Internet, Information Technology & e-Discovery Blog

Internet, Information Technology & e-Discovery Blog

Social changes brought about by the Internet & Technology

Category Archives: Cyber

Subscribe to Cyber RSS Feed

Cyber criminals will target IoT since by 2020 92% of all data will be in the cloud!

Posted in Cyber
Rest assured that cyber criminals read Cisco’s report that cloud usage will grow significantly based on the scope of “big data and associated Internet of Things” with expectations that cloud usage as of 2015 at about “3.9 zettabytes (ZB) per year…to 14.1 ZB per year by 2020.” The November 2016 Cisco report entitled “Cisco Global… Continue Reading

Guess what? Cyber threats are directed at ATMs!

Posted in Cyber, eCommerce
Business Insurance reported that “Cyber criminals have remotely attacked cash machines in more than a dozen countries across Europe this year, using malicious software that forces machines to spit out cash.”  The November 21, 2016 report entitled “Hackers target ATMs across Europe as cyber threat grows” cites Russian cyber security firm Group IB and Diebold… Continue Reading

About 75% of companies don’t have adequate Cyber Security Incident Response Plans (IRPs), so how Cyber Resilient is your Company? Or Law Firm?

Posted in Cyber, eCommerce
Of the 2,000 IT and IT security professionals surveyed by the Ponemon Institute “75% of respondents admit they do not have a formal cyber security incident response plan (CSIRP) that is applied consistently across the organization” and 51% rated cyber resilience as “very important or essential to achieving a strong security posture.”  The November 2016… Continue Reading

Artificial Intelligence (think IBM’s Watson) now directed to cybersecurity

Posted in Cyber
Infoworld reported that “IBM Security is currently in the middle of a year-long research project working with eight universities to help train Watson to tackle cybercrime.”  The November 15, 2016 article entitled “How IBM’s Watson will change cybersecurity” includes a reference to IBM’s Security Intelligence comments by Diana Kelley that “We need to make sure… Continue Reading

Hacker gets 45 months in jail for stealing encrypted personal data & launching cyber attacks

Posted in Cyber, Internet Access, Internet Privacy
A federal judge sentenced NullCrew hacker Timothy Justen French to prison for playing a “central role in an extensive, deliberate, and destructive hacking campaign that inflicted widespread and serious harm to businesses, governments, non-profits, and thousands of individuals”…which “ cyber-attacks caused at least $792,000 in monetary loss to victim companies, universities and governmental bodies.” On… Continue Reading

The Cyber Underground and what you need to know about the DarkNet Marketplaces

Posted in Cyber, eCommerce
The US recently joined  Operation Hyperion to “share criminal intelligence and collaborate on operations to combat transnational crime” with the Five Eyes Law Enforcement Group (FELEG), an international coalition of law enforcement agencies from Australia, Canada, New Zealand, and the United Kingdom.  On November 1, 2016 the FBI issued its “A Primer on DarkNet Marketplaces… Continue Reading

BUSINESS ALERT: Cyberattacks are directed at ERP systems since they are difficult to secure

Posted in Cyber, IT Industry
Ponemon Institute issued a report after it “surveyed 607 IT and IT security practitioners who are involved in the security of SAP” and that 58% “of respondents rate the difficulty of securing SAP applications as high and 65 percent of respondents rate their level of concern about malware infections in the SAP infrastructure as very… Continue Reading

BLACK HAT SURVEY: Employee Training is in the top 5 ways to avoid hacking!

Posted in Cyber, IT Industry
Thycotic took a survey of 250+ hackers at the August 2016 Black Hat conference and reported that “77% say no password is safe from hackers—or the government” which is hardly surprising. The “Black Hat 2016: Hacker Survey Report” included these comments about training: Extend IT Security Awareness Training The weakest link in most organization’s security… Continue Reading

New Cyber rules for DOD contractors may be creating new problems!

Posted in Cyber
Law360 reported that many experts are concerned that “companies who share cybersecurity incident information with a DOD contractor will be considered a third-party beneficiary of the DOD, with the ability to sue if confidential information is leaked or stolen, but that offers little solace to those who have their information stolen.” The October 20, 2016… Continue Reading

Can the G7 really protect the financial world from cybercrime?

Posted in Cyber, eCommerce
Reuters reported that the Group of Seven (G7) industrial powers (Britain, Canada, France, Germany, Italy, Japan and the US) “agreed on guidelines for protecting the global financial sector from cyber attacks following a series of cross-border bank thefts by hackers.”  The October 11, 2016 report entitled “G7 sets common cyber-security guidelines for financial sector” included… Continue Reading

“Top Secret” Electronic Records Stolen by NSA Cybersecurity Contractor!

