27-10final

More documents

Recommendations

Info

IS NOW Combining thermal security cameras with video management systems. www.flir.com Untitled-20 1 18/02/16 10:18 call for cyber hygiene: UNHAPPY ‘The more that we look for modern slavery the more we find the evidence of the widespread abuse of the vulnerable.’ Will Kerr, National Crime Agency’s Director of Vulnerabilities. THREATS DON’T TAKE WEEKEND OFF Automated cyber threats do not take weekends or nights off, according to a firewall and wi-fi and email security product company. Nearly 44pc of all exploit attempts came on a Saturday or Sunday. The average daily volume on weekends was twice that of weekdays. The recent high profile WannaCry and NotPetya malware targeted a vulnerability only patched for a couple of months. Those spared from these attacks tended to have one of two things in common. They had deployed tools, updated to detect attacks targeting this vulnerability, or they applied the patch, says Fortinet. Phil Quade, chief information security officer at the firm, said: “The technology innovation that powers our digital economy creates opportunity for good and bad in cyber security. Yet, something we don’t talk about often enough is the opportunity everyone has to limit bad consequences by employing consistent and effective cyber security hygiene.” p Payment card compliance There’s a link between compliance with the Payment Card Industry Data Security Standard (PCI DSS), and ability to defend against cyber-attacks. That’s according to the telecoms firm Verizon. Briefly, PCI DSS is a standard for businesses that take card payments, to assess physical and cyber protection of systems against theft of card-holder data, such as protecting data in transit and vulnerability management; and such controls as penetration tests. Of all card data breaches that the firm looked at, no organisation was fully compliant at the time, and showed lower compliance with ten out of the 12 PCI DSS requirements. Global business PCI compliance has risen, with 55.4pc of organisations that the company assessed passing their interim assessment in 2016. In 2015, less than half, 48.4pc achieved full compliance at their interim validation. This means nearly half of retailers, restaurants, hotels and other business that take card payments are still failing to maintain compliance year to year, the firm points out. p IT SURVEY Only a minority, 35pc agreed their security suggestions are acted upon, according to a global survey of 3,300 IT people by the industry body (ISC)2. It said that widespread underfunding in training in-house IT talent is contributing to what it calls the critical cyber security skills gap. Half felt less able to defend against cyber-attack than a year ago. p Perimeter Woven & Welded Mesh Fencing Systems ALL Manufactured in the UK C M Y CM MY CY CMY K www.zaun.co.uk (t): +44 (0)1902 796 699 | (e): info@zaun.co.uk
IS NOW Combining thermal security cameras with video management systems. www.flir.com Untitled-20 1 18/02/16 10:18 ONE IN TEN WITHOUT A PLAN One in ten FTSE 350 companies said they operate without a response plan for a cyber incident (ten per cent) and less than a third of boards receive comprehensive cyber risk information (31 per cent). That’s according to a ‘cyber health check’ of the UK’s biggest 350 companies. Minister for Digital Matt Hancock said: “We have world leading businesses and a thriving charity sector but recent cyber attacks have shown the devastating effects of not getting our approach to cyber security right. These new reports show we have a long way to go until all our organisations are adopting best practice and I urge all senior executives to work with the National Cyber Security Centre and take up the Government’s advice and training.” p MORE THAN PASSWORD UK businesses are playing ‘Russian Roulette’ with our information, it’s claimed, by continuing to rely on the one security method that is the exploit target in most hacks and data breaches – the password. A digital identity and credentials product company reports research into how UK systems administrators, those who manage computer systems, or those who hold such assess rights, Sequrinet-Advert_half-Page - April2017.pdf 2 30/03/2017 12:48 ‘devastating’ not to get it right: are