Home Blog Page 191

What is the point of cybersecurity?

Contributor
-
0
What is the point of cybersecurity?
  • Even though breaches and attacks can still happen, investing in cybersecurity remains crucial for businesses. 
  • It’s about mitigating risks, protecting customer trust, preserving your reputation, and ensuring your business can continue without major disruptions. 

I apologise if the title of this article sounds a little hopeless, perhaps even a little despairing. This was a question I posed on a couple of my social media profiles where I interact with many specialists in the field, LinkedIn and Twitter. 

This wasn’t indicative of a looming existential crisis; rather it was prompted by the realisation that we, vendors and practitioners alike, are a very long way from consensus on this foundational consideration.

If we do not have a clear and widely agreed sense of the overarching goal we are trying to achieve, or indeed the motivations and stakeholders that we should address, then we are doomed forever to be firefighting at best, or even worse actively working at odds with the goals of our colleagues and our employers.

Securing the environment

Rik-Ferguson-VP-of-Security-Intelligence-Forescout

If you ask the UK National Cyber Security Centre (NCSC), the official response is “Cybersecurity’s core function is to protect the devices we all use (smartphones, laptops, tablets and computers), and the services we access – both online and at work – from theft or damage. It’s also about preventing unauthorised access to the vast amounts of personal information we store on these devices, and online.

Cybersecurity is important because smartphones, computers and the internet are now such a fundamental part of modern life, that it’s difficult to imagine how we’d function without them. From online banking and shopping, to email and social media, it’s more important than ever to take steps that can prevent cyber criminals from getting hold of our accounts, data, and devices”. 

This all seems slightly myopic and isolated, surely the point of cybersecurity is something greater than some amorphous concept of device, service, and data protection! That is what we do, the greater question is why. Isn’t the goal we aspire to a loftier one? Shouldn’t it be?

So, what did the community response to this entirely open question look like? Well, first it certainly confirmed my feeling that we are far from consensus.

 The responses ranged from mildly concerned for my well-being, to deep consideration for the question at hand, and of course, at least one person used ChatGPT to answer the question!

Some of the more incisive observations included “to go from uncertainty to a degree of certainty”, “To enable the business to achieve its mission effectively by minimising the impact from adversarial interference”, “To manage digital risk in a way that most positively impacts the business” and the amazingly concise “Mitigate risk – Increase survivability.”

These responses, while necessarily brief are getting much closer to the heart of the response.

For me, the point of cybersecurity is to create a secure and trustworthy digital environment, protecting individuals, businesses, and governments from the risks and threats associated with the use and misuse of technology.

Key considerations

Ultimately, cybersecurity empowers enterprises to embrace technology with resilience, secure their future, and thrive in the dynamic digital landscape.

When building a cybersecurity function, organisations must prioritise key considerations: assessment and management of risks, the establishment of a comprehensive security framework, and recruitment of skilled personnel. 

The adoption of appropriate technologies, cultivation of employee awareness, development of robust incident response plans, continuous monitoring, and improvement of defences, and enabling effective collaboration and information sharing are also crucial. 

This holistic approach ensures proactive protection, efficient response, and ongoing adaptation to the evolving threat landscape. 

By investing in these pillars, organisations empower their workforce to become a line of defence, detect and respond to incidents effectively, and cultivate resilience. 

Concrete steps for CISOs

Here are some concrete steps for CISOs to consider that help maximise the efficiency of a cybersecurity function aligned to business requirements:

