Australia's Commonwealth Games blocked 176,000 pieces of malware

iTnews | March 18, 2019

Australia's Commonwealth Games blocked 176,000 pieces of malware
Security overseers at last year’s Commonwealth Games on the Gold Coast blocked 40,000 command-and-control connection attempts and identified 39,000 distinct pieces of malware in the fortnight the Games ran. The numbers were revealed by Glenn Maiden, a national security officer at Cisco A/NZ, on the sidelines of the annual Cisco Live! event in Melbourne last week. Maiden - whose background traverses cyber security roles at Defence, Lockheed Martin and the ATO - said Cisco had assumed a security role at the Games through its supply of network infrastructure in partnership with Optus. It also wound up having a say on cybersecurity by involving Doug Dexter, a Cisco advisor that worked on network security at the Rio Olympics and other major events, in the Games preparations. With a year almost passed since the Games ended, Cisco revealed some of the numbers it saw on its network setup for the event. “We served up just under 400 million DNS requests over the two week period, but of that 400 [million], there was about 176,000 pieces of malware that we blocked,” Maiden said.

Spotlight

Despite headline-grabbing data breaches that have proven costly to organizations in many sectors, the purchase of cyberinsurance to cover potential costs remains relatively rare. Cyber-insurance policies vary widely, but they often cover notification expenses, credit-monitoring services, and, in many cases, legal defense costs and even government penalties. “Cyber-insurance is viewed as much more of a discretionary purchase, and risk managers really have to be educated on the need to purchase the coverage and what the coverage actually provides,” says David Bradford, who published a 2012 survey that addresses cyber-insurance for RIMS, the risk information management society.

Spotlight

Despite headline-grabbing data breaches that have proven costly to organizations in many sectors, the purchase of cyberinsurance to cover potential costs remains relatively rare. Cyber-insurance policies vary widely, but they often cover notification expenses, credit-monitoring services, and, in many cases, legal defense costs and even government penalties. “Cyber-insurance is viewed as much more of a discretionary purchase, and risk managers really have to be educated on the need to purchase the coverage and what the coverage actually provides,” says David Bradford, who published a 2012 survey that addresses cyber-insurance for RIMS, the risk information management society.

Related News
DATA SECURITY

NPCore forms global partnership with Viet Cyber Security towards expansion into SE Asian IT security market

NPCore | November 26, 2021

NPCore, a joint venture member of Born2Global Centre, has its sights set on a greater share of the IT security market in Southeast Asia, recently joining forces with Vietnamese IT security service provider Viet Cyber Security. Together, the two companies set up NPCore Vietnam Joint Stock Company, a joint venture which will see them coordinate efforts in the IT security industry. NPCore is an AI-based new variant malware (APT) response solution provider offering optimal security solutions. NPCore has provided cyber security solutions and since 2021, it has participated in a project for supporting overseas expansion of D.N.A (Data, Network, AI) convergence products led by Born2Global Centre. The joint enterprise will see the two partners collaborate in technology and, more importantly, concerted sales and marketing activities in the Southeast Asian IT security market. The goal is to lay the foundation for a stable supply of IT security services in local markets to obtain market trust and continue expanding the business at an increasing pace. NPCore has confirmed that it is ready to aggressively engage Viet Cyber Security's local networks and customers towards expanding its market presence. NPCore's solution (Zombie Zero) can defend against any path through which malicious code can flow from the network to the endpoint. It currently holds 12 patents as well as the International Common Criteria (CC) certification for its proprietary security technologies and has more than 100 global references. "The local joint enterprise was established in Vietnam as it is a market with active investment taking place in national security, corporate IT security, and other fields. It will be a local platform for entry into the Southeast Asian markets Vietnam included and will put us on the map as an IT security service provider in the region." NPCore CEO Han Seung-cheol Furthermore, the joint venture between NPCore and Viet Cyber Security was established as part of the Born2Global Centre's partnership program. Through its support of DNA-convergence products and services, Born2Global Centre serves as a launchpad for innovative startups to enter global markets. Born2Global Centre provides startups with different levels of consulting services, from partnership exploration & creation to business establishment, operations, joint R&D projects, and market expansion.

Read More

ENTERPRISE SECURITY

McAfee Enterprise Named a Worldwide Leader in IDC MarketScape for Cloud Security Gateways

