Your monthly update of ICT continuity news and information

FEATURE ARTICLES

NOTE: If you cannot read this newsletter properly visit www.continuitycentral.com/itcnewsfeb2020.html

Daisy

Overwhelmed by data? Why organizations need to rethink their approach
Peter Ruffley explains how there is an urgent need for businesses to become savvier in how they store and move data. The best way to future proof a business is to focus on mission critical data, rather than collecting everything under the sun.
Read the article
• UK / World

A four-step guide to engineering privacy into any system
Addressing data privacy and protection risks starts with system design and engineering. Nehal Maniar looks at four steps that need to be taken whilst attempting to marry system optimisation and data protection.
Read the article
• World

ClearView

How could Brexit impact UK disaster recovery strategies in 2020?
Eltjo Hofstee looks at some of the possible impacts that Brexit could have on UK organizations and the way in which they manage and provision disaster recovery. Discussions about GDPR between the UK and the EU will be crucial to determining a way forward…
Read the article
• UK

Comments on the Travelex ransomware incident
As has been widely reported, the Travelex foreign exchange company has experienced a long-running business continuity incident due to cyber criminals using ransomware to obtain control over Travelex IT systems. In response to the incident Continuity Central has been gathering comments from cyber resilience providers…
Read the article
• World

Assurance Software

Look before you leap: a guide to resilient hybrid cloud migration
John Young highlights some of the potential pitfalls that organizations can experience when migrating to hybrid cloud environments and suggests areas that need to be considered to ensure that resilience takes centre-stage.
Read the article
• UK / World

What 2020 technology developments should business continuity managers be looking out for?
Frank Jablonski looks ahead to 2020 and highlights emerging technological developments that will impact organizations and the way that IT-related services are provided.
Read the article
• World

NEWS ARTICLES

Capital Continuity

Majority of enterprises found to be ill-equipped to detect and respond to PKI degradation or breaches
Keyfactor and Ponemon Institute have released the 2020 edition of ‘The Impact of Unsecured Digital Identities’, a benchmark report exploring enterprises’ ability to manage increasing numbers of cryptographic keys and digital certificates securing network connections.
Read the article
• US / World

DDoS report reveals that the complexity and volume of attacks continues to grow
Link11 has released findings from its annual DDoS Report, which revealed a rising number of multivector and cloud computing attacks during 2019.
Read the article
• World

‘Cyber-complacency’ is widespread in UK organizations finds new study
A new Kaspersky study has lifted the lid on the scale of ‘cyber-complacency’ amongst UK businesses. The study revealed that many organizations are failing to take the necessary steps to prevent data breaches, despite many respondents acknowledging they would impact revenue and customer trust.
Read the article
• UK

Risk Logic

Failed to fix the Citrix software vulnerability? Your internal network can be breachable within a minute
A month and a half after Positive Technologies released its overview of a critical vulnerability in Citrix software, one out of every five companies have still not taken any action to fix this vulnerability. This is evident from threat intelligence from Positive Technologies.
Read the article
• World

Organizational cyber threat intelligence (CTI) activities are maturing: SANS survey
Cyber threat intelligence (CTI) has evolved from small, ad hoc tasks performed disparately across an organization to robust programs with their own staff, tools and processes that support the entire organization, according to the SANS Institute 2020 CTI Survey.
Read the article
• US / World

Third Annual State of Cyber Resilience study published
Despite higher levels of investment in advanced cyber security technologies over the past three years, less than one-fifth of organizations are effectively stopping cyber attacks and finding and fixing breaches fast enough to lower the impact, according to a new report from Accenture.
Read the article
• World

eBRP

Five cyber security trends for 2020
BSI’s global centre of excellence for Cybersecurity and Information Resilience has forecast five key trends across the cyber security landscape for 2020.
Read the article
• World

State of Endpoint Security Risk study shows that 80 percent of successful breaches are from zero-day exploits
A new study released by Ponemon Institute finds that organizations are not making progress in reducing their endpoint security risk, especially against new and unknown threats.
Read the article
• World

Cyber security and resiliency report issued by the SEC Office of Compliance Inspections and Examinations
The Securities and Exchange Commission Commission's Office of Compliance Inspections and Examinations (OCIE) has issued a report providing observations related to cyber security and operational resiliency practices obtained from examinations taken by market participants.
Read the article
• US

McAfee report claims that enterprises are losing control of data in the cloud
McAfee has released a new research study, ‘Enterprise Supernova: The Data Dispersion Cloud Adoption and Risk Report’, which highlights critical gaps for enterprise security.
Read the article
• World