protecting sensitive data. According to Intercede, 86pc of those with systems administrator (sysadmin) level access rights are using only basic user name and password authentication to access their companies’ IT systems on-site. Few use virtual smart cards and PINs (6pc) or biometrics such as a fingerprint or facial ID (2pc). Half of the research respondents admitted their business user accounts are ‘not very secure’. With 81pc of hacking related breaches exploiting stolen or weak passwords, user authentication is Intercede says the weakest link. The July study reveals, according to Intercede, alarming results about how systems administrators are protecting access to core IT systems and turning a blind eye to basic security requirements. Richard Parris, CEO and Chairman of Intercede said: “Sysadmins effectively hold the ‘keys to the kingdom’, and relying on user name and password authentication is a bit like relying on a basic Yale lock to secure your front door. Even the least security conscious of us also bolt the door with a five lever mortice lock and many go much further. In today’s age of the hack, when compromised passwords are the root of the vast majority of security breaches, UK businesses clearly need to do much more – it isn’t simply their data that is compromised, it’s ours.” See also biometrics, page 69. p About the check The FTSE 350 Cyber Governance Health Check was carried out with audit firms Deloitte, EY, KPMG and PWC. Visit https:// www.gov.uk/government/ publications/cybergovernance-healthcheck-2017. Each company taking part was given confidential benchmarking reports. Sequrinet is one of the most secure network products available on the market today. Str0ng3r sequrinet NOW FEATURING Enhanced Password Control Pa55w0rd! ADMIN 1234 Installers will have the option of Enhanced Password Control (EPC). This will prohibit the use of ‘1234’ and other easily infiltrated passwords and only allow the use of passwords upon selection, the EPC will remove any backdoor user capability and will disable P2P and DDNS options by default. TRADE ONLY SECURITY DISTRIBUTOR FIND OUT MORE AT WWW.VIDECON.CO.UK/NEWS/SEQURINET Call: 01924 528000 | Email: sales@videcon.co.uk | Register online today: www.videcon.co.uk
Page 1:
Professional SECURITY SECURITY Octo
Page 5:
Risk register: page 30 www.professi
Page 8 and 9:
Advisory Board and Regular Contribu
Page 10 and 11: Talking the language of integration
Page 12 and 13: Have you closed the backdoor? The p
Page 14 and 15: Comment About Jim Gannon: After 45
Page 16 and 17: London News council ‘failed’: O
Page 18 and 19: News threat to plots Drone appeal T
Page 20 and 21: The world’s most rugged guard tou
Page 22 and 23: spend the budget South Africa Natio
Page 24 and 25: spend the budget Coventry Universit
Page 26 and 27: ST17 FITTED FOR YOUR BUSINESS. Expl
Page 28 and 29: Una Says Women in Security Finals U
Page 30 and 31: Interview managing household names:
Page 32 and 33: Interview UNHAPPY ‘Modern slavery
Page 34 and 35: Security Management Password change
Page 36 and 37: In the pit of V Fest We have a day
Page 38: Fraud Above graph: the ID fraud cas
Page 41 and 42: ST17 institute chief speaks in glas
Page 43 and 44: Security Management continued ... f
Page 45 and 46: “More than just a Distributor”
Page 47 and 48: Purple is the new green Why WD Purp
Page 49 and 50: liverpool bid spending: News Below:
Page 51 and 52: Comment continued ... from previous
Page 53 and 54: e ready for an extra-ordinary new w
Page 56: IS NOW Combining thermal security c
Page 59: Moving Ahead. By Your Side. The pro
Page 63 and 64: News profit share for staff: CORDAN
Page 65 and 66: Installers customer support: Video
Page 67 and 68: Dahua Technology * Showcase & Insta
Page 69 and 70: Biometrics FACE UP TO THE FUTURE Ap
Page 71 and 72: Spotlight feature on: A: We take pr
Page 73 and 74: AWARD WINNING TECHNICAL SUPPORT HIK
Page 75 and 76: AWARD WINNING TECHNICAL SUPPORT HIK
Page 77 and 78: Directory of Services control room
Page 79 and 80: Directory of Services intruder equi
Page 81 and 82: Directory of Services Conferences &
Page 83 and 84: View the latest global vacancies fr
Page 85 and 86: Opportunities abound at the 2018 ex
show all

27-10final

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?