  • Tailor cybersecurity to business needs: Understand the unique risks, compliance requirements, and operational objectives of the organisation. Align cybersecurity efforts accordingly to ensure that security measures are relevant, effective, and proportional to the specific business context.
  • Develop a risk-based approach: Prioritise cybersecurity efforts based on an accurate asset registry, and dynamic risk assessments of the potential impact on the business. Focus resources on identifying and protecting assets, systems, and processes that are essential for business operations, customer trust, and regulatory compliance.
  • Foster collaboration between cybersecurity and business teams: Establish bi-directional communication channels between cybersecurity teams and business units. Encourage collaboration and involvement from stakeholders to understand their specific needs and integrate security seamlessly into their business processes.
  • Implement automation and intelligent technologies: Leverage automation, artificial intelligence, and machine learning technologies to enhance the efficiency of cybersecurity operations. Automate routine tasks, streamline workflows and utilise intelligent analytics to identify threats, prioritize alerts, and respond swiftly.
  • Clarify roles and responsibilities: Define cybersecurity-related roles and responsibilities within the cybersecurity function and across the organisation. Establish accountability for cybersecurity measures and ensure that individual employees understand their role in maintaining a secure environment. Encourage cybersecurity champions across business functions.
  • Continuously monitor and measure performance: Implement monitoring systems and key performance indicators (KPIs) to track the effectiveness and efficiency of cybersecurity measures. Regularly review and assess performance data to identify areas for improvement and optimise resource allocation.
  • Stay abreast of evolving threats and technologies: Maintain an up-to-date understanding of emerging cyber threats, trends, and technologies relevant to the business. Regularly assess the efficacy of existing security measures and adapt them as needed to address evolving risks and industry best practices.
  • Invest in employee training and awareness: Equip employees with the knowledge and skills necessary to support cybersecurity efforts. Regularly provide training on safe practices, emerging threats, and incident response procedures to create a security-conscious workforce that actively contributes to the protection of business assets.

Proactive approach

These strategies help organisations to maximise the effectiveness of their cybersecurity function whilst ensuring that it remains closely aligned with business requirements. This enables optimal resource allocation, and a strong security posture supporting the overall success of the organisation.

Even though breaches and attacks can still happen, investing in cybersecurity remains crucial for businesses. It’s about mitigating risks, protecting customer trust, preserving your reputation, and ensuring your business can continue without major disruptions. 

By demonstrating a commitment to proactive protection and responsible data management, you not only fulfil legal and ethical responsibilities but also gain a competitive edge in an ever-evolving digital landscape. 

Remember, cybersecurity is an ongoing journey, so keep adapting and improving to stay ahead of the threats and safeguard what matters most.

  • Rik Ferguson is the Vice President of Security Intelligence at Forescout.

Related Posts:

Effective DDoS mitigation services is key to ward off threats

Contributor
-
0
Effective DDoS mitigation services is key to ward off threats
  • From the tenant’s perspective, a DDoS mitigation service makes it possible for even small businesses to tap into high-end features such as machine learning, automation and rapid mitigation.
  • Data centre and colocation providers are concerned not only about the cost of intensifying DDoS attacks, but also about lost business and reputational damage.

Data centre and colocation providers need to be able to distinguish a sudden flood of fraudulent requests from legitimate usage in real time, at massive scale, to filter out malicious traffic without disrupting their customers’ normal business operations. 

For commercial data centre operators, business is good. Although the future of the industry is looking bright, there are some threats on the horizon. The cost of downtime continues to grow.

The Uptime Institute found one in four data centre incidents of downtime exceed exceed $1 million

As DDoS attack methods become more sophisticated, effective, and frequent, data centre operators need to bank on mitigation.

A recent survey by A10 Networks and Gatepoint Research found that senior decision makers at commercial data centres are under siege by cyber criminals.

Data centre and colocation providers are concerned not only about the cost of intensifying DDoS attacks, but also about lost business and reputational damage.

Dissatisfied with their current data centre security and DDoS defence capabilities, many are seeking better ways to address the threat—and an increasing number want to extend that protection-as-a-service to their tenants as well.

Growing malicious traffic

As disclosed in the latest A10 Networks DDoS Threat Report, DDoS threats are soaring.

The number of tracked DDoS weapons in the environment has nearly tripled in the past two years, and the 3.45 Tbps DDoS attack on Microsoft Azure in late 2021 showed the unprecedented scale hackers are now capable of achieving.

