Your monthly update of ICT continuity news and information

NOTE: If you cannot read this newsletter properly visit www.continuitycentral.com/ictnewsjune2021.html

FEATURE ARTICLES

Three best practices for mitigating digital third-party risks
As businesses continue to evolve in response to COVID-19, rapidly moving towards digital transformation, there’s a risk they’re exposing themselves to more third-party risk than is necessary. Aaron Dobie suggests three steps that can help mitigate some of these risks.
Read the article
• World

A question of integration: the importance of incorporating cyber security into operational resilience strategies
To achieve effective operational resilience firms must make a significant strategic shift, adopting an integrated approach to addressing operational resilience and cyber security, rather than seeing them as two disparate functions, says Guy Warren…
Read the article
• UK / World

How will ransomware attackers respond to the Colonial Pipeline ransom recovery?
The FBI has announced that it successfully seized criminal proceeds from a bitcoin wallet that DarkSide ransomware actors used to collect a cyber ransom payment from Colonial Pipeline. The question that the ransom recovery raises is how will ransomware attackers respond?
Read the article
• World

Flash drive shortage forces new thinking about enterprise storage: how to avoid critical issues
With flash media inventories depleted and the cost of drives increasing rapidly, enterprises have been forced to pivot to meet their need for capacity and performance. Experts at StorONE have offered advice for organizations to help ensure that the shortages don’t result in mission critical issues…
Read the article
• World

What senior executives need to know about cyber breach management
Senior executives are justifiably concerned about cyber risks, but what involvement should they have in order to help make the business more resilient and a recovery more successful? Colin Jeffs MBCI explains the difference having an overall strategy for resilience, sponsored at board level, can make...
Read the article
• UK / World

The Colonial Pipeline ransomware attack: views from various cyber security experts
Over the weekend of 8th-9th May 2021, a cyber criminal group took one of the largest US fuel pipelines offline with a ransomware attack against the operator Colonial Pipeline. Cyber attacks on critical infrastructure have been on the risk registers of many nations and organizations and this attack shows how potentially damaging such incidents can be. In this article various cyber security experts give their thoughts on the attack…
Read the article
• US / World

Cyber security is in denial, that's why it needs the Lean Six Sigma approach
If most businesses were honest, they would admit that they don’t have a full picture when it comes to understanding what threats they face from cyber attacks. That’s why security leaders need to take lessons from the corporate world and approach cyber security through a new Lean Six Sigma lens says Miles Tappin.
Read the article
• World

NEWS ARTICLES

Link11 identifies new wave of DDoS extortion campaigns
The Link11 Security Operations Center (LSOC) has recently observed a sharp increase in ransom distributed denial of service (RDDoS or RDoS) attacks. Enterprises from a wide range of business sectors are receiving extortion e-mails from the sender Fancy Lazarus demanding 2 Bitcoins (approx. 66,000 euros).
Read the article
• World

60 percent of organizations would consider paying in the event of a ransomware attack
Despite the Director of the FBI, the US Attorney General and the White House warning firms against paying cyber-related ransoms, 60 percent of organizations have admitted they would make a payment in the event of a successful ransomware attack according to new research from the Neustar International Security Council (NISC).
Read the article
• Various

20 percent of US and UK manufacturers were victims of a cyber attack in 12 month period
1-in-5 manufacturing companies in the US and UK have been victims of a cyber attack in the last 12 months, according to the 2021 Manufacturing Cybersecurity Threat Index released by Morphisec.
Read the article
• US / UK

Corporate and cloud infrastructures more at risk than ever from expanded attack surfaces: report
Zscaler, Inc., has published ‘Exposed’, a global report on the state of corporate attack surfaces. Based on data sourced between February 2020 and April 2021, the report provides a look at the impact of attack surface exposure during the COVID-19 pandemic.
Read the article
• World

