by Bharat Mistry
It’s that time of year again: on Tuesday the doors to Olympia will be flung open as London becomes the de facto centre of the global IT security industry for a few days. Yes, it’s Infosecurity Europe – one of the biggest and best attended events of its kind on the calendar. Trend Micro will be there as always, with a mountain of new research to share and experts on hand to explain why a layered, connected approach to cyber defence is the only effective way for organisations to battle modern threats.
A momentous year
It’s been an incident-filled year since the last Infosecurity Europe. Since June 2016, cybersecurity has broken even further into mainstream discourse, as hacking and data protection issues become major concerns for consumers, boardrooms and governments across the planet. We’ve had election hacking in the US and France, the release of alleged NSA exploits by the Shadow Brokers, the huge Vault7 CIA leaks, and most recently the WannaCry outbreak, to name but a few major events.
At Trend Micro, we always try to stay ahead of the curve, with the help of our 1,200-strong team of global TrendLabs researchers. A large part of their job is to investigate new areas cybercriminals may be looking to exploit, such as the Human Machine Interface (HMI) on SCADA systems. New research from the team reveals that many such systems are riddled with vulnerabilities, providing hackers with a wide variety of opportunities to infiltrate or disrupt. What’s more, HMI developers take on average 150 days to patch following disclosure. These systems control some of the most highly critical pieces of national infrastructure, including power stations and transportation networks, so the stakes couldn’t be higher.
We’ve also recently been appraising the security risks posed by third-party chat platforms. While they’ve become increasingly commonplace round the office, our latest piece of research, warns that the APIs on many of these platforms are open to abuse by cybercriminals. In fact, we found some examples of hackers actively turning these APIs into C&C servers to help their attack campaigns. We advise IT managers to ensure their teams are briefed and any non-essential use of such platforms is restricted.
At the show
Trend Micro experts will be on hand at the show to talk through recent research and answer any questions you might have; just come down to see us at Stand D25. Our Global VP of Security Research, Rik Ferguson, will also be taking part in a keynote panel debate with representatives from the National Cyber Security Centre and others. This extended session will zero in on the current threat landscape and strategies to combat the latest attacks.
As always, our belief is that a comprehensive layered approach to security is the only way to stay on top of the huge variety and volume of threats out there. It should feature a combination of approaches, from signature-based protection to behavioural analysis, whitelisting and high fidelity machine learning.
Each should complement the other but none will work in isolation – that’s why any approach must link such tools at the endpoint, network, hybrid cloud server and gateway. By sharing intelligence, they become greater than the sum of their parts and offer a fantastic opportunity for IT bosses to wrest the initiative from the black hats and finally get proactive with cybersecurity. See you at the show!
What: Infosecurity Europe 2017
Where: London Olympia, Stand D25
When: 6-8 June 2017
Also, get to the Keynote Stage early for Rik’s presentation: Risks, Threats & Adversaries: What (or Who) Should You Be Worried About?
06 Jun 2017, 13:55 – 15:25 Keynote Stage