The Economic Value of DNS Security

| July 7, 2019

article image
New stories of widescale cybersecurity hacks, crimes and vulnerabilities seem to pop up on a daily basis. The constant stream of adverse cyber events has unfortunately caused many small businesses and consumers to live with a dread of inevitability — no matter what they do to protect themselves, they are destined to be hit by a cyber-attack.

Spotlight

LORCA Cyber

The London Office for Rapid Cybersecurity Advancement (LORCA) supports the most promising cybersecurity innovators in scaling solutions to meet industry’s biggest challenges, while building the UK’s international cybersecurity profile. We do this by delivering bespoke programmes and convening cybersecurity innovators, investors, academics, industry experts, sister programmes and the international community.

OTHER ARTICLES

How Is Covid-19 Creating Data Breaches?

Article | March 30, 2020

Trevor is working from home for the first time. He loves the freedom and flexibility, but doesn’t read his company’s new BYOD policy. Sadly, he misses the fact that his home PC is not protected with updated security software nor the latest operating system patches. Kelcie’s home PC is faster than the old work laptop that she’s been issued to use during the pandemic. She decides to use a USB stick to transfer large files back and forth between her PCs to speed things up. After a few days, she does all her work on her home PC, using a “safe” virtual desktop app. But unbeknownst to her, there is a keylogger on her home PC.

Read More

Security by Sector: Medical IoT Gets Much Needed Dose of Cybersecurity

Article | March 30, 2020

The subject of how information security impacts different industry sectors is an intriguing one. For example, how does the finance industry fare in terms of information security compared to the health sector, or the entertainment business? Are there some sectors that face greater cyber-threats and risks than others? Do some do a better job of keeping data secure, and if so, how and why? Information security risks and challenges in the healthcare industry are well documented and much maligned. There are several reasons why the healthcare sector is particularly vulnerable, but one of the chief causations is the high amount of connected yet insecure devices commonly used within hospitals, clinics and medical centers. For example, a report from researchers at healthcare cybersecurity company CyberMDX discovered that connected medical devices are twice as likely to be vulnerable to the BlueKeep exploit compared to other devices on hospital networks.

Read More

Ryuk: Defending Against This Increasingly Busy Ransomware Family

Article | March 30, 2020

On December 16, 2019, the U.S. Coast Guard disclosed a security incident at a facility regulated by the Maritime Transportation Security Act (MTSA). Forensic analysis suggests that the incident might have begun when an employee clicked on a link embedded in a phishing email.This action enabled a threat actor to set Ryuk ransomware loose on the facility’s network. Ultimately, the infection spread to all IT network files, leading Ryuk to disrupt the corporate IT network and prevent critical process control monitoring systems from functioning properly. Phishing is one of the primary infection vectors for most ransomware families, but there’s an interesting twist with this particular family. As noted by Malwarebytes, a typical Ryuk attack begins when a user opens a weaponized Microsoft Office document attached to a phishing email. Opening the document causes a malicious macro to execute a PowerShell command that attempts to download the banking trojan Emotet. This has the ability to download additional malware onto an infected machine that retrieves and executes Trickbot.

Read More

Data Privacy Problem: Are Home Genealogy Kits a Security Threat?

Article | March 30, 2020

Surprising news recently emerged from the personal genetics business. The two leading direct-to-consumer companies in North America, 23andMe and Ancestry.com, announced within a week of each other that they were laying off a significant proportion of their workforce as a result of a steep drop in sales. This past Christmas, the sales of testing kits were expected to take a sharp hike — nothing says family like a gift that says prove it. But sales plummeted instead. According to Second Measure, a company that analyzes website sales, 23andMe’s business plummeted 54 per cent and Ancestry kits sales declined 38 per cent. Industry executives, market watchers and genealogists have all speculated about the causes of the drop in consumer interest. Market saturation? Early adopters tapped out? Limited usefulness? Recession fears? Whatever the theory, everyone seems to agree on one factor: privacy concerns.

Read More

Spotlight

LORCA Cyber

The London Office for Rapid Cybersecurity Advancement (LORCA) supports the most promising cybersecurity innovators in scaling solutions to meet industry’s biggest challenges, while building the UK’s international cybersecurity profile. We do this by delivering bespoke programmes and convening cybersecurity innovators, investors, academics, industry experts, sister programmes and the international community.

Events