Of course, size isn’t everything; even attacks under 500 Mbps that slip through data centre security gaps can have a significant impact on service.

In fact, these smaller exploits are proliferating fast, as botnets-for-hire make it easy for even unskilled hackers to wreak havoc. A single compromised server can open the door to a flood of malicious traffic in under half a minute.

Commercial data centre operators are all too aware of the situation, reporting to A10 Networks that DDoS threats in their networks are growing more sophisticated (64 per cent), more frequent (48 per cent), and larger (38 per cent).

Even a single DDoS attack can have a serious impact; impairing or denying mission-critical services for an individual data centre tenant or across the entire facility—and nearly one in 10 survey respondents is suffering such incidents weekly or more.

Lost business and customer attrition from a DDoS attack is a concern for nearly two-thirds of providers, and rightly so.

Staying ahead of evolving tactics

While data centre security and DDoS defence capabilities such as fast detection and response can limit the damage from a DDoS attack, time is of the essence.

Data centre and colocation providers need to be able to distinguish a sudden flood of fraudulent requests from legitimate usage in real time, at massive scale, to filter out malicious traffic without disrupting their customers’ normal business operations. 

DDoS mitigation solutions typically offer features and capabilities such as benchmarking, anomaly detection, IP reputation lists, connection and rate limits, and attack mitigation, but these essential DDoS defence tasks need to be performed thoroughly and frequently.

 The A10 Networks-Gatepoint survey reported that data centre operators missed attacks, saw slowed performance, decreased service availability, and in an alarming number of cases, an inability to adequately detect DDoS threats at all. Nearly two in five are planning to re-evaluate their DDoS defence solution in the near future.

Tenant-shielding services 

Value-added services are a core element of the commercial data centre business, with a large majority of survey respondents going beyond space, power, and cooling to offer managed network services, professional IT consulting services, and remote management and troubleshooting.

Given the tenant mix of the typical commercial data centre, often dominated by financial services, retail, and government customers, data centre security services are also a very popular offering.

DDoS mitigation is particularly well suited to this model. From the tenant’s perspective, a DDoS mitigation service makes it possible for even small businesses to tap into high-end features such as machine learning, automation, and rapid mitigation.

For the data centre provider, protection for individual tenants can reduce the risk of an out-of-control attack causing ancillary damage to neighbouring tenants or the data centre itself. 

When offered free of charge, DDoS mitigation can be a powerful competitive differentiator and customer enticement. Offered on a paid basis, potentially in multi-tiered models, DDoS mitigation services can open a rich new revenue stream.

However, many in the industry have been slow to respond to either the advantages or the necessity of tenant DDoS mitigation, with only 58 per cent offering such services either free or for an added fee.

As DDoS threats increase, investing in effective mitigation services is a vital step for data centre operators, in order to protect tenants, themselves, and to fulfil the bright projections for the industry. 

  • Adrian Taylor is the Vice President for Europe, Middle East and Africa at A10 Networks.

Related posts:

Researchers in Japan close to convert high-performance neuromorphic computing into reality

Naushad K. Cherrayil
-
0
Researchers in Japan close to convert high-performance neuromorphic computing into reality
  • Researchers develop an ionic device utilising redox reactions as a major step towards using physical reservoir computing.
  • Has the potential to become a general-purpose technology that will be implemented in a wide range of electronic devices including computers and cell phones in the future.

Japanese researchers have now advanced the possibility of translating higher-performance neuromorphic computing technology into a reality.

Led by Associate Professor Tohru Higuchi at Tokyo University of Science (TUS), along with Tomoki Wada and Daiki Nishioka from TUS, and Dr. Takashi Tsuchiya and Dr. Kazuya Terabe from National Institute for Materials Science (NIMS), Japan, have developed an ionic device, utilising redox reactions, as a major step towards using physical reservoir computing.

“The developed system has the potential to become a general-purpose technology that will be implemented in a wide range of electronic devices including computers and cell phones in the future,” Dr. Higuchi said. 