Posted in Cyber, eCommerce
The New York Times reported that a cybersecurity contractor for the NSA (National Security Agency) was arrested based on allegations that “he stole and disclosed highly classified computer code developed to hack into the networks of foreign governments.”  The October 6, 2016 article entitled “N.S.A. Contractor Arrested in Possible New Theft of  Secrets” reported that… Continue Reading

GUEST BLOG: Can the FTC control the privacy of the IoT (Internet of Things)?

Posted in Cyber, eCommerce, Internet Access
My Guest Blogger Eric Levy is a senior attorney in Gardere’s Trial Practice Group who focuses on cyber security, PCI compliance, PII, eCommerce, and related complex litigation. Apparently IoT is leading the FTC (Federal Trade Commission), the government watchdog of privacy, one step closer to broadening the scope of what it believes falls within the definition of “personally… Continue Reading

Very likely that the cyberattacks against Southwest & Delta were directed your passenger data

Posted in Cyber, Internet Access
Darkreading reported that a recent cyber safety report to the Federal Aviation Administration (FAA) was based on a PriceWaterhouseCoopers’ survey of “85 percent of airline CEOs in the PwC survey cited cybersecurity as a major risk likely because of the very sensitive nature of passenger data and flight systems.”  The September 23, 2016 report in… Continue Reading

500 million Yahoo users compromised by cyberintrusion, but Yahoo doesn’t plan to provide credit monitoring!

Posted in Cyber, eCommerce
Reuters reported that Yahoo would likely not need to “provide them with credit monitoring services” even though Bob Lord (Yahoo’s CISO) posted “An Important Message About Yahoo User Security”: The account information may have included names, email addresses, telephone numbers, dates of birth, hashed passwords (the vast majority with bcrypt) and, in some cases, encrypted… Continue Reading

$1 trillion will be spent on Cybersecurity in the next 5 years!

Posted in Cyber, Internet Access
CSO recently predicted “a major uptick in cyber spending — to the tune of 12 to 15 percent year-over-year growth through 2021” in an article entitled “Cybersecurity spending outlook: $1 trillion from 2017 to 2021” which included these comments from the SANS Institute which were presented in February 2016: Tracking security-related budget and cost line… Continue Reading

Cyber criminals recognize security weakness at LinkedIn, Facebook, and Twitter

Posted in Cyber, eCommerce
Darkreading recently reported that LinkedIn confessed that “We don’t have a reliable system for identifying and counting duplicate or fraudulent accounts” and that “cyber criminals now weaponize social media sites and their data, leading to some of the biggest data breaches over the last few years.” The September 6, 2016 article entitled “Why Social Media… Continue Reading

Cyber Pain Points: Failure to get buy-in for Incident Response Plan (IRP) in the top 10!

Posted in Cyber, IT Industry
A recent report indicated that IRPs “are frequently developed from within departmental silos, for example, within the organization’s IT security function, and do not address the considerations of business units or cross functional areas needed to coordinate and operate together during a response. This not only leads to an uncoordinated response effort, but discourages buy-in… Continue Reading

How does FUD (Fear, Uncertainty, and Doubt) help businesses learn about cyber threat intelligence?

Posted in Cyber, eCommerce
No surprises in a recent report that “cybercriminals utilize all forms of intelligence to exploit the weakest link as an attack vector…” and as result “almost every business is a target for malicious cyber attacks and the need for cyber security is an important part of protecting an organization’s reputation and financial vitality.”  InfoArmor’s June… Continue Reading

HIPAA penalty of $5.5 million seems like a lot, but it’s only $1.375 per patient!

Posted in Cyber, IT Industry
With 4 million patient records exposed, this was the largest fine to date for breach of ePHI (electronic Protected Health Information) which included “demographic information, clinical information, health insurance information, patient names, addresses, credit card numbers and their expiration dates, and dates of birth.”  On August 4, 2016 the U.S. Department of Health and Human… Continue Reading

Delta Airlines – Cyberattack or power failure – seems a lot like Southwest’ alleged router failure?

Posted in Cyber, eCommerce
The New York Times reported “at least 858 cancellations and 7,359 delays across the global industry on Monday morning” in less than 5 hours based on a power outage at 2:30am EDT. But Delta’s story does not pass the smell test following Southwest Airlines’ recent claim of a single point of failure of a router.  In response… Continue Reading

Cybercriminal data breaches in Healthcare may exceed a whopping $6.2 billion!

Posted in Cyber, eCommerce, IT Industry
Ponemon reported that “over the past two years the average cost of a data breach for healthcare organizations is estimated to be more than $2.2 million. No healthcare organization, regardless of size, is immune from data breach.”  The “Sixth Annual Benchmark Study on Privacy & Security of Healthcare Data” study included this alarming information about… Continue Reading