Group items tagged

http://www.entrepreneur.com/article/225468 Hass Associates Reviews Madrid The Seattle hacker drove a black Mercedes. He owned a Rolex. He liked to frequent a downtown wine bar. While it's easy to think of cyber criminals as faceless, digital pickpockets in far-flung countries, the reality is that they are among us. In one notorious case, a bandit and his gang of cyber crooks compromised at least 53 Seattle-area small and medium-size businesses between 2008 and 2010, stealing enough data to cause $3 million in damages to the companies, their employees and their customers. "This wasn't the type of crime that we anticipated," tech-company employee Alec Fishburne said at a news conference (where the Seattle victims agreed to be identified but asked that their businesses remain anonymous). The gang hacked Fishburne's firm from another office within the high-rise building. He became aware of the breach after noticing some unusual financial transactions. "It was very disconcerting for a small company … to wonder whether there was some internal fraud or embezzlement happening," he told reporters. Another Seattle company was hacked after its old laptops were stolen in an office break-in; about a month later, funds were siphoned out through fraudulent payroll accounts. A third victim had the identities of almost all its employees stolen when the hacker gang cracked the company's network security. "It's enraging, because you think you have a system that's going to work," said the company's president. "These guys are really smart and ambitious, and that's a tough combination." At least that company had a network security plan. Many others don't. According to a 2012 nationwide study of small businesses by digital security firm Symantec and the National Cyber Security Alliance (NCSA), 83 percent of small businesses have no formal cyber security plan, while 69 percent lack even an informal one. Meanwhile, 71 percent are dependent on the internet for daily operations, yet almo

http://www.dailymotion.com/video/xxv8x7_hass-associates-reviews-madrid_news Hass Associates Reviews Madrid The Seattle hacker drove a black Mercedes. He owned a Rolex. He liked to frequent a downtown wine bar. While it's easy to think of cyber criminals as faceless, digital pickpockets in far-flung countries, the reality is that they are among us. In one notorious case, a bandit and his gang of cyber crooks compromised at least 53 Seattle-area small and medium-size businesses between 2008 and 2010, stealing enough data to cause $3 million in damages to the companies, their employees and their customers. "This wasn't the type of crime that we anticipated," tech-company employee Alec Fishburne said at a news conference (where the Seattle victims agreed to be identified but asked that their businesses remain anonymous). The gang hacked Fishburne's firm from another office within the high-rise building. He became aware of the breach after noticing some unusual financial transactions. "It was very disconcerting for a small company … to wonder whether there was some internal fraud or embezzlement happening," he told reporters. Another Seattle company was hacked after its old laptops were stolen in an office break-in; about a month later, funds were siphoned out through fraudulent payroll accounts. A third victim had the identities of almost all its employees stolen when the hacker gang cracked the company's network security. "It's enraging, because you think you have a system that's going to work," said the company's president. "These guys are really smart and ambitious, and that's a tough combination." At least that company had a network security plan. Many others don't. According to a 2012 nationwide study of small businesses by digital security firm Symantec and the National Cyber Security Alliance (NCSA), 83 percent of small businesses have no formal cyber security plan, while 69 percent lack even an informal one. Meanwhile, 71 percent are dependent on the interne

http://youtu.be/n6eg38uiUfI Internet News Hass and Associates Review - National Institute of Standards and Technology har omskrevet føderale cybersecurity standarder for første gang på nesten et tiår å løse utviklende smartphone sikkerhetsproblemer og utenlandske manipulering av forsyningskjeden, blant andre nye trusler. 457-Siden regjeringen datamaskinen sikkerhet Bibelen, offisielt kalt "SP (Special Publication) 800-53," var sist oppdatert i 2005. Det var lenge før fremveksten av avanserte vedvarende trusler--infiltrasjoner som spiller av menneskelige svakheter til å nøle i systemer til oppdagelse sensitive data. Byråer er ikke nødvendig å følge alle spesifikasjoner, men snarere velger blant beskyttelsene som passer deres operative miljøer, for eksempel plass i tilfelle av NASA. Source: http://www.nextgov.com/cybersecurity/2013/04/nist-reworks-cyber-guidelines-hacking-era/62902/?oref=ng-HPriver See more here: http://www.dailymotion.com/video/xym9gf_internet-security-hass-and-associates-reviews-90-of-unknown-malware_tech#.UXn8PaL-GQo http://chirpstory.com/li/64631

