As we predicted in 2016, cyberpropaganda is a major growth area for cybercriminals. Per that prediction, “The rise in the Internet penetration has opened the opportunity for invested parties to use the Internet as a free-for-all tool to influence public opinion to go one way or another.” Today, we know this through Wikileaks and self-proclaimed fake news websites. Continue reading →
It’s that time of year again: on Tuesday the doors to Olympia will be flung open as London becomes the de facto centre of the global IT security industry for a few days. Yes, it’s Infosecurity Europe – one of the biggest and best attended events of its kind on the calendar. Trend Micro will be there as always, with a mountain of new research to share and experts on hand to explain why a layered, connected approach to cyber defence is the only effective way for organisations to battle modern threats. Continue reading →
With all the hype surrounding WannaCry over the past week, it’s easy to forget that organisations are facing a far broader range of threats than ransomware. Targeted attacks on critical infrastructure, particularly SCADA systems, have been on the radar since Stuxnet, but as the attacks on the Ukrainian power grid have shown, they’re still a major cause for concern.
That’s why Trend Micro compiled its latest report, Hacker Machine Interface, focusing specifically on the Human Machine Interface (HMI) displays present in most SCADA set-ups. Unfortunately, we found that a lot more needs to be done to architect more secure systems and to ensure patches are produced and applied swiftly. Continue reading →
For all the panic it caused, WannaCry looks finally to have been contained by organisations round the globe. But this isn’t the time to forget about it and move on. There are valuable lessons to be learned about this attack, why it was so successful and what can be done to prevent it happening again. The unpalatable truth is that many of those organisations caught out by WannaCry earlier this month could face punitive fines if the same kind of thing happens again in a year’s time.
That’s right: the EU General Data Protection Regulation (GDPR) is coming, adding a whole new level of urgency to firms realising they need a major cybersecurity overhaul after WannaCry. Continue reading →