Predictions for data protection and storage trends…
Scality predicts that data storage will become massively decentralized in 2020 and hybrid cloud will become the defacto standard for organizations as they seek ways to manage and use data efficiently and intelligently.
Read the article
• World

The rise of cyber warfare: 2019 sees significant increase in companies reporting attacks attributed to foreign governments
Radware has released its 2019-2020 Global Application and Network Security Report, which states that more than one in four respondents attribute attacks against their organization to cyber warfare or nation-state activity. In 2018, 19 percent of organizations believed they were attacked by a nation-state.
Read the article
• World

The top three data protection predictions to watch in 2020
During 2019 the data protection space faced a number of challenges. Ransomware attacks soared, with a 118 percent increase in attacks; and data protection as a service (DPaaS) deployment rose to dominate many business continuity and disaster recovery strategies.
Read the article
• World

Cyber moves to the top of global business concerns: Allianz Risk Barometer 2020
For the first time, cyber incidents rank as the most important business risk globally in the Allianz Risk Barometer, relegating perennial top peril business interruption (BI) to second place. Awareness of the cyber threat has grown rapidly in recent years; seven years ago, it ranked only 15th in the Risk Barometer.
Read the article
• World

Smaller organizations must focus on basic cybersecurity hygiene this year…
The latest cyber security innovations may be attractive, but many small and medium sized organizations are still failing to implement basic protection and controls, leaving them vulnerable to what should be trivial and easily prevented attacks.
Read the article
• UK / World

Amazon AWS warns certain users to update certificates or face lost connectivity
Amazon AWS has told users of Amazon Aurora, Amazon Relational Database Service (RDS), or Amazon DocumentDB (with MongoDB compatibility) that are taking advantage of SSL/TLS certificate validation when connecting to database instances that it is necessary to ‘download and install a fresh certificate, rotate the certificate authority (CA) for the instances, and then reboot the instances’.
Read the article
• World

Still running Windows 7 on corporate systems? Your risk of ransomware attack is about to increase…
PCs still running Windows 7 when it passes its end of life date on the 14th of January will be significantly more at risk of ransomware, Veritas Technologies has warned. According to Veritas, 26 percent of PCs are expected to still be running the Microsoft software after support for patches and bug fixes ends.
Read the article
• World

Fortress AS publishes operational resilience ‘2020 Trends/ Predictions Report’
Fortress Availability Services has published a report which focuses on the top five key trends that the company expects will be seen in operational resilience in 2020 and beyond.
Read the article
• UK

Cybersecurity and Infrastructure Security Agency issues a warning to US organizations on Iran cyber attack threat
The US Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert to warn US organizations about the imminent threat of cyber attacks sponsored by the Iranian government and military.
Read the article
• US

Organizations fail to protect keys and certificates as effectively as usernames and passwords
Venafi has released the results of a study comparing security controls for human and machine identities. The study evaluated responses from over 1,500 IT security professionals from the US, UK, France, Germany and Australia across a range of company sizes and industries.
Read the article
• Various

2020 will be the year of the cloud breach predicts ExtraHop
ExtraHop has published its predictions for the cybersecurity and technology industries in 2020, predicting that 2020 will see a major information leak from a cloud provider.
Read the article
• World

How many organizations have converged physical security, cyber security, and business continuity functions?
ASIS International has published the results of a survey which looks at whether organizations in United States, Europe, and India are converging their protective functions.
Read the article
• Various

US Council on Foreign Relations survey: a disruptive cyber attack on critical infrastructure is the top concern for 2020
The threat of a highly disruptive cyber attack on US critical infrastructure is the top-ranked concern for the second straight year, according to the Council on Foreign Relations’ (CFR) twelfth annual Preventive Priorities Survey (PPS).
Read the article
• US /World

New NIST publication provides guidance on resilient interdomain traffic exchange
NIST’s latest document, ‘Special Publication (SP) 800-189, Resilient Interdomain Traffic Exchange: BGP Security and DDoS Mitigation’, provides technical guidance and recommendations for technologies that facilitate resilient interdomain traffic exchange (RITE).
Read the article
• US / World

CALL FOR PAPERS

Written a relevant article or white paper? We'd like to consider it for publication on Continuity Central. Simply e-mail editor@continuitycentral.com

You have subscribed to this newsletter. To unsubscribe visit:
http://www.continuitycentral.com/index.php/unsubscribe or e-mail webmaster@continuitycentral.com

Read our privacy policy at https://www.continuitycentral.com/index.php/privacy-and-cookies

This email was from: Portal Publishing Ltd, PO Box 1393, Huddersfield, HD1 9TN, UK

Continuity Central is a registered trademark