Tag Archives: CLOUDSEC

As millions more records hit the dark web, CLOUDSEC offers best practice security advice

by Ian Heritage

The cybercrime economy has an insatiable appetite. It’s a beast that generates an estimated $1.5 trillion each year, feeding in part off stolen data grabbed in large-scale breaches. Over the past few years both organisations and consumers have arguably become desensitised to these, although with the advent of the GDPR there’s a major new incentive for boards to take security seriously. The latest incidents at CafePress and StockX serve as a depressing reminder that firms are still getting things wrong.

If you are an IT/security leader and need a refresher in current best practices for data security and incident response, Trend Micro’s CLOUDSEC conference next month could offer a great opportunity.

Focus on response
No organisation can expect to be 100% secure today. The odds are stacked too heavily in favour of the attacker. But they can be quick to react to a possible intrusion, blocking and kicking out the hackers before they’ve had a chance to impact the business. Yet both CafePress and StockX have come under criticism for their handling of the respective breaches.

In the case of online merchandise store CafePress, the breach of an estimated 23 million customers was first reported on breach notification site HaveIBeenPwned? in August, despitethe incident occurring back in February. It’s unclear how attackers broke into to the firm’s customer database, but it has been revealed that around half the passwords in the trove were protected by the weak SHA-1 algorithm. The firm’s sluggish approach to notifying its customers, coupled with its storage of passwords in a potentially crackable format, may have put them at extra risk.

In the case of StockX, a database of over 6.8 million user accounts is reportedly already being sold and distributed online. Username and password combinations are fetching as little as $2 and a dark web user has apparently already decrypted the MD5-hashed passwords. It’s fairly certain that these credentials, like those of the CafePress breach, will be used in automated credential stuffing attacks designed to crack open accounts with the same log-ins.

Lessons from the experts
While it’s certainly the responsibility of users to manage their passwords securely, via a password manager and/or 2FA, there are clearly things the firms in question could have done better to reduce the impact of the breaches. Under GDPR rules, notification must happen within 72-hours, for example. Regulators would also take a dim view of firms using weak encryption to protect key data.

Best practice security evolves over time, so it always pays for CISOs to stay abreast of the current recommended advice. That’s where conferences like CLOUDSEC can come in handy, by offering an opportunity to hear from security leaders, industry practitioners and global experts. This year’s event features keynotes from CISOs at Thomson Reuters, Oxford University and Swedish giant Stena alongside Trend Micro experts, a former White House CIO and the UN’s Cybercrime and Cryptocurrency Advisor.

Throughout there’ll be a focus on real-life examples and case studies, to inform and educate attendees about the latest developments in the threat landscape, and how their peers have been able to successfully mitigate cyber risk.

Make sure you book your place at this year’s event today!

What: CLOUDSEC 2019
When: 13 September 2019
Where: Old Billingsgate Market, London

As North Korean crypto-theft ramps up, it’s time for CISOs to prepare for a new reality at CLOUDSEC

by Ian Heritage

It has just emerged that North Korean hackers have made an estimated $2 billion from a long-running campaign targeting banks and cryptocurrency exchanges. The leaked UN report detailing the scheme to make money for the hermit nation’s illegal weapons programme is food for thought for CISOs everywhere. It’s proof of a new reality: that organisations must counter the threat from nation states as well as organised cyber-criminals.

At Trend Micro’s CLOUDSEC conference next month, UN Office on Drugs and Crime (UNODC) cybercrime and crypto-currency advisory Alexandru Caciuloiu will be on hand to share his wisdom.

Continue reading

Hear about the latest in cyber policing at CLOUDSEC

by Ian Heritage

Few people could dispute the vital role government strategy plays in efforts to tackle cybercrime and state-sponsored attacks. The security industry also plays a crucial part in developing products and generating key intelligence to keep organisations safe. But there’s a third essential pillar to these efforts: law enforcement. And the good news is, cross-jurisdictional operations are starting to generate significant results. But recent news from within the EU has shown us that education and societal intervention is just as important as arresting hardened criminals.

Industry professionals wanting to find out more about this valuable work should get down to Trend Micro’s annual CLOUDSEC event in London next month, where leading figures from law enforcement will be sharing their thoughts and expertise.

Arrests and interventions
Global police have been on a roll over the past couple of years, dismantling thriving dark web marketplaces like AlphaBay, Hansa, Wall Street Market and Silkkitie and disrupting major cybercrime rings like Rex Mundi. However, in Europe, there’s a potentially even more important operation currently being run.

