of cryptocurrency mining malware becomes better for the attacker.

Additionally, the three most common attack vectors remain unchanged from last year: phishing, malware and social engineering.

Active Defense Strategies Are Highly Effective, But Underutilized 
ISACA’s research also found that nearly 4 out of 10 respondents (39 percent) are not at all familiar or only slightly familiar with active defense strategies (e.g., honeypots and sinkholes). Of those who are familiar with active defense strategies, just over half are actually using them.

“This is a missed opportunity for security leaders and their organizations,” said Frank Downs, director of cybersecurity at ISACA. “ISACA’s research indicates that active defense strategies are one of the most effective countermeasures to cyberattacks. A full 87 percent of those who use them indicate that they were successful.”

Recommendations
The ISACA report suggests enterprises must be better prepared with focused attention on several areas, including:

  • Investing in talent—With attacks still on the rise, enterprises must continue to invest in finding, retaining and training skilled cyber security professionals.
  • Exploring further automation benefits—Enterprises should consider automation-driven strategies and tools for detection and to support recovery and response efforts.
  • Ensuring appropriate investment in security controls—With attack vectors (phishing, malware and social engineering) minimally changing, existing control types are still valid and useful. Enterprise investment and attention to security controls should increase in line with the frequency of these attack vectors.

Parts 1 and 2 of ISACA’s State of Cybersecurity Study can be downloaded free of charge at www.cybersecurity.isaca.org/state-of-cybersecurity.

 

 

 

 

Source: ISACA

Continue Reading
Click to comment

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Innovations

INNOVATION HUB: EDO YOUTHS HAIL OSINBAJO, OBASEKI FOR FACILITIES, TRAINING

Published

on

By

Youths in Edo State have hailed Governor Godwin Obaseki and the Vice President, Prof. Yemi Osinbajo for the initiative in setting up the South-South Innovation Hub and Edo Innovates, the two facilities launched recently at the Institute of Continuing Education (ICE), in Benin City, as a platform for youths to get trained and proffer digital solutions to everyday problem.

Cross section of youths at one of the labs in Edo Innovates, which houses the South South Innovation Hub, at Institute of Continuing Education (ICE), Benin City, Edo State, during the launch of the hub by Vice President, Prof. Yemi Osinbajo.

Recall that the Vice President during his two-day visit to the state, launched the South-South Innovation Hub and performed groundbreaking of the 1800-Emotan Gardens project.

A number of the youths at the launch expressed appreciation to the governor and the Vice President for setting up the hub, noting that it was gratifying to know that youths in the state would now have equal opportunity as their colleagues elsewhere to get trained and be engaged in a vibrant digital ecosystem that is supported by the state and federal government.

Mr. Sunday Olufemi, from Akoko Edo Local Government Area of the state, said that he was most excited about the one-stop shop for Micro, Small and Medium Enterprises (MSME) clinic, where young people can now have access to relevant federal government agencies to ease business registration, product certification, and access to finance and mentoring.

According to him, “I can confidently say that this is the best thing to have happened to youths in Edo State. Now, we no longer have to go to Lagos before we get training to become full-fledged start-ups. The expertise and support structures are now available for us in Edo State.”

Mr. Fred Omoregie, an undergraduate at the University of Benin (UNIBEN), said the hub is a dream come true to many tech-savvy young residents in the state, noting that they now have a viable, well-structured facility to express themselves.

He said, “I believe this will revolutionalise this state. Young people have been looking for where to express themselves for years but didn’t have such a facility that can give them a sense of direction. With this, Engineering, Computer Science graduates and others from different disciplines can now have a go at tech solutions to problems.”

 

 

 

Source:  Vanguard

Continue Reading

Business

5 COMMON MISTAKES TO AVOID WHEN CHOOSING A WEB HOSTING SERVICE

Published

on

By

If you are relatively new to the world of web hosting, you will be bombarded by advices and tips once you start looking into ways to host your brand new website (or indeed, even when you are at the planning stage or trying to find out whether you actually need a website or should simply go to a website builder). This article will hopefully help you avoid making them.

