Cyber Threat

Security threats to watch have become real

Arcsight — Mon, 21 Mar 2011 10:40:21 GMT

Being right so soon can be bittersweet! For those of you who missed my January webinar, I highlighted 5 security threats to watch out for in 2011 - malware, advance persistent threats (APT), fraud and insiders, mobile devices and cyberthreat/cybercrime....

Building national and international cyber security frameworks

Arcsight — Tue, 15 Mar 2011 13:51:06 GMT

POLCYB, the Society for the Policing Cyber Space, describes itself as a non-profit organisation focusing on “international partnerships among public and private professionals to prevent and combat crimes in cyberspace.” Established in 1999 and based in Canada, it brings together...

The top 5 security threats to watch

Arcsight — Fri, 25 Feb 2011 11:45:08 GMT

With the RSA Conference just behind us and the Infosecurity Europe conference in London coming up, it is worth taking a look at the top five cyber security threats that will be on the minds of the event attendees and...

Time to tear down cyber walls

Arcsight — Wed, 02 Feb 2011 14:03:25 GMT

In a blog post back in November, I commented about dealing with cyber threats and the progress we are seeing at the national level, especially here in the UK. The UK government elevated cyber to a Tier One threat, promised...

A suitable response to cybersecurity

Arcsight — Wed, 24 Nov 2010 14:42:18 GMT

With the recent publication of the strategic defence review, “Securing Britain in an Age of Uncertainty: The Strategic Defence and Security Review,” the UK in many ways is taking the lead in Europe when it comes to cybersecurity by recognising...

Information systems security - a career path worth considering

Arcsight — Mon, 25 Oct 2010 11:41:55 GMT

I recently returned from ArcSight Protect ‘10, our annual user conference in Washington D.C. With over 1000 people in attendance over 3 days, I had plenty of time to meet with security practitioners - from CISOs to security specialists. The...

Steps in the right direction

Arcsight — Tue, 21 Sep 2010 10:41:32 GMT

In my last blog, “Working Together? Not Yet,” I commented on the need for more transparency in the reporting of compromised customer data. The catalyst for that blog was the cybertheft of funds from 3000 UK online bank accounts. The...

Working together? Not yet.

Arcsight — Fri, 03 Sep 2010 10:31:09 GMT

Reading recent reports a couple of weeks ago on the compromise and illegal funds transfer from 3000 UK bank accounts, my first reaction I’m afraid was “so what”; after all, this is nothing new. Whether here or abroad, it seems...

Working together? Not yet.

Arcsight — Fri, 03 Sep 2010 10:31:09 GMT

Counting the cost of insider crime

Arcsight — Tue, 10 Aug 2010 10:51:20 GMT

The recent high-profile coverage of data loss, such as the publication of classified army documents on the WikiLeaks site, has highlighted the issue of the insider threat once again. And a survey conducted by the Ponemon Institute on behalf of...

Military Intelligence and IT security

Arcsight — Wed, 28 Jul 2010 10:35:00 GMT

I served in the US Army – specifically, in the Military Intelligence branch. When I share that fact with new acquaintances, some are impressed, some remind me that “Military Intelligence” is an oxymoron, but most believe that the work...

“Least privilege” – time for a security rethink?

Arcsight — Tue, 27 Jul 2010 00:08:00 GMT

The Ponemon Institute recently released a very interesting report (registration required), commissioned by our partners at Aveksa. Using data from interviews with over 700 IT pros, the report shows that access control problems are getting worse, not better. In...

No correlation without normalisation

Arcsight — Wed, 14 Jul 2010 12:08:00 GMT

The SANS Institute recently released a whitepaper entitled SANS Log Management Survey: Mid-Sized Business Respond based on their annual log management survey but sliced to focus on businesses with fewer than 2000 employees. In the early years of the...

A Formula for CyberSecurity Success

Arcsight — Wed, 30 Jun 2010 11:41:00 GMT

I just spent a week in the Europe visiting customers, partners, and several mediaorganisations, andI was fortunate to host a group on a tour of the McClaren Formula 1 racing team factory, just outside of London. This tour was...

Small business still falling prey to cybercrime

Arcsight — Wed, 16 Jun 2010 14:54:00 GMT

Dimension Data, the global IT solutions and services provider, published its Network Barometer Report 2010 last month. Interestingly enough, over one-third of all network devices surveyed had security or configuration vulnerabilities. The report also shows that the prevalence of...

NATO, cyberdefence and death by a thousand cuts

Arcsight — Fri, 04 Jun 2010 15:23:00 GMT

This past week, I joined three colleagues from the ArcSight UK team to attend the 13th NATO Cyber Defense Workshop. The venue was especially interesting, as it was held in Tallinn, Estonia. Recent history tells us that Estonia was...

Rethinking our security defences

Arcsight — Mon, 17 May 2010 10:07:00 GMT

UK businesses have seen a sharp rise in IT security breaches in the past two years, according to a recent report by PricewaterhouseCoopers entitled The Information Security Breaches Survey. In fact, despite increased spending on security defences, the number...

Reflections on cloud, compliance and changing threats

Arcsight — Tue, 11 May 2010 10:50:00 GMT

Infosecurity Europe Reflections: Cloud, Compliance and Changing Threats By Hugh Njemanze, Chief Technology Officer and Executive Vice President of Research and Development As the dust settles on the Infosecurity show, three topics, compliance, cloud, and the changing threat landscape,...

Is now the time to encrypt?

Arcsight — Thu, 29 Apr 2010 10:35:00 GMT

Recently, both the EU and the ICO (Information Commissioner’s Office) have got much tougher over the need for organisations to protect data and report data loss. In fact, the ICO, which oversees and enforces the Data Protection Act in...

Combating socially engineered cyberfraud

Arcsight — Mon, 26 Apr 2010 09:12:00 GMT

Card and banking fraud figures published by the UK by Financial Fraud Action UK and the UK Cards Association last month show that while fraud on debit and credit cards actually fell last year, on-line banking fraud rose by...

What CIOs need, how CISOs should deliver

Arcsight — Fri, 16 Apr 2010 08:53:00 GMT

On the train back from a meeting with the CISO of a major organisation I couldn’t help but ponder what advice I could provide to help solve a fundamental challenge that he and many of his respective peers seem...

Cybersecurity – Governments need to cooperate

Arcsight — Thu, 08 Apr 2010 16:14:00 GMT

As the Lords call for greater levels of co-operation amongst governments, the EU and Nato to prevent and detect cyber attacks, many people are wondering what level of attack we are under, when does cyber-attack become cyberwar and who...

Card fraud declines, other channels prove more profitable

Arcsight — Mon, 29 Mar 2010 08:49:00 GMT

The UK Cards association recently reported a 19% decline in card fraud in 2009, the first decrease since 2006. However, that bit of good news was tempered by a continued increase in phishing attacks and a general consensus that...

I Can See Clearly Now...

Arcsight — Mon, 15 Mar 2010 17:30:00 GMT

Recently the Cloud Industry Forum (CIF) called for new efforts to clarify cloud computing, so that UK businesses would adopt cloud services more readily. The CIF called attention to research indicating that 25% of survey respondents (IT decision makers)...

Opening up an organisation without opening doors to new security threats

Arcsight — Sat, 13 Mar 2010 17:34:00 GMT

These days crime is paying. Cyber criminals are earning close to US$1 trillion annually, according to a recent report. It is big business. These criminals have evolved their skills and techniques to such an extent that they can breach...