The Hack_Right initiative isn’t designed to track down and arrest suspected cyber-criminals, but instead to step in to prevent first-time-offenders becoming serial hackers. It works quite simply: when police spot a possible cyber crime, they visit the suspect and explain what happened – offering the culprit a type of community service rather than pushing them towards the criminal justice system. In this way, the individual gets 10-20 hours of ethical hacking training and help and advice on possible career paths or further education.

It’s a remarkably mature and progressive approach to policing reflective of the fact that the average age of a convicted cyber-criminal is just 19, according to Dutch cyber police. So far the UK’s National Crime Agency (NCA), which is running the programme along with its counterparts in the Netherlands, has already spoken with 400 youngsters. It’s proof of the vital role law enforcers can play in providing a deterrent to would-be offenders. Time will tell how well it works, but it’s worth a shot: the economics of cybercrime and the ease with which tools and know-how can be bought on the dark web mean there will always be a lure for budding black hats.

Focus on policing at CLOUDSEC
An increasingly important part of the CISO’s role is to co-ordinate effectively with law enforcement. That may be in the event of a major cybersecurity breach, where time is of the essence in terms of incident response. Or it could be during outreach and education programmes run by the police themselves. Whatever the cause, it makes sense to get familiar with how policing works in the high-tech crime prevention space.

That’s where CLOUDSEC comes in. Trend Micro’s annual event in September will feature an impressive roster of speakers from law enforcement. There’s former head of the UK’s Police National Cyber Crime Unit, Charlie McMurdie; UN cybercrime advisor, Alexandru Caciuloiu; and others to be announced.

Make sure you reserve your place today!

What: CLOUDSEC 2019
When: 13 September 2019
Where: Old Billingsgate Market, London

Get the low-down on nation state threats and government cybersecurity at CLOUDSEC

by Bharat Mistry

The cyber-threat facing firms today has never been more diverse. Organisations once relatively insulated from state-sponsored activity are increasingly drawn into the fight for geopolitical advantage, whether they run critical national infrastructure, hold sensitive data on targeted individuals or merely have the misfortune to get in the way. That makes it more important than ever to ensure you have the awareness and capabilities to manage risk effectively for your organisation.

Trend Micro’s upcoming CLOUDSEC conference is a great opportunity to maximise both. At this year’s show in September, we have just added former White House CIO and cybersecurity expert Theresa Payton to an already impressive roster of speakers.

Caught in the middle
There was a time when nation states cyber operatives only went after one other. Sadly, despite a US-China pact in 2015 that promised to maintain this dynamic, things aren’t working out that way. Countries are on the prowl for IP which can help their companies gain a global advantage; they’re looking for sensitive information to blackmail individuals; they’re searching for ways to generate profits to grow the nation’s wealth; and they’re mapping and sabotaging critical infrastructure. The current furore over providers of 5G networks highlights just how strategic crucial technology has become to national interests and how important cybersecurity is to financial and social stability.

This matters, because increasingly it is average, ordinary firms that are caught in the middle. They may be running CNI. They may hold data targeted by hackers. But they may also be targeted not in their own right, but because they’re part of a high value supply chain. Law firms are particularly at risk because of information their clients may hold. Managed service providers have also been hit in the past. Even hotel chains could be at risk if hackers want to target individuals staying there. Then there are the more scattergun attacks, like WannaCry and NotPetya, that show no organisation is safe from state-sponsored threats.

CLOUDSEC 2019
This is just one part of a much bigger picture, of course. Financially motivated cybercrime represents a massive threat, as does, on a smaller scale, the publicity-hungry sniping of hacktivists. But in order to respond effectively, CISOs need the same things: accurate intelligence, and information on best practice response strategies.

At CLOUDSEC 2019 in September, we’ve lined up a host of world-leading experts in their field to share their insight. The latest is former White House CIO, Theresa Payton. Now a cybersecurity CEO, Theresa will reveal to attendees what they need to know today and look out for tomorrow in the ongoing battle against cybercrime. Crucially, she’ll also be lifting the lid on her time in government to share insight on how cybersecurity is managed at the very highest levels.

Now in its fifth year, CLOUDSEC is bigger and better than ever before. Also lined up to speak are: Thomson Reuters Senior Director, Security Platforms and Engineering, Frank Thomas; Stena AB CISO, Magnus Carling; United Nations cybercrime expert, Rob Gilbert; and Trend Micro experts including VP of Security Research, Rik Ferguson, and Director of Forward Looking Threat Research, Rob McArdle.

We’re looking forward to seeing you at the show.

What: CLOUDSEC 2019
When: 13 September 2019
Where: Old Billingsgate Market, London