1. Using a free hosting service
A free hosting service might be useful if you are running your blog/website as a hobby or a community group. It will likely come with banners and pop-up ads though and search engines tend not to like websites hosted on free services. Note that there are good free web hosting services too but it is a very tough market to survive.

They are notoriously unreliable when it comes to speed, uptime and availability and because you haven’t paid for anything, don’t expect any compensation if they disappear or suffer from downtime.

Expect support to be minimal with no advanced features like free databases. You also risk losing credibility, particularly if you are hosted on a domain name like yourbusiness.get-free-hosting.com, rather than using a genuine domain name (although, some free web hosting providers do allow you to park your domain).

The bottom line is you usually get what you paid for and if you paid nothing then don’t expect much. And web hosting doesn’t have to be expensive. We even compiled a list of the best cheap web hosting services here.

2. Choosing a web hosting package with no refund guarantee
Some web hosting companies do not provide a refund guarantee for their starter packages. Choose one that offers a money back guarantee in case you select the wrong package.

A good hosting company will gladly refund you or move you onto a new package that suits your needs. After all, it is in their interests to make sure that you are a happy customer even if you leave them as you may well come back in the future should your circumstances change.

3. Choosing a shared web hosting package when you need a VPS, or vice versa.
The two main types of web hosting packages you can select are shared or VPS. If your website is small and straightforward, shared hosting is the one for you. A Virtual Private Server is only required for websites with high traffic. If your small website grows in the future, you can always switch over to VPS or dedicated hosting, in the meantime save your hard-earned money with some shared hosting.

4. Buying based solely on price
There are two different ways you could go with this:
1. Assume all web hosting is the same, so buy the cheapest you can find
2. Assume the best hosting packages cost more, so go for a higher priced package in the hope of getting better quality hosting.

Hosting is a commodity, so it’s tempting to go for the cheapest plan available, on the other hand you might be tempted by some of the marketing jargon used to up-sell more expensive packages.

In a very competitive market, price cuts and special offers will often be used to win customers, so don’t pay more than you need to and keep your eyes open for discount codes. The saying “you get what you pay for” doesn’t necessarily apply to paid web hosting, as a cheap package will quite often be perfectly adequate for a start-up website or personal blog.

Keep in mind that the price you see advertised is a monthly price. When you get to the checkout that figure will be multiplied by 12 months and have VAT added on top. This is standard industry practice and most hosts will advertise pricing this way. You may also get a discount for going for longer periods (annual or bi-annual).

5. Not knowing your limitations
You will come across terms like “unlimited” and “free” while searching for shared hosting packages. If it seems too good to be true, it probably is. “Unlimited” bandwidth and storage will have a limit.

Check the terms and conditions to find out more, but restrictions of personal file storage are common, as are rules about certain types of media or streaming. Hosting companies have to implement these restrictions to ensure the smooth running of the service for everyone on a shared server since resources (the electricity the server consumes, the bandwidth used by the server, the hard drives) do cost money.

Ask your web host if you can do the following before signing up for a package: Maintain multiple POP accounts, add statistics to your account, install new software on your own, use a shopping cart on your website

Source: Tech Radar

Continue Reading

Articles

ISACA INSTALLS 2018-2019 BOARD OF DIRECTORS

Published

on

By

Schaumburg, IL, USA (11 June 2018)—ISACA, a global business technology association serving more than 450,000 professionals, installed its 2018-2019 Board of Directors at its Annual General Meeting in Chicago, Saturday 10 June. Rob Clyde was elected to lead ISACA’s board as chair.

“It is an incredible privilege and opportunity to lead this dynamic organization as we help enterprises navigate digital transformation and help individuals transform their careers,” said Clyde. “I am grateful to serve alongside a global professional community that is ensuring the technologies and advancements we embrace are safe, secure, reliable and resilient for both individuals and for enterprises.”