Physical systems known as “reservoirs” are designed to emulate neural networks and meet the need for improved computational efficiency and speed.

Overcoming the previous issues with compatibility, performance, and integration of such reservoir systems, researchers developed an ion-gating transistor with improved reservoir states and short-term memory capabilities based on redox reactions.

With major breakthroughs in artificial intelligence, image recognition, and object detection, the field of computing has witnessed a remarkable revolution in recent times.

Being a data-driven field, the efficient analysis and processing of large and complex datasets is of utmost importance in computing.

Replicating brain’s ability

To enhance the efficiency and speed of data-driven tasks, researchers are exploring the possibility of recognising complex patterns and relationships inherent in the data for the development of high-performance “neuromorphic” computing technology.

This approach aims to replicate the brain’s ability to process information in a parallel and interconnected manner. By doing so, it seeks to construct a network of nodes capable of transforming data into high-dimensional representations suitable for complex tasks like pattern recognition, prediction, and classification.

Ion-gating reservoirs consist of gate, drain, and source electrodes and are separated by an electrolyte that acts as a medium to control the flow of ions. Applying a voltage to the gate electrode triggers a redox reaction within the channel connecting the source and drain electrodes, resulting in a drain current that can be precisely modulated.

Converting the time-series datasets into gate voltages can thus allow the corresponding output currents to serve as distinct reservoir states.

Explaning the project

The researchers used lithium (Li+) ion conducting glass ceramic (LICGC) as an electrolyte. In LICGC, the Li+ ions travel faster compared to the channel, leading to the generation of two output currents ー the drain current and an additional gate current, effectively doubling the number of reservoir states.

Moreover, the different rates of ion transport in the channel and the electrolyte result in a delay in response of the drain current compared to the gate current. The delayed response enables short-term memory capabilities within the system, allowing the reservoir to retain and utilise information from past inputs, a crucial requirement for physical reservoirs.

To fabricate this device, the researchers deposited a 200nm thick film of lithium cobalt oxide (LiCoO2) onto a 0.15mm thick LICGC substrate. The gate electrode was composed of a thin film of Li-ion/platinum (Pt), while Pt thin films were used for the drain and source electrodes. The channel connecting the drain and source electrodes consisted of a 100nm thick tungsten (VI) oxide (WO3) thin film.

“We have successfully reproduced electrical characteristics similar to those of neural circuits by utilising redox reactions induced by the insertion and desorption of Li+ ions into the LixWO3 thin film,” Dr. Higuchi said.

He added that the ionic device achieved a total of 40 reservoir states (20 from the drain current and 20 from the gate current) and outperformed other physical reservoirs such as memristors and spin torque devices when solving second-order nonlinear dynamic equations.

AWS and Microsoft stand out from the crowd when it comes to gaming cloud platforms

Mohammed Fahad
-
0
AWS and Microsoft stand out from the crowd when it comes to gaming cloud platforms
  • Understanding the cloud vendors and their capabilities is therefore fundamental for developers, Omdia says.

Amazon Web Services (AWS) and Microsoft Azure are the leading games industry cloud platforms due to their advanced capabilities across the areas analysed by research firm Omdia.

The new report analyses in detail the capabilities of the seven leading players in this rapidly growing market. Omdia has assessed each platform’s capacity to address a range of key games industry use cases.

 “AWS is the longtime market leader and distinguished by its excellent infrastructure, tools, and outstanding partner ecosystem,” Liam Deane, principal analyst for games tech at Omdia, said and added that Azure also stands out both for its similarly impressive global infrastructure and its exceptionally rich set of bespoke tools and solutions for game developers.

Competitive market

Game development workflows are moving more than ever to the cloud, with game server infrastructure also playing an increasingly critical role.

Additionally, cloud platforms are emerging as key providers of a range of game development tools.

Deane said that understanding the cloud vendors and their capabilities is therefore fundamental for developers, and also for tech vendors whose products have to compete, or integrate, or both, with cloud platforms.

