Skip to main content

Should We Worry About Cyber Security?

Information Technology Blog - - Should We Worry About Cyber Security? - Information Technology Blog

Can you imagine life without your laptop, tablet or phone? Today more than at any time in the past we are committed to using such devices to facilitate almost all our business and social needs. Sending and receiving mail, contacting friends and family, arranging business meetings. Never before have we been so interconnected on such a global scale. Whilst on the one hand this has been enabling and incredibly convenient, it has on the other hand exposed us to the risk of fraud or other forms of malicious use of our computer systems on a scale previously unheard of.

Who Cares?

You may have been lucky to date. You may have never suffered at the hands of the cyber criminal, but this is no time to be complacent. There have been numerous surveys and reports issued over the past two years spelling out the financial cost of security breaches. The average annualised cost companies could face was reported, in one such report from the Ponemon Institute, as £2.1 million a year, with a range of £0.4 million to £7.7 million. In the past year we have seen many high profile companies fall fail of organised cyber attacks;

  • Skype,
  • Facebook,
  • Yahoo,
  • NASA

These are just some of those affected. And then of course there is the usual and persistent attack on Microsoft Windows users. All targeted by cyber criminals. These are not just isolated incidents. In 2011 there were around 50 million SQLi (SQL injection) attacks on web based applications. This is an almost unbelievable figure, that as far as this writer is concerned, if it had not been reported by such a trustworthy source (Hewlett Packard) it would have been disregarded as an over exaggeration.

Limiting the Risk

Our networks generate numerous opportunities for cyber attack. We are constantly sending and receiving code using a variety of devices. If we could limit these movements to merely data we would mitigate the risk substantially. However the boundary between what is seen to be data rather than executable code is shifting constantly. In some cases code that would be seen as banal can be delivered over several days even weeks and then be assembled as a malicious program by utilising the normal operating processes of the OS or other legitimate programs.

Criminal Not Hacker

Should your company or organisation be targeted by a Cyber Criminal it becomes a real battle of wits between the criminal and your IT security department. I use the term Cyber Criminal in preference to hacker since it describes what they do more accurately. The targeted cyber criminal attack is the hardest to defend against, since the method and code used may be unique to your attack. Or at the very least, your network might be the first to encounter this attack. As such many of the conventional defence mechanisms will be rendered useless in detecting or preventing the attack.

What Can You Do?

Sandboxing and quarantining techniques offer some of the best defence when considering these targeted attacks. By allowing the possible threat to penetrate into a controlled environment before it has access to your network proper, you have the time and the opportunity to analyse and monitor the code for unexpected activity. Vigilance is paramount more than ever as the attacker profile shifts further towards the organised criminal rather than the criminally minded individual. The good news is that there are now well developed, advanced academic courses on offer from leading Universities such as London University’s Royal Holloway College. The Engineering and Physical Sciences Research Council (EPSRC) has just (May 2013) granted the Royal Holloway £3.8 million to host a Centre for Doctoral Training (CDT) in cyber security.

It is essential that you deploy the expertise of properly trained experts to advise and construct the barriers necessary to defend your cyber world. When seeking external advice be sure to shop around, find those with individuals who are independently certified as qualified in this area. I think we are all agreed that it would be disastrous if we failed to keep up research and innovation in the area of cyber security.

You can visit SBL Cyber Security website for more information on cyber security topics and also read their Cyber Talk magazine.

Originally posted 2013-07-29 02:51:37. Republished by Blog Post Promoter

The post Should We Worry About Cyber Security? appeared first on Information Technology Blog.



Udimi - Buy Solo Ads from Information Technology Blog https://ift.tt/2RWybKA
via IFTTT
Labels:

Comments

Post a Comment

Popular posts from this blog

9 VCs in Madrid and Barcelona discuss the COVID-19 era and look to the future

Spain’s startup ecosystem has two main hubs: Madrid and Barcelona. Most observers place Barcelona first and Madrid second, but the gap appears to close every year. Barcelona has benefitted from attracting expats in search of sun, beach and lifestyle who tend to produce more internationally minded startups. Madrid’s startups have predominantly been Spain or Latin America-focused, but have become increasingly international in nature. Although not part of this survey, we expect Valencia to join next year, as city authorities have been going all-out to attract entrepreneurs and investors. The overall Spanish ecosystem is generally less mature than those in the U.K., France, Sweden and Germany, but it has been improving at a fast clip. More recently, entrepreneurs in Spain have moved away from emulating success in pursuit of innovative technologies. Following the financial crisis, the Spanish government supported the creation of startups with the launch of FOND-ICO GLOBAL, a €1.5 billi...
Post a Comment
Read more

Emulating USB Dongle – Introducing HASP Dongle Emulator Software

Information Technology Blog - - Emulating USB Dongle – Introducing HASP Dongle Emulator Software - Information Technology Blog Over the years the methods used by software developers and producers to limit the amount of users to a specific number in a licensing agreement have become more complex.  The aim of copy protection is to protect the intellectual rights and financial investment of the individual developers and manufacturing companies.   A way of getting around this protection is to reproduce the media through which you can deliver the application to other users,  meaning that the software can be replicated far in excess of that specified in the license. One of the most common methods has been to use hardware keys or dongles which will enable the user to activate an application, unlocking its full functionality without using a device.  In addition, it offers good protection against attempts to pirate the software. In this article, we will look at th...
1 comment
Read more