An industry leader within the security and technology space with more than 30 years of experience, Clyde is managing director of Clyde Consulting LLC, which provides board and executive advisory services to cybersecurity software and other companies. In addition to his role as ISACA’s newest chair, Clyde serves as executive chair for White Cloud Security, board director for Titus and executive advisor to HyTrust and BullGuard. He is also a Board Leadership Fellow of the U.S. National Association of Corporate Directors. Prior to his current board and executive advisory work, Clyde served as the chief executive officer of Adaptive Computing, was chief technology officer at Symantec and cofounder of Axent Technologies.

At ISACA, Clyde previously served as board vice chair and director, chaired the board-level ISACA Finance Committee, and served as a member of ISACA’s Strategic Advisory Council, Conference and Education Board and the IT Governance Institute (ITGI) Advisory Panel. He is a frequent speaker at ISACA and other global cyber security, technology and governance conferences. He also serves on the industry advisory council for the Management Information Systems (MIS) Department of Utah State University (USA).

“Rob has served ISACA and our global professional community for many years, and his technical expertise, paired with his business acumen and leadership skills, make him an ideal choice for ISACA board chair,” said ISACA CEO Matt Loeb. “The expanding digital business challenges and risks facing the enterprises and professionals we serve requires innovative thinking, including new expert resources, assessment tools and training solutions. Our 2018-2019 board members are remarkably experienced and dedicated individuals who will contribute to ISACA’s increasing visibility, influence and impact globally.”

Also named to a new leadership role on ISACA’s Board of Directors is Vice-chair Brennan Baybeck, vice president of Global IT Risk Management for Oracle Corp. Baybeck has more than 20 years of experience in IT security, risk, audit and consulting, and has worked in various industries designing, implementing and operating enterprise-wide programs to address global security risks. He has held leadership positions at Sun Microsystems, StorageTek and Qwest Communications.

In total, 13 leaders were installed on the 2018-2019 ISACA Board during the organization’s annual business meeting:

  • Chair Rob Clyde, CISM, managing director of Clyde Consulting LLC
  • Vice Chair Brennan P. Baybeck, CISA, CISM, CRISC, CISSP, vice president of Global IT Risk Management for Oracle Corp.
  • Director Tracey Dedrick, former chief risk officer, Hudson City Bancorp
  • Director Leonard Ong, CISA, CISM, CRISC, CGEIT, CPP, CFE, PMP, CIPM, CIPT, CISSP ISSMP-ISSAP, CSSLP, CITBCM, GCIA, GCIH, GSNA, GCFA, associate director at Merck & Co., Inc.
  • Director R.V. Raghu, CISA, CRISC, director of Versatilist Consulting India Pvt. Ltd.
  • Director Gabriela Reynaga, CISA, CRISC, founder and chief executive officer of Holistics GRC Consultancy
  • Director Gregory Touhill, Brigadier General (ret), USAF, CISM, CISSP, president of Cyxtera Federal Group, Cyxtera Technologies
  • Director Theodore H. Wolff, CISA, head of IT & Security Global Assurance practices in Vanguard’s Global IT & Security Risk and Control group
  • Director Tichaona Zororo, CISA, CISM, CGEIT, CRISC, COBIT 5 Certified Assessor, CIA, CRMA, IT advisory executive with EGIT | Enterprise Governance of IT (Pty) Ltd.
  • Director Matt Loeb, CGEIT, CAE, FASAE, ISACA chief executive officer

Past chairs who remain on the ISACA Board are:

  • Director and Chair (2017-2018) Theresa Grafenstine, CISA, CGEIT, CRISC, CPA, CISSP, CIA, CGMA, CGAP, managing director at Deloitte & Touche LLP
  • Director and Chair (2015-2017) Chris Dimitriadis, Ph.D., CISA, CISM, CRISC, ISO 20000 LA, group director of Information Security for INTRALOT
  • Director and Chair (2014-2015) Robert E Stroud, CGEIT, CRISC, chief product officer at XebiaLabs

The 2018-2019 Board will lead ISACA as it celebrates its 50th anniversary in 2019. Photos and biographies of all board members are available at www.isaca.org/board.

United States and China.

Continue Reading

Subscribe to Blog via Email

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Join 673 other subscribers

Advertisement

Trending

%d bloggers like this: