Thursday, May 19, 2022
isBuzz

What Does The Future Hold For Blockchain Within Third-Party Risk Management?

The benefits of using technology to manage third-party risk are not lost on compliance professionals. When you consider the growing size, complexity and geographic diversity of companies’ third-party ecosystems, it’s easy to see why. 60% of organisations now work...
isBuzz

Number ‘100’ And Scams

This is my one hundredth Article for those nice people at Information Security Buzz (hence the title), and whilst I was pondering on which topic to write on next, along came a subject falling directly into my lap in...
isBuzz

How To Build A DevOps Strategy With APIs

Organizations are rapidly turning to APIs because they bridge the gap between independent applications and programs and, in turn, facilitate proper and consistent communication between them. APIs have become a fundamental part of every application, and it’s easy to...
isBuzz

The 2022+ Fit-for-Purpose OSINT Toolkit In The Age Of Digital Risk Growth

For about a decade now, I have both practiced and taught, what has, up to 2022, seemingly been considered a Grey Art – that of Open-Source Intelligence (OSINT), and its related methodologies in the UK, the UAE, Pakistan, India,...
isBuzz

The Subject Of Trusting ‘Russian’ Applications

As many readers of Information Security Buzz articles may already be aware, I have had published two articles about ‘Trust’ in relation to Russian applications, and as such I have set on a personal course to remove all links...
isBuzz

Why Collaboration Is Key To Driving The Future Of Risk Mitigation

With COVID-19 restrictions easing, many employees are starting to make a return to the workplace. But the traditional five-day working week in the office is steadily on its way to becoming obsolete for many. According to recent research, over...
isBuzz

The Metaverse Is Coming

Looking at what the big players are doing, it’s easy to view the Metaverse as a big thing. Facebook has changed its corporate name in honour of the new trend. Microsoft’s CEO acknowledged that their latest and largest acquisition...
isBuzz

Government Cloud On-Ramping

The UK Treasury is becoming increasingly frustrated by the billions of pounds wasted by government departments on legacy technology and proprietary infrastructure. With Digital Transformation now imperative, there is little patience for the endemic delays in decision making that...
isBuzz

Bolstering Security Standards: How A Consolidated IT Infrastructure Can Arm Businesses Against Cyber-Criminals

When companies think of security, they often only think of passwords, encryption, and hacking. With the transition to flexible, hybrid, or fully remote work, there are many new aspects that come up in the security equation and, most importantly,...
isBuzz

The New Cyberthreat To Healthcare: Killware

Ransomware in the healthcare sector For years, the focus of cybersecurity efforts in the healthcare sector has been on protecting medical records and other sensitive patient information. Clearly, attention to data security is vital — ransomware attacks and data...
isBuzz

Trust In The New Age Of The Cold War

The sad kinetic situation of the Russian war in Ukraine has created much instability on the world stage – observing the fallout of human tragedies and loss of life – facts we are all very much aware of and...
isBuzz

Understanding The Risk And Phenomenon Of Crypto Assets

As the world evolves from Web 2.0 to Web 3.0 – think decentralised protocols for crypto assets, identities, and computer-services leveraging blockchain technology – cyber threat teams too must evolve their understanding of the technology at play to stay...
isBuzz

Why Paying The Ransom Isn’t The Answer For Ransomware Victims

Increased reliance on multiple cloud environments during the last couple of years and the growing number of employees opting for a hybrid working norm have created numerous opportunities for ransomware gangs to target organizations. As a response to the...
isBuzz

Russian Software Security And The Risk You Run

The National Cyber Security Centre (NCSC, a part of GCHQ) has warned UK organisations and consumers to consider the risk of using Russian technologies amid the ongoing war in Ukraine, and the change in attitude of the Russian Leadership...
isBuzz

Improving Signal To Noise Ratio In Business Intelligence

Business intelligence is a catch-all word. If you were to ask a CEO whether they value business intelligence, they would likely say “yes”. Once you start digging deeper into what it is, however, you often find confusion or platitudes...

Spyware Vendors Target Android With Zero-Day Exploits

New research from Google's Threat Analysis Group outlines the risks Android users face from the surveillance-for-hire industry.
The Hacker News

New Bluetooth Hack Could Let Attackers Remotely Unlock Smart Locks and Cars

A novel Bluetooth relay attack can let cybercriminals more easily than ever remotely unlock and operate cars, break open residential smart locks, and breach secure areas. The vulnerability has to do with weaknesses in the current implementation of Bluetooth Low Energy (BLE),...
SecurityWeek

Phishers Add Chatbot to the Phishing Lure

Researchers have discovered a new approach being taken by phishers to increase victim engagement and confidence: the addition of an interactive chatbot. We have all become accustomed to the chatbots used by many of the largest service providers –...
SecurityWeek

QuSecure Lauches Quantum-Resilient Encryption Platform

New firm launches to provide the Easy Button for implementing quantum secure encryption The pressure to implement quantum secure encryption is increasing. This isn’t because functioning quantum computers able to crack asymmetric encryption are expected tomorrow, but because of the...
The Register

Iran, China-linked gangs join Putin’s disinformation war online

They're using the invasion 'to take aim at the usual adversaries,' Mandiant told The Reg Pro-Beijing and Iran miscreants are using the war in Ukraine to spread disinformation that supports these countries' political interests — namely, advancing anti-Western narratives...