What Does The Future Hold For Blockchain Within Third-Party Risk Management?
The benefits of using technology to manage third-party risk are not lost on compliance professionals. When you consider the growing size, complexity and geographic diversity of companies’ third-party ecosystems, it’s easy to see why. 60% of organisations now work...
Number ‘100’ And Scams
This is my one hundredth Article for those nice people at Information Security Buzz (hence the title), and whilst I was pondering on which topic to write on next, along came a subject falling directly into my lap in...
How To Build A DevOps Strategy With APIs
Organizations are rapidly turning to APIs because they bridge the gap between independent applications and programs and, in turn, facilitate proper and consistent communication between them. APIs have become a fundamental part of every application, and it’s easy to...
The 2022+ Fit-for-Purpose OSINT Toolkit In The Age Of Digital Risk Growth
For about a decade now, I have both practiced and taught, what has, up to 2022, seemingly been considered a Grey Art – that of Open-Source Intelligence (OSINT), and its related methodologies in the UK, the UAE, Pakistan, India,...
The Subject Of Trusting ‘Russian’ Applications
As many readers of Information Security Buzz articles may already be aware, I have had published two articles about ‘Trust’ in relation to Russian applications, and as such I have set on a personal course to remove all links...
Why Collaboration Is Key To Driving The Future Of Risk Mitigation
With COVID-19 restrictions easing, many employees are starting to make a return to the workplace. But the traditional five-day working week in the office is steadily on its way to becoming obsolete for many. According to recent research, over...
The Metaverse Is Coming
Looking at what the big players are doing, it’s easy to view the Metaverse as a big thing. Facebook has changed its corporate name in honour of the new trend. Microsoft’s CEO acknowledged that their latest and largest acquisition...
Government Cloud On-Ramping
The UK Treasury is becoming increasingly frustrated by the billions of pounds wasted by government departments on legacy technology and proprietary infrastructure. With Digital Transformation now imperative, there is little patience for the endemic delays in decision making that...
Bolstering Security Standards: How A Consolidated IT Infrastructure Can Arm Businesses Against Cyber-Criminals
When companies think of security, they often only think of passwords, encryption, and hacking. With the transition to flexible, hybrid, or fully remote work, there are many new aspects that come up in the security equation and, most importantly,...
The New Cyberthreat To Healthcare: Killware
Ransomware in the healthcare sector For years, the focus of cybersecurity efforts in the healthcare sector has been on protecting medical records and other sensitive patient information. Clearly, attention to data security is vital — ransomware attacks and data...
Trust In The New Age Of The Cold War
The sad kinetic situation of the Russian war in Ukraine has created much instability on the world stage – observing the fallout of human tragedies and loss of life – facts we are all very much aware of and...
Understanding The Risk And Phenomenon Of Crypto Assets
As the world evolves from Web 2.0 to Web 3.0 – think decentralised protocols for crypto assets, identities, and computer-services leveraging blockchain technology – cyber threat teams too must evolve their understanding of the technology at play to stay...
Why Paying The Ransom Isn’t The Answer For Ransomware Victims
Increased reliance on multiple cloud environments during the last couple of years and the growing number of employees opting for a hybrid working norm have created numerous opportunities for ransomware gangs to target organizations. As a response to the...
Russian Software Security And The Risk You Run
The National Cyber Security Centre (NCSC, a part of GCHQ) has warned UK organisations and consumers to consider the risk of using Russian technologies amid the ongoing war in Ukraine, and the change in attitude of the Russian Leadership...
Improving Signal To Noise Ratio In Business Intelligence
Business intelligence is a catch-all word. If you were to ask a CEO whether they value business intelligence, they would likely say “yes”. Once you start digging deeper into what it is, however, you often find confusion or platitudes...
Spyware Vendors Target Android With Zero-Day Exploits
New research from Google's Threat Analysis Group outlines the risks Android users face from the surveillance-for-hire industry.
New Bluetooth Hack Could Let Attackers Remotely Unlock Smart Locks and Cars
A novel Bluetooth relay attack can let cybercriminals more easily than ever remotely unlock and operate cars, break open residential smart locks, and breach secure areas.
The vulnerability has to do with weaknesses in the current implementation of Bluetooth Low Energy (BLE),...
Phishers Add Chatbot to the Phishing Lure
Researchers have discovered a new approach being taken by phishers to increase victim engagement and confidence: the addition of an interactive chatbot. We have all become accustomed to the chatbots used by many of the largest service providers –...
QuSecure Lauches Quantum-Resilient Encryption Platform
New firm launches to provide the Easy Button for implementing quantum secure encryption
The pressure to implement quantum secure encryption is increasing. This isn’t because functioning quantum computers able to crack asymmetric encryption are expected tomorrow, but because of the...
Iran, China-linked gangs join Putin’s disinformation war online
They're using the invasion 'to take aim at the usual adversaries,' Mandiant told The Reg Pro-Beijing and Iran miscreants are using the war in Ukraine to spread disinformation that supports these countries' political interests — namely, advancing anti-Western narratives...
