For all the panic it caused, WannaCry looks finally to have been contained by organisations round the globe. But this isn’t the time to forget about it and move on. There are valuable lessons to be learned about this attack, why it was so successful and what can be done to prevent it happening again. The unpalatable truth is that many of those organisations caught out by WannaCry earlier this month could face punitive fines if the same kind of thing happens again in a year’s time.
That’s right: the EU General Data Protection Regulation (GDPR) is coming, adding a whole new level of urgency to firms realising they need a major cybersecurity overhaul after WannaCry. Continue reading →
We’ve been talking about the importance of elevating cybersecurity to the boardroom for decades. And despite the growing number of errant companies out there suffering high profile data breaches over the years, there are many CEOs who still don’t get it. That’s why we were interested to read a new piece of research linking serious cyber incidents for the first time to share price performance.
It revealed that severe breaches on average cost public companies 1.8% of their value, running into £120 million for a typical FTSE100 firm. That should be enough to make any board sit up and take notice, and begin plans to implement effective layered security to mitigate cyber risk.
We all know the job of the under-pressure IT boss is getting harder by the day. And as recent revelations from WikiLeaks have shown us, it’s not being made any easier by those institutions nominally designed to keep us safe. With the likes of the CIA allegedly actively developing exploits, the threat landscape is certainly broader and more complex than it has ever been, and that makes mitigating information security risk all the more challenging. That’s why Trend Micro runs events like yesterday’s TECHDAY. They offer a great opportunity for IT practitioners to learn from some of the leading figures in the industry, as well as network with their peers.
Interestingly, some of the key take-aways for Trend Micro after the event were the number of attendees who ranked user education as their top challenge for the year ahead. Continue reading →
The threat landscape can move pretty fast – often outpacing the ability of security professionals to keep up. The black hats always have the advantage of surprise. They’re more agile, and increasingly well resourced thanks to a darknet stocked with all the tools and techniques they need to launch attacks. Given the size of the challenge, one of the best chances we have of mounting an effective response is by sharing information. That can work well between organisations. But it can also be done very effectively between experts on the vendor side and security professionals.
That’s why we’re delighted that our VP Security Research Rik Ferguson will be on hand at Cloud Expo Europe in London later this month to share his wisdom on two of the biggest threats facing firms this year: ransomware and Business Process Compromise (BPC). Continue reading →