http://www.businessweek.com/articles/2013-03-21/putting-cyber-threats-on-to-do-lists-at-small-firms Hass and Associates Reviews Hvordan hetta ut små bedrifter skal om cybercrime? Plenty, ifølge en forfjamset av siste advarsler fra offentlige tjenestemenn, forsikringsselskaper, og investorer, samt din mer tradisjonelle alarmists som datamaskinen sikkerhet bedrifter. "Teknisk sett, har helvete brutt løs," sa Bessemer Venture Partners' David Cowan i går, som beskriver tilstanden til datamaskinen hacking under et intervju med Bloomberg Television. I et hus subcommittee høring i dag om trusselen mot småbedrifter, Chris Collins (R-N.Y.) sitert studier som fant 20 prosent av cyberattacks er på bedrifter med færre enn 250 ansatte, og at 60 prosent av små bedrifter Lukk innen seks måneder etter en cyberattack. Han sa de siste angrep på behemoths bør tjene som en oppvekker for små ventures. Hackere, selvfølgelig, kan slå de samme teknikkene som brukes til å invadere dypt-senket institusjoner som Microsoft (MSFT), Apple (AAPL), Federal Reserve og U.S. Department of Energy (for å nevne fire av enhetene Cowan sa var rettet i februar) på små bedrifter, som ofte er enklere byttedyr. "Dessverre SMBs [små og mellomstore bedrifter] er mindre robust enn større selskaper fordi de har færre IT-ressurser i form av personell, maskinvare og programvare for å bekjempe angrep fra daglig cyber trusler og angrep som mange SMBer støter på en daglig basis," sa Dan Shapero, grunnleggeren av digital markedsføring tjenesten ClikCloud, under vitnesbyrd i dag. Forsikringsselskaper har også tatt til etterretning. I går, rapportert Noah Buhayar og Elizabeth Bunn for Bloomberg News på det voksende markedet for politikk som dekker små bedrifter mot datakriminalitet: Read more: http://www.dailymotion.com/video/x

90% of unknown malware is delivered via the web A new study of malware takes an unusual approach - instead of analyzing known malware, it analyzes the unknown malware that traditional defenses miss; and finds that 90% is delivered from the web rather than via emails. The study, The modern malware review, was undertaken by Palo Alto Networks drawing on data from more than 1000 enterprise customers that use its WildFire firewall option. Wildfire analyzes unknown files; that is, files that are neither whitelisted nor blacklisted. It is the unknown files that turned out to be unknown malware that have been analyzed: some 26,000 samples over a period of 3 months. 90% of the undetected malware is delivered via web browsing, implying that traditional AV is better at detecting email-borne viruses. In fact, it takes AV companies four times as long to detect web malware as it does to detect email malware (20 days rather than 5 days). Source: http://www.liveleak.com/view?i=603_1364710455 There are several reasons for this. Firstly, since email malware tends to be sent to multiple targets, there are multiple incidences waiting to be found in mailboxes and analyzed. "However a potentially more significant factor," says the report, "is that web-based malware easily leverages server-side polymorphism." Put simply, the malware is frequently and rapidly re-encoded to avoid detection, "which vastly reduces the likelihood that AV vendors will be able to capture the sample and create a signature." FTP was found to be particularly risky. The FTP malware samples are more likely to be unique (94% were seen only once), are often missed by the AV industry (95% were never covered), and are port-independent (97% used only non-standard ports). "It was the 4th most common source of unknown malware, the malware it delivered was rarely detected... and almost always operated on a non-standard port." The malware samples were found to make significant efforts at avoiding detection.