Tag Archives: Criminals

KnowBe4 study reveals 92% of organisations’ biggest security concern is end users

KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, has released the results of new research. The company’s report examines over 350 organisations globally and reveals the security weaknesses and concerns within them. On average, 81% of organisations had some degree of concern around security issues.

Cyber crime continues to evolve and become more sophisticated. Artificial Intelligence and machine learning are leveraged by many criminal organisations to help them better understand how to improve their attacks and they’re now targeting specific industry verticals, organisations and even individuals.

Increases in the frequency of ransomware, phishing and crypto-jacking attacks have been experienced by businesses of nearly every size, vertical and location.

KnowBe4

When it comes to attack vectors, data breaches are the primary concern, with credential compromise coming a close second. These two issues go hand-in-hand as the misuse of credentials remains the foremost attack tactic in data breaches. That’s according to Verizon’s 2018 Data Breach Investigations Report.

Phishing and ransomware ranked next, demonstrating that organisations are still not completely prepared to defend themselves against these relatively “old” attack vectors.

Other key findings

*92% of organisations rank end users as their primary security concern. At the same time, security awareness training along with phishing testing tops the list of security initiatives that organisations need to implement

*Organisations today have a large number of attack vectors to prevent, monitor for, detect, alert and remediate. In terms of attacks, 95% of those organisations surveyed are most concerned with data breaches

*Ensuring security is in place to meet General Data Protection Regulation (GDPR) requirements is still a challenge for 64% of organisations, despite the GDPR’s fine details having been public knowledge for quite some time

*Attackers’ use of compromised credentials is such a common tactic. 93% of organisations are aware of the problem, but still have lots of work to do to stop it

*When it comes to resources, 75% of organisations don’t have an adequate budget

“2018 was a prolific year for successful cyber attacks, with many of them caused by human error,” said Stu Sjouwerman, CEO of KnowBe4. “IT organisations are tasked with establishing and maintaining a layered security defence. The largest concern, as demonstrated again in this report, is employees making errors. Organisations must start their defence by establishing a security culture. In order to combat the escalation of social engineering, they absolutely have to ensure that users are trained and tested.”

To read the full report visit www.KnowBe4.com

Leave a comment

Filed under Risk Xtra

MOBOTIX launches ‘Cactus Concept’ to set focus on cyber security for video surveillance

MOBOTIX has announced a heightened focus on cyber security by implementing the ‘Cactus Concept’. The concept aims to deliver a comprehensive approach towards protecting MOBOTIX products against the threat of cyber attacks along with education and tools to help customers and partners alike in building and maintaining secure video surveillance and access control environments.

The ‘Cactus Concept’ will raise awareness among potential and existing MOBOTIX customers of the importance of data security in network-based video security systems and how organisations can protect themselves through cost-efficient and intelligent solutions. End-to-end encryption with no blind spots is required, from the image source via the data cables and the data storage through to the VMS on the end user’s computer.

Like a cactus, whose every limb is covered in thorns, all of the modules (camera, storage, cables, VMS) in the MOBOTIX system have ‘digital thorns’ that protect them from unauthorised access.

MOBOTIXCactusConcept

“Modern video surveillance and access control technologies help protect people, places and property across the world, but they’re increasingly targeted by criminals aiming to infiltrate, take-over or disable them,” explained Thomas Lausten, CEO of MOBOTIX. “With the Internet of Things trend adding billions of IP-connected devices each year, our industry must lead the way in creating secure platforms that can reduce the risks posed by these damaging attacks.”

MOBOTIX firmly believes in its ‘Cactus Concept’ to protect every element of the design, manufacture and operation of each device along with end-to-end encryption across the entire usage and management cycle.

To ensure the highest levels of security, MOBOTIX uses the services of SySS, a highly regarded and independent third party security testing company that examines the security of both software and hardware elements. SySS customers include Basler Versicherungen, Bundeswehr, CreditPlus Bank AG, Daimler, Deutsche Bank, Deutsche Flugsicherung, Festo, Hewlett Packard, Innenministerium/LKA Niedersachsen, SAP, Schaeffler, Schufa, T-Systems and Union Investment.

Sebastian Schreiber, CEO at SySS, added: “MOBOTIX has a contract with us to provide further penetration testing of its technology elements. The initial platform testing on a current camera model revealed very positive results. We’ll now continue security testing as an ongoing process.”

Thomas Lausten concluded: “Cyber security has been and will continue to be a core focus for us. We look forward to working with our peers in the industry, as well as customers and Government agencies, in order to protect the very technologies and systems that help make society safer for us all.”

*For more information visit www.cactusconcept.com

Leave a comment

Filed under Risk UK News

Government minister urges crackdown on ‘free movement of serious criminals’

Karen Bradley – the Minister for Modern Slavery and Organised Crime – has urged that more information on serious criminals must be shared across Europe in order to protect members of the public.

Bradley has also called for action to stop those responsible for crimes including murder, rape and child abuse from being able to cross national borders either to escape justice or prey on new victims.

Speaking to delegates at a conference in The Hague, the UK MP explained: “We must all face up to the fact that, while free movement is seen by many in Europe as having only positive impacts, there are some very clear negatives – not least of which is the ability for criminals to exploit this freedom of movement and further their own illegal activities across borders.”

Bradley continued: “If we’re to tackle this problem properly then the free movement of information needed to combat criminality must work as effectively – and, ideally, more effectively – than the free movement of criminals.”

Serious Offending by Mobile European Criminals Project

The minister told the final meeting of the UK-led Serious Offending by Mobile European Criminals (SOMEC) Project that great improvements had already been made on the sharing of information, but that more needs to be done.

Bradley stressed the importance of the UK remaining part of a number of crime and policing measures that Parliament will vote on and which have greatly improved our ability to find out about foreign offenders who move to the UK.

Karen Bradley MP

Karen Bradley MP

“Public protection must not be lost in a wider debate about the UK’s place in Europe,” stated Bradley. “More must be done to prevent offenders like paedophiles, rapists and murderers from exploiting free movement rights to slip unnoticed into another nation where they can then prey on unsuspecting new victims. It’s vital we know when these predators arrive on our shores. We need more powers to tackle them, not fewer. That’s why it’s in the public interest – and is absolutely essential – that the UK remains a part of key European measures.”

In conclusion, the MP commented: “Failure to do so would send us back to the Dark Ages of being unable to find out anything about foreign criminals who’ve moved to our country, in turn making it impossible to act against them. There’s no doubt that this would carry a serious public protection risk and could even cost lives.”

Management and exchange of data

The SOMEC Project was established to examine the management and exchange of data on mobile serious sexual and violent offenders across Europe. Final recommendations on how improvements can be made are expected to be published in early 2015.

Parliament will vote today (Monday 10 November) on a small number of EU crime and justice measures the Government intends to remain part of in the public interest after opting out of a much larger number.

Parliament will vote on Monday 10 November on a small number of EU crime and justice measures the UK Government intends to remain part of in the public interest after opting out of a much larger number

Parliament will vote on Monday 10 November on a small number of EU crime and justice measures the UK Government intends to remain part of in the public interest after opting out of a much larger number

The measures the UK intends to remain part of include the Swedish Initiative, the Second Generation Schengen Information System (SIS II) and the European Criminal Record Information System (ECRIS). These have all been identified by the SOMEC Project as being important existing tools that should be used more effectively across Europe so as to track mobile serious criminals.

Leave a comment

Filed under Risk UK News