Tag Archives: lok-it.net

Feb 13

Watch For These Top Security Trends In 2012

Posted on by

As the country and perhaps the world becomes ever much more connected through digital devices, the security challenges and problems will continue to mount. A senior researcher with ICSA Labs stated, “The proliferation of Internet connectivity, mobile devices and Web applications are helping to enrich lives and advance global business opportunity in new meaningful ways. But in this new era of hyper-connectivity, which is compounded by the blurring of lines between our professional and individual lives, it’s everyone’s responsibility to safeguard our on-line activities and interact with technology responsibly to protect our assets, identity and privacy.”

Out of this view, ICSA Labs has provided a list of security threats for 2012 based off of this hyper-connectivity in order for consumers and companies to shield themselves. These threats consist of: Mobile malware on the rise, Cyber criminals utilizing app stores to access information, Risks to online health information, and Merging of mobile and medical devices.

Mobile malware is growing as more and more cyber thief’s work to acquire access of sensitive information via mobile devices. The obvious targets include tablets, smartphones. The Android devices might be most vulnerable due to its large market share and the open platform. The research company predicts that all mobile platforms will most likely suffer from a mobile attack in 2012.
Along with the mobile market being under attack another method that cyber criminals will function to obtain individual and financial information through online app stores. Infected applications will probably be the supply of attack. Because of restricted governance over unauthorized application stores, there will be an increase use of mobile malware for criminals to post their infected applications to be able to access a mobile account. Obviously this will be an entry point for criminals to use a personal device infected with malware to invade a corporate network. Usb protection is a way to avoid malware and other data breaches.

With the adoption of health care reforms there’s an increase in the use of electronic health records. Under current legislation, all medical records are to be electronic by 2014. New devices will be launched that will make the health care data much more vulnerable as it moves from the providers workplace into servers and data storage.

Finally, mobile and medical devices have begun to merge as health care applications have become much more popular. It will turn out to be simpler to make use of a smartphone as a heart monitor or diabetes blood glucose tester. Increasingly this merging of devices will make them new access points for a healthcare organization’s network. In addition, the devices will share data from one to another creating them more at danger to threats and breaches.

Oliver David writes and contributes articles for Lok-it.net and other publications on subject matter like encrypted flash drives.

Feb 11

The Economic Recession Could Lead To Significantly Less Information Protection

Posted on by

Even though the latest economic indicators indicate a change toward a healthier economic climate than in the past four years, the overall well being from the United States and world economic climate remains in the realm of recession territory.

During any slump or economic down cycle, numerous companies try to make decisions to scale back on numerous line items in their operating spending budgets. Frequently times these cuts are made to areas that are thought to be support or not key to the each day operation of the business. One such area that is often looked at as a “back office” operation is data protection. The UK Information Commission Office made a statement recently to place companies on notice that information protection might be “under threat” in a continuing recession.

The Commission head, Cristopher Graham stated that “those dealing with information security and having access to information are under actual pressure, hit by the double whammy of increasing demands for information from citizens and customers on the 1 hand and reduced resourcing on the other”. He added, “Businesses under pressure in the economic downturn must be inclined to scrimp and push boundaries. That is a bad call, since the first casualty of a large data breach is certainly going to be a brand’s good reputation. Customers will abandon companies that disrespect their privacy.”

With these decisions becoming produced on an nearly daily basis throughout an economic downturn, it is important for CFOs and CIOs to work together. CFOs should serve as a facilitator to help different entities manage and participate in the requirement of information security. CFOs understand that data breaches can affect the company’s bottom line both because of elevated costs to keep track of and secure information, but additionally with elevated insurance coverage, potential damage claims and lawsuits as well as intangible harm towards the company’s consumer trust.

Understanding the reducing costs within the information protection area might wind up costing the company much more revenue in the long run is also an important point for CFOs to understand in a slump. This allows the CIO to give beneficial info to the CFO and also have them as a partner in deciding what kinds of systems and safety measures to get in place over data. The CIO’s function would be to explain how an investment can save the organization money and just how it’ll affect the business.

Hardware authentication is one way to protect data.

Oliver David writes and contributes articles for Lok-it.net and other blogs on topics like flash drive reviews.

Feb 05

Water Utility System Suffers Cyber Attack

Posted on by

It’s been reported in recent days that a group of hackers breached the Springfield, Illinois water utility system targeting the system and destroying a water pump. The breach was found when a utility worker noticed an issue using the Supervisory Control and Data Acquisition System (SCADA). The issue was causing the utility’s water pump to burn out after being continuously turned off and on. This hack attack was confirmed by the U.S. Department of Homeland Security’s Industrial Control System Cyber Emergency Response Team soon after the employee reported the problem.

Also verifying the attack was the Illinois Statewide Terrorism and Intelligence Center that released a report about a Public Water District Cyber intrusion. This report indicated that the hackers may have had access to the system for up to 3 months before it being found.

The hackers utilized a Russian IP address to hack into the software vendor’s database of usernames and passwords. It then utilized the stolen credentials to remotely access the SCADA system’s network. The software vendors maintain consumer records for upkeep and improvements to the systems.

Operators of the water system had noticed what was termed as “glitches” several months before the discovery. They didn’t give these issues much heed and figured it was due to the overall instability with the system. It wasn’t until the SCADA system actually turned on and off that they realized something wasn’t right.

The software vendor is located within the United States with many other utility business customers. There’s a concern that you will find other systems at danger. Critics have known as out this lack of security and also the fact that numerous other important resources including nuclear facilities could be vulnerable. Hardware authentication is often a great way to secure data.

Soon after, the Illinois Statewide Terrorism and Intelligence Center, using the US Department of Homeland Security and the FBI issued a follow up report. DHS spokesperson Peter Boogaard stated ”there is no credible corroborated information that indicates a risk to critical infrastructure entities or a threat to public safety.”

Oliver David contributes articles for Lok-it.net and other publications on subjects like usb flash drive reviews.