McAfee Enterprise | November 25, 2021

McAfee Enterprise and FireEye today announced that the company has been named as a leader in the IDC MarketScape: Worldwide Cloud Security Gateways 2021 Vendor Assessment (doc #US48334521, November 2021) for its MVISION Cloud technology, which is part of its MVISION Unified Cloud Edge (UCE) portfolio. McAfee Enterprise received this distinction based on its robust cloud registry and analytics, data loss prevention (DLP) and threat detection capabilities. The IDC MarketScape defines a cloud security gateway (CSG) as a security enforcement point that monitors cloud application usage by organizations to provide discovery, monitoring, and protection. CSGs incorporate multiple security controls, including policy enforcement, threat detection, data loss prevention and user behavior analysis. Typical use cases for CSGs are data protection, shadow IT discovery, visibility and control of unmanaged devices, threat protection, compliance and security operations in infrastructure as-a-service (IaaS) environments. According to the report, “McAfee Enterprise has a strong ecosystem of security solutions, including Secure Web Gateway, CSG and endpoint security that it can integrate to enable customers in their data loss prevention, User Behavior Analytics, XDR and threat prevention goals. McAfee has focused on providing robust protection and DLP, with the scale and speed necessary to support large user bases." “We believe this recognition is yet another validation of McAfee Enterprise’s cloud-native approach to helping businesses overcome the security challenges of adopting a multi-cloud or hybrid-cloud environment,MVISION Cloud aims to transform the way IT security is deployed and managed. Together with McAfee Enterprise’s next-generation secure web gateway and MVISION Private Access products, it delivers the industry's most comprehensive security services edge solution—the security element of the Secure Access Service Edge framework.” Anand Ramanathan, Senior Vice President of Product Management, McAfee Enterprise and FireEye Additional resources: MVISION Unified Cloud Edge McAfee Enterprise and FireEye blog About IDC MarketScape IDC MarketScape vendor assessment model (idc.com) is designed to provide an overview of the competitive fitness of ICT (information and communications technology) suppliers in a given market. The research methodology utilizes a rigorous scoring methodology based on both qualitative and quantitative criteria that results in a single graphical illustration of each vendor’s position within a given market. IDC MarketScape provides a clear framework in which the product and service offerings, capabilities and strategies, and current and future market success factors of IT and telecommunications vendors can be meaningfully compared. The framework also provides technology buyers with a 360-degree assessment of the strengths and weaknesses of current and prospective vendors. About McAfee Enterprise and FireEye McAfee Enterprise and FireEye combined in October 2021, bringing together their portfolios and expert teams to create a market-leading security company. With proven technology and unrivaled experience, the company serves more than 40,000 enterprise, commercial, and government customers worldwide. The new company blends innovative technology, intelligence, and automation to help solve the most complex cybersecurity problems for its customers.

Read More

DATA SECURITY

BitSight and Marsh McLennan Collaborate to Bolster Organizations' Cybersecurity Performance

BitSight | November 24, 2021

Exclusive Networks, a global trusted cybersecurity specialist for digital infrastructure, today announced its worldwide distribution agreement with Infinipoint, a provider of a pioneering Device-Identity-as-a-Service (DIaaS) security solution that uniquely enables the critical device pillar of the zero-trust cybersecurity approach. Focusing on mid-market aligned partners – initially in Europe covering France, Germany, and the UK with a view to extending across global territories from early 2022 – Exclusive will be supporting Infinipoint growth targets both through net new opportunities and by capitalising on technology integrations (i.e., SASE, MFA, ZTNA, etc.) and alliances from within its vendor portfolio. Commenting on the announcement, Andy Travers, EVP Worldwide sales & Marketing at Exclusive Networks said, "Of the seven pillars propping up the concept of zero-trust architecture (ZTA), partners have struggled most to position a strong story around zero-trust for device access because specialist solutions simply haven't existed. That's all changed with Infinipoint and DIaaS. Enterprises know that implementing the zero-trust for devices piece right is essential – and with Infinipoint we're breaking down that barrier. It's a great solution and fits perfectly into our cyber ecosystem. DIaaS also naturally supports a multitude of consumption models which makes it readymade for scaling out globally via our X-OD on-demand platform." Launched in July this year, DIaaS has been gaining significant market traction. Exclusive will build on this demand to accelerate and scale globally through its specialist go-to-market services and ecosystem of over 18,000 channel partners. Ariel Kriger, Global VP, Sales & Business Development at Infinipoint said, "Infinipoint is pioneering the Device-Identity-as-a-Service security category and is the first and only solution to provide Single Sign-On (SSO) authorisation integrated with risk-based policies and self-service one-click remediation for non-compliant and vulnerable devices. "Exclusive Networks was the natural choice to support our market acceleration, possessing the necessary specialist cyber expertise and global scale to enthuse, educate and serve pent-up partner demand for this gap in the zero-trust market. Extending a zero-trust security posture to devices remains an essential and urgent requirement for every work-from-anywhere workforce. And to do it properly you have to do it by design, with adaptive access controls acting on device context, continuously checking device posture not just at the point of access – all the while not burdening the IT department or negatively impacting end user productivity. None of this is easy to do, but we've done it and now partners, and their customers can reap the benefit." About Exclusive Networks Exclusive Networks is a global trusted cybersecurity specialist for digital infrastructure helping to drive the transition to a totally trusted digital future for all people and organisations. Our distinctive approach to distribution gives partners more opportunity and more customer relevance. Our specialism is their strength – equipping them to capitalise on rapidly evolving technologies and transformative business models. The Exclusive Networks story is a global one with a services-first ideology at its core, harnessing innovation and disruption to deliver partner value. With offices in 40 countries and the ability to service customers in over 150 countries across five continents, Exclusive Networks has a unique 'local sale, global scale' model, combining the extreme focus and value of local independents with the scale and service delivery of a single worldwide distribution powerhouse. About Infinipoint Infinipoint is a pioneer in the Device-Identity-as-as-Service security category to extend a true zero-trust security posture to devices. Infinipoint is the only solution that provides Single Sign-On (SSO) authorization integrated with risk-based policies and one-click remediation for non-compliant and vulnerable devices. This reduces risk by protecting access to an organization's data and services while transforming devices to support a world-class security posture. Infinipoint is able to do all this in a productive way that maintains business continuity with no disruption to the workforce.

Read More