Category Archives: Hack

Combatting the #Throwhack Threat: Why Legacy Issues Are Still Causing CISOs Problems

by Bharat Mistry

CISOs are regularly bombarded with breaking news on advanced nation state espionage campaigns and sophisticated cybercrime heists. From the ongoing machinations of the Kremlin-linked Pawn Storm group to the recently uncovered cyber-bank raid by the MoneyTaker gang, these threats tend to grab all the headlines. But IT security leaders will know that some of their biggest problems come from legacy threats: what we’re calling “Throwhacks”.

Unlike the popular social media trend “Throwback Thursday”, there’s nothing entertaining about this list of legacy security challenges. Organisations need to get a handle on these threats before they start worrying about hackers armed with advanced AI tools. Continue reading

UK Conviction Arises out of Trend Micro and NCA Partnership

by Trend Micro’s Forward-Looking Threat Research Team

On January 15, Goncalo Esteves from Essex, UK plead guilty on 3 charges of computer offenses under UK law:

  • 2 charges against Section 3A of the Computer Misuse Act 1990 (Making/adapting/supplying an article intended for use/to assist in the commission of a section 1 or 3 Computer Misuse offense)
  • 1 charge against Section 327(1) and Section 334 of the Proceeds of Crime Act 2002 (Concealing/disguising/converting/transferring/removing criminal property)

Continue reading

You Can’t Outsource Accountability: Uber Breach Highlights Firms’ Cloud Security Responsibilities

by Bharat Mistry

Consumers and cybersecurity professionals around the world have been stunned by Uber’s revelation that it paid hackers $100,000 to delete data on 57 million users stolen last year. There are many strands to the case, and more details are likely to emerge over time. But fundamentally it highlights the need for firms to secure their cloud environments as rigorously as anything on premise.

With the EU GDPR promising huge fines for firms that fail to suitably protect customer data, companies must realise that when it comes to the cloud, you simply can’t outsource accountability. Continue reading