Apathy towards system updates is putting UK organizations at risk
25 percent of UK employees have previously had a dispute with IT staff about the importance or frequency of updating their work devices. Surprisingly, UK IT teams tend to agree with such demands and let 75 percent of staff skip installing updates on certain software or the OS. This was revealed in a study commissioned by Kaspersky to explore workers’ attitudes and habits toward updates.
Read the article
• UK

Multi- and hybrid-cloud infrastructure drive security and management challenges
OpsCompass has announced the results of a report it conducted on cloud security and management challenges. The ‘2021 State of Cloud Security Posture Management Report’ is based on survey responses from 253 full-time, US-based, IT professionals who develop, and either deploy or manage enterprise cloud applications or infrastructure.
Read the article
• North America

Many security leaders believe that employees have picked up bad cyber security habits since working remotely
A new report from Tessian reveals that a majority of IT leaders (56 percent) believe that their employees have picked up bad cyber security behaviors / behaviours since working from home.
Read the article
• US / UK

DNS attacks on the rise finds 2021 Global DNS Threat Report
EfficientIP has announced the results of its 2021 Global DNS Threat Report. The annual research, which was conducted in collaboration with IDC, sheds light on the frequency of the different types of DNS attack and the associated costs for the last year throughout the COVID-19 pandemic.
Read the article
• World

Positive Technologies uncovers serious threats to industrial control systems worldwide
Positive Technologies experts have identified 10 vulnerabilities in the CODESYS automation software for industrial control systems. Some are of high and critical severity. CODESYS has fixed the vulnerabilities and released related security advisories.
Read the article
• World

ISACA survey: only a third of US organizations say they are highly prepared for a ransomware attack
In the aftermath of the Colonial Pipeline attack, ISACA polled more than 1,200 members in the United States and found that 85 percent of respondents think that their organization is at least somewhat prepared for a ransomware attack, but just 32 percent say their organization is highly prepared.
Read the article
• US

Report reveals that two-thirds of CISOs feel unprepared to cope with a cyber attack
Proofpoint has released its inaugural 2021 Voice of the CISO report which explores key challenges facing chief information security officers (CISOs) after an unprecedented twelve months.
Read the article
• World

Ransomware report highlights how sophisticated double extortion attacks are causing significant business disruption
Zscaler, Inc., has published its new Ransomware Report featuring analysis of key ransomware trends and details about the most prolific ransomware actors, their attack tactics and the most vulnerable industries being targeted.
Read the article
• World

DDoS report highlights attack trends including increased sophistication, size, and frequency
Corero Network has published the latest edition of its annual DDoS Threat Intelligence Report that compiles the latest trends, observations, predictions, and recommendations based on DDoS attacks against Corero customers during 2020.
Read the article
• World

‘The next great financial crisis could come from a cyber attack’ says DFS report
The New York State Department of Financial Services (DFS) has issued a report into the SolarWinds cyber attack, saying that the incident shows that a cyber attack could be the root cause of the ‘next great financial crisis’.
Read the article
• US

Modernising data protection, backup, and disaster recovery are top IT priorities
Zerto has published ‘The State of Data Protection and Disaster Recovery Readiness: 2021’, a survey based paper written by IDC and sponsored by Zerto.
Read the article
• World

Study finds strong interest in zero trust strategies for cyber security improvement
Enterprise Strategy Group (ESG) has released new research that found, despite the challenges posed by the pandemic, most organizations have either pressed forward as planned or accelerated their zero trust initiatives.
Read the article
• World

Report highlights how the pandemic has accelerated the need for unified endpoint security
BlackBerry has issued a new report with survey findings that recognise the security challenges organizations are currently facing and the global need for a better security solution to protect enterprises and their employees and clients.
Read the article
• World

CALL FOR PAPERS

Written a relevant article or white paper? We'd like to consider it for publication on Continuity Central. Simply e-mail editor@continuitycentral.com

You have subscribed to this newsletter. To unsubscribe visit:
http://www.continuitycentral.com/index.php/unsubscribe or e-mail webmaster@continuitycentral.com

Read our privacy policy at https://www.continuitycentral.com/index.php/privacy-and-cookies

Continuity Central is a registered trademark