Both Google and Tencent, for instance, he said leverage their deep expertise in games to provide an excellent range of solutions for game development and operations, and each of the remaining vendors also has distinct strengths able to appeal to particular segments of the market.

“More than ever, buyers in the games industry must carefully consider all their options when it comes to selecting a cloud platform, while tech vendors need to be aware of how their products interact with the growing range of cloud platforms targeting the games industry,” he added.

The market for cloud and related services in the games industry will be worth over $12 billion in 2023 and the market for cloud services in the games vertical is increasingly competitive.

Related posts:

Over 100,000 compromised ChatGPT accounts for sale on dark web

Naushad K. Cherrayil
-
0
Over 100,000 compromised ChatGPT accounts for sale on dark web
  • Group-IB identifies 101,134 stealer-infected devices with saved ChatGPT credentials, with 26,802 in May this year.
  • Egypt, Morocco, and Algeria top the list in the Middle East and Africa but India has the highest globally, followed by Pakistan and Brazil.
  • Group-IB advises users to update their passwords regularly and implement two-factor authentication.

Cybersecurity intelligence firm Group-IB has found that the Middle East and Africa (MEA) region experienced the second highest concentration of stealer-infected devices with saved ChatGPT credentials being offered for sale on illicit dark web marketplaces over last year.

Between June 2022 and May 2023, the firm identified 101,134 stealer-infected devices with saved ChatGPT credentials, with 26,802 in May this year.

According to Group-IB’s findings, the Asia-Pacific region has experienced the highest concentration.

MEA had 24,925 stealer-infected devices with saved ChatGPT credentials after Asia-Pacific’s 40,999.

In the region, Egypt, Morocco, Algeria, Turkey, and Kenya topped the list with the highest number of stealer-infected devices that had saved ChatGPT credentials.

Group-IB’s analysis of underground marketplaces revealed that the majority of logs containing ChatGPT accounts have been breached by the infamous Raccoon info stealer. The growing popularity of the AI-powered chatbot is evident in the consistent increase of compromised ChatGPT accounts.

Info stealers are a type of malware that collects credentials saved in browsers; bank card details, crypto wallet information, cookies, browsing history, and other information from browsers installed on infected computers, and then send all this data to the malware operator.

Is ChatGPT boon or bane?

Stealers can also collect data from instant messengers and emails, along with detailed information about the victim’s device. Stealers work non-selectively. This type of malware infects as many computers as possible through phishing or other means to collect as much data as possible.

Info stealers have emerged as a major source of compromised personal data due to their simplicity and effectiveness. Logs containing compromised information harvested by info stealers are actively traded on dark web marketplaces.

 Additional information about logs available on such markets includes the lists of domains found in the log as well as the information about the IP address of the compromised host.

Dmitry Shestakov, Head of Threat Intelligence at Group-IB, said that many enterprises are integrating ChatGPT into their operational flow.

 “Employees enter classified correspondences or use the bot to optimise proprietary code. Given that ChatGPT’s standard configuration retains all conversations, this could inadvertently offer a trove of sensitive intelligence to threat actors if they obtain account credentials.”

Group-IB’s experts highlight that more and more employees are taking advantage of the Chatbot to optimise their work, be it software development or business communications.

By default, ChatGPT stores the history of user queries and AI responses.

Consequently, unauthorised access to ChatGPT accounts may expose confidential or sensitive information, which can be exploited for targeted attacks against companies and their employees.

Real-time threat intelligence needed

According to Group-IB’s latest findings, ChatGPT accounts have already gained significant popularity within underground communities. 

To mitigate the risks associated with compromised ChatGPT accounts, Group-IB advises users to update their passwords regularly and implement two-factor authentication.

By enabling 2FA, users are required to provide an additional verification code, typically sent to their mobile devices, before accessing their ChatGPT accounts.

Having visibility into dark web communities allows organisations to identify if their sensitive data or customer information is being leaked or sold, Shestakov said.

