The RISC Authority, with the support of the Cyber Risk and Insurance Forum (CRIF), has produced new guidance on Cyber, IT Risk and Insurance that will help insurers and business.
The guidance entitled ‘S28 Cyber crime: overview and sources of support’ provides information without jargon on the threats being faced by business and looks at the typical impacts seen.
Research and Intelligence Report- IBM MSS Threat Research Group
Reports are emerging of another credit card security breach this time concerning the Office supplies firm Staples.
Researchers from Google have announced the discovery of another major flaw in Web Security.
It has been called POODLE and follows hot on the heels of Bash and Heartbleed.
The vulnerability is rooted in SSL v3.0 that is used as part of the security framework used for encryption across the Internet.
Reports have been confirmed that over four billion records from 500 million addresses have been stolen by by a Russian group. From buying a set of stolen details on a Dark Web Site the gang was able to install malware on systems using both social media and email exploits. These infected systems were then used to expand the theft as their botnet grew through SQL injection attacks and other vulnerabilities enabling them to steal more data from more websites.
Verisign has published data on the nature and scale of Distributed Denial of Service Attacks (DDoS).
The Trends Report warns that DDos attacks are continuing to grow in terms of size and frequency and that companies lacking expertise and resources to defend themselves are particulalry vulnerable.