background preloader

Cyber Security

Facebook Twitter

Trust as a Service

Noteworthy Cyber Security Statistics - CyberArk. Securing privileged accounts and credentials must be at the top of the enterprise security agenda, and we’ve previously highlighted five top reasons why on CyberArk’s blog.

Noteworthy Cyber Security Statistics - CyberArk

With the launch of a new year, it’s a good time to be mindful of the lessons learned in 2016. The cyber security industry is chock-full of reports and surveys that continually provide new insights and stats. Cybersecurity Archives - Broader Perspectives. Google Online Security Blog: Project Wycheproof. Posted by Daniel Bleichenbacher, Security Engineer and Thai Duong, Security Engineer We’re excited to announce the release of Project Wycheproof, a set of security tests that check cryptographic software libraries for known weaknesses.

Google Online Security Blog: Project Wycheproof

We’ve developed over 80 test cases which have uncovered more than 40 security bugs (some tests or bugs are not open sourced today, as they are being fixed by vendors). For example, we found that we could recover the private key of widely-used DSA and ECDHC implementations. We also provide ready-to-use tools to check Java Cryptography Architecture providers such as Bouncy Castle and the default providers in OpenJDK. FortiGuard Services Application Control. Improve security and meet compliance with easy enforcement of your acceptable use policy through unmatched, real-time visibility into the applications your users are running.

FortiGuard Services Application Control

With FortiGuard Application Control, you can quickly create policies to allow, deny, or restrict access to applications or entire categories of applications. Application Control is available as part of the NGFW service through the FortiGate next generation firewall and is a part of why Fortinet tied for the highest overall security effectiveness at 99.97% in the 2016 NGFW security tests from NSS Labs.

Insurance

Index. Secure Trading hires reformed hacktivist to consult on blockchain p... SQLCipher - Zetetic. SQLCipher has a small footprint and great performance so it’s ideal for protecting embedded application databases and is well suited for mobile development.

SQLCipher - Zetetic

Blazing fast performance with as little as 5-15% overhead for encryption 100% of data in the database file is encrypted Uses good security practices (CBC mode, key derivation) Zero-configuration and application level cryptography Algorithms provided by the peer reviewed OpenSSL crypto library. Cyber-security Information Sharing Partnership (CiSP) - NCSC Site. Already a member?

Cyber-security Information Sharing Partnership (CiSP) - NCSC Site

Sign in Not yet a member? Cyber Essentials - OFFICIAL SITE. The Cyber Essentials scheme provides businesses small and large with clarity on good basic cyber security practice.

Cyber Essentials - OFFICIAL SITE

By focusing on basic cyber hygiene, your company will be better protected from the most common cyber threats. Cyber Essentials is for all organisations, of all sizes, and in all sectors - we encourage all to adopt the requirements as appropriate to their business. This is not limited to companies in the private sector, but is also applicable to universities, charities, and public sector organisations. Cyber Essentials is mandatory for central government contracts advertised after 1 October 2014 which involve handling personal information and providing certain ICT products and services. NCSC Site. VocaLink Connect - VocaLink triumphs at the Cyber Security Awards.

VocaLink's campaign, which was launched to raise employee awareness of the various forms of cyber threats that the company is exposed to on a daily basis, was celebrated for its pioneering approach to cyber security.

VocaLink Connect - VocaLink triumphs at the Cyber Security Awards

VocaLink was shortlisted alongside a number of companies, before winning the coveted award, in a highly competitive category. IBM Watson Brings AI Wonders to Cybersecurity. After dominating its human competitors on the television gameshow Jeopardy!

IBM Watson Brings AI Wonders to Cybersecurity

, IBM’s artificial intelligence platform Watson began dabbling with healthcare, pharmaceuticals, finance, education—even cooking. Now the machine is dipping its (robot) toes into the cybersecurity business. Ginni Rometty, CEO of IBM ibm , will introduce a cybersecurity-specific version of Watson at an IBM computer security summit on Tuesday, the company said. The project, powered by IBM’s Bluemix cloud computing platform, includes a partnership between IBM and eight universities that begins in the fall.

Some of the schools include the Massachusetts Institute of Technology, New York University, and Pennsylvania State University. Dropbox hack 'affected 68 million users' Image copyright dropbox A Dropbox security breach in 2012 has affected more than 68 million account holders, according to security experts.

Dropbox hack 'affected 68 million users'

Last week, Dropbox reset all passwords that had remained unchanged since mid-2012 "as a preventive measure". In 2012, Dropbox had said hacks on "other websites" had affected customers who used their Dropbox password on other sites too. Secure Content Delivery, DDOS and WAF Service. Online rental fraud rising steeply. Google. Second bank cyber-attack detected by Swift after Bangladesh raid. Image copyright Thinkstock A cyber-attack, similar to one that saw $81m (£56m) stolen from Bangladesh's central bank, has hit a second bank.

Second bank cyber-attack detected by Swift after Bangladesh raid

The warning about the second attack came from Swift, which oversees the financial messaging network that underpins global money transfers. Swift said the target was a commercial bank but did not name the organisation or reveal if any cash had been taken. The attack used techniques and tools resembling those used to steal cash from Bangladesh in February, it said. Swift is used by about 11,000 financial institutions around the world to move large amounts of cash.

The attackers had a "deep and sophisticated knowledge of specific operational controls" at the targeted bank, and could have been aided in their theft by "malicious insiders", said Swift. In both attacks the thieves sought to submit fraudulent messages to the Swift network to transfer large amounts of cash to accounts they controlled. Security snapshot reveals massive personal data loss. Image copyright Reuters More than 500 million digital identities were stolen or exposed in 2015, suggests a report from security firm Symantec. In addition, it said, fake technical support scams rose by 200% and crypto-based ransomware attacks grew by 35%. Hackers also made more use of unknown software bugs to make sure attacks work, said the annual threat report. It said the gangs behind the attacks had become more professional and now resembled legitimate software firms. "They have extensive resources and highly skilled technical staff that operate with such efficiency that they maintain normal business hours and even take the weekends and holidays off," said Kevin Haley, director of Symantec security response in a statement.