Using real-time threat intelligence, he said that companies can better understand the threat landscape, proactively protect their assets, and make informed decisions to strengthen their overall cybersecurity posture.

Related posts:

Dubai ranks highest in emerging startup ecosystems in MENA

Naushad K. Cherrayil
-
0
Dubai ranks highest in emerging startup ecosystems in MENA
  • Abu Dhabi enters the emerging ecosystems ranking, in the 81–90 range.
  • Riyadh is in the 61-70 range while Oman is also actively building an innovation community
  • MENA saw a decline of 19% in Series B+ deal amount and a 14% decline in total VC funding in 2022.

Tel Aviv remains the Middle East and North Africa’s (MENA) leading startup ecosystem and moved from seventh in the rankings, where it had sat since 2020, to number five globally.

According to research organisation Startup Genome’s Global Startup Ecosystem Report 2023, Silicon Valley still holds the top position globally, followed by New York and London in second place while Boston and Beijing have both slipped out of the top five to number six and seven respectively, losing two positions each.

Los Angeles moved to number four and Tel Aviv is ranked at number five.

Th United Arab Emirates (UAE) has made great strides in diversifying its market from oil and gas, establishing itself as an innovation hub and hot spot for entrepreneurs.

Abu Dhabi and Dubai are both global hubs for entrepreneurship, with initiatives including the Cheung Kong Graduate School of Business’s Global Unicorn Program in Dubai supporting the government’s plan to foster the growth of 30 unicorns within 10 years.

Unicorns on the rise

Dubai moved up three places and is the highest-ranked MENA entry in the Emerging Ecosystems ranking at number 12.

The number of exits over $50 million has grown by 50 per cent while the number of exits over $1 billion doubled, with Swvl at $1.5 billion while witnessing a 45 per cent increase in early-stage funding count, and 114 per cent in deal amount since the 2022 report.

Two of the biggest rounds were digital banking platform YAP’s $41 million Series A round in 2022, and Buy Now, Pay Later platform Cashew’s $40 million Series A round in 2021.

“The number of unicorns increased from two to four with Astra Tech and Fenix Games joining the club in 2022, contributing to an 81 per cent increase in Ecosystem Value.

The number of early-stage funding deals also increased, by 45 per cent,” the report said.

Oman flexes muscles

While Abu Dhabi entered the Emerging Ecosystems ranking, in the 81–90 range. The city has experienced a 134 per cent increase in Ecosystem Value to $3.9 billion, partly attributed to the growing number of exits over $50 million, with Agtech Pure Harvest Smart Farms valued at $1.3 billion.

Riyadh also shot up 91-100 to the 61-70 range in the emerging ecosystems while the number of unicorns doubled to two, with the highest-valued unicorn Foodics valued at $1.2 billion, increasing the Ecosystem Value by over 100 per cent.

Oman is also actively building an innovation community as it sets out a vision towards a more diverse, knowledge-based economy, as outlined in the Oman 2040 initiative.

“To aid economic recovery from the Covid-19 pandemic, the nation initiated a three-year programme aimed at fostering and developing the financial sector. The city of Muscat was the Arab Digital Capital in 2022, cementing its status as a hub for digital innovation and enterprise,” the report said.

MENA largely held steady from 2021 to 2022, with only a very slight decrease in the amount of early-stage funding (-5 per cent), a decline of 19 per cent in Series B+ deal amount, and a 14 per cent decline in total VC funding. Even with this downturn, the region remained above 2020 funding amounts.

In the period 2018–2022, MENA saw a 96 per cent rise in early-stage funding amount, a 28 per cent growth in Series B+ deal count, and an impressive 113 per cent increase in Series B+ deal amount.

AI & Big Data accounted for 34 per cent of Series A deals in the same period. Cybersecurity accounts for a 15 per cent share of Series A deals, significantly above all other regions, where it makes up 6 per cent or less.

Related posts:

1...190191192...271Page 191 of 271