Security News > 2020

SEE: Security Response Policy The report, "The Global State of Industrial Cybersecurity," which includes responses from full-time IT pros in the US, UK, Germany, France, and Australia, found that business security leaders in the US are more concerned about the security of their industrial OT systems than are leaders in other nations. The data also showed that global IT security professionals have a more positive overall outlook about their OT network security compared with their counterparts in the US. About 62% of the global IT respondents said they believe that industrial OT networks are properly safeguarded, compared to only 49% of US respondents.

General Electric revealed last week that the personal information of some employees may have been compromised as a result of a data breach suffered by Canon Business Process Services. In a data breach notification sent to affected individuals and submitted to the California Attorney General, GE said an unauthorized party gained access to a Canon email account containing documents belonging to some of its employees.

"Public clouds are, by and large, homogeneous infrastructures with embedded monitoring capabilities that are ubiquitous and have centralized security administration and threat remediation tools built on top," Konstantas told Help Net Security. "Automation really is central to effective cloud security. Just take the example of data and consider the volume of data flowing into cloud hosted data bases and data warehouses. Classifying the data, identifying PII, PHI, credit cards etc., flagging overly permissioned access, and requiring additional authorization for data removal - all these things have to be automated. Even the remediation, or prevention of access needs to be automated," she noted.

The malware authors behind TrickBot banking Trojan have developed a new Android app that can intercept one-time authorization codes sent to Internet banking customers via SMS or relatively more secure push notifications, and complete fraudulent transactions. The name TrickMo is a direct reference to a similar kind of Android banking malware called ZitMo that was developed by Zeus cybercriminal gang in 2011 to defeat SMS-based two-factor authentication.

Apple has emitted a bundle of security fixes ranging across its product lines. For the flagship iOS, the 13.4 update includes fixes for 30 security holes.

Recently, some of the biggest names in SaaS have experienced customer support data breaches. With data playing an important role in the success of customer support, companies must ensure information security is top of mind to build relationships and develop trust with customers.

Vulnerabilities that Videolabs recently addressed in its libmicrodns library could lead to denial of service and arbitrary code execution, Cisco Talos' security researchers warn. The libmicrodns mDNS resolver cross-platform library is used in the VLC media player for mDNS service discovery.

77% think employees have put data at risk accidentally in the past 12 months and 78% think employees have put data at risk intentionally. "Egress CEO Tony Pepper believes the findings show how IT leaders are resigned to the inevitability of insider breaches and don't have adequate risk management processes and technology in place."Given the sensitivity of the information they handle, the legal industry is one of the most at-risk sectors from both accidental and intentional insider data breaches.

A five-phase strategic and systematic approach to strengthen the resilience of organizations' current business models is key to business continuity during the coronavirus pandemic, according to Gartner. "Companies tend to have traditional business continuity strategies and plans that focus on the continuity of the resources and processes but omit the business model," said Daniel Sun, research vice president at Gartner.

According to data based from Omdia, there are now over 17.7 million 5G connections globally as of Q4 2019, which represents 329% growth over Q3 2019 - and is five million subscribers ahead of previous projections. "We truly had a great year in 2019, as 5G adoption has surpassed most forecasts. With the first year of 5G completed, 2020 is shaping up to be focused on the growth of new 5G devices, increasing coverage, increasing network densification, and probably the first 5G Stand Alone deployments," said Chris Pearson, President, 5G Americas.