#cybersecurity

How #iot Brings With It The Threat Of Cyber Attacks
▻https://hackernoon.com/how-iot-brings-with-it-the-threat-of-cyber-attacks-97035a52f4a4?source=r

https://cdn-images-1.medium.com/max/1000/1*Fbaqg28Kcy9igjB79sFSqQ.png

IoT Cyber Attacks ThreatsImage SourceIn an age where smart technologies like internet, hotspot, and other internet-of-things (IoT) has penetrated every sphere of life, security is getting compromised. Despite the several advantages that smart technologies and IoT have offered, there are still loopholes which result in a possible cyber attack resulting in vast damage to property and life. In this backdrop, the technologies need to be adopted with adequate security systems in the entire ecosystem to eliminate chances of hacking.Expanding IoT networkOver the last few years, the deployment of smart technologies has grown tremendously. Their adoption is not just limited to our office spaces but has made our life simpler by making complex procedures easier. For instance, medical devices and (...)

#iot-cyber-attacks #cybersecurity #cyber-attacks-threats #iot-cyber-attacks-threats

How cyber war affects #humanitarian aid
▻https://hackernoon.com/how-cyber-war-affects-humanitarian-aid-e4f88b8caa6d?source=rss----3a8144

https://cdn-images-1.medium.com/max/1024/1*F0VI-dj9o9dTivSEr8J_Jw.jpeg

How Cyber War Affects Humanitarian AidCyberwar tips from the @SwiftonSecurity Twitter accountImagine a dramatic, airport novel, most communications are down, electric and water service intermittent, internet services like Snapchat and messenger applications, non functional. The term cyber warfare conjures up images of computers launching attacks against each other, interrupting the modern world. Imagining how one would affect current humanitarian aid operations, or the knock on crisis digital war could create has yet to be fully explored. The International Red Cross Committee (ICRC) spotting a need, ran a symposium on this and related topics with the Digital Do No Harm Conference in London 11–12 December 2018. An esteemed colleague brought me on board the working group for cyber (...)

#humanitarian-aid #cybersecurity #cyberwar #cryptocurrency

#vpn vs #antivirus: Which is a Bigger Cyber Security Market and Which Does Your Company Need?
▻https://hackernoon.com/vpn-vs-antivirus-which-is-a-bigger-cyber-security-market-and-which-does-

https://cdn-images-1.medium.com/max/1024/1*aEtCWWEnTDEsURL8GOuevA.jpeg

With cyber security being the rage these days, choosing out of the many programs that are popping up with the promise of offering optimal protection becomes a dilemma. Even more, the choice between picking out a recommended antivirus and sticking with the more traditional way of protecting your computer via VPN offers more constraints.It is tempting to entertain the thoughts of the coexistence since they are designed to offer protection. However, that peaceful coexistence you envisaged is mostly out of the window the moment these two tools are left alone.Now, given the rivalry, it becomes paramount to find out which will best suit the purpose you have in mind. So, we have picked out a few tips on which is largely favored by the ever-growing cyber security market and why it is.What an (...)

#security-systems #privacy #cybersecurity

This is an open letter to all #crypto writers and community managers.
▻https://hackernoon.com/this-is-an-open-letter-to-all-crypto-writers-and-community-managers-2053

https://cdn-images-1.medium.com/max/845/1*GKEyUSjYCc3twZuQME11RA.png

Please stop advising your readers, investors and community members to look for the padlock in their browser toolbar. This advice is dangerous.A padlock is the browser’s way of telling you that a website has installed an #ssl Certificate. SSL Certificates are used to encrypt the transmission of data between your browser and the website — that’s it. This prevents a third-party from stealing your personal information as you type it into the website.A padlock / SSL Certificate does not indicate that a website owner is who they claim to be — or that they can be trusted. SSL Certificates are FREE and are automatically issued. There is no verification process. You can not trust a website just because it has a padlock.I have witnessed community managers responsible for groups with more than 20k members, (...)

#padlock-cryptocurrency #padlocks #cybersecurity

When Was the Las Time You Googled Yourself?
▻https://hackernoon.com/when-was-the-las-time-you-googled-yourself-828f024f0a55?source=rss----3a

https://cdn-images-1.medium.com/max/1024/1*V8Gl7eHVOtyS2zCN9Z45bA.png

By 2025, the world will create 163 zettabytes of data — nearly 55 gigabytes of new data every single day per person. In just under a decade, this information explosion could be more personal than we realize. Today, #google already handles over 3.5 billion searches on a daily basis and it may be surprising how much of that data accounts for our own information.Half of Americans believe that their personal information online is less secure than it was just five years ago — and yet we are sharing more information about ourselves than ever. Social media sites like Facebook and Instagram make it easy to overshare, a bad habit most of us have fallen into at least once. Aside from the TMI factor, oversharing can lead to more sinister outcomes; namely the smart scammers that know how to put two and (...)

#infographics #cybersecurity #phishing #social-media

Trailblazing Women in the #cybersecurity Field
▻https://hackernoon.com/trailblazing-women-in-the-cybersecurity-field-8743a39a00dc?source=rss---

https://cdn-images-1.medium.com/max/1024/1*a2cFEVU4AnvOmFqcvzE4kQ.jpeg

Photo SourceWomen have always had to fight hard for equality and acceptance, especially in the workplace. In primarily male-dominated fields like cybersecurity, women make up only 20 percent of the workforce. Although that figure is climbing, we have a long way to go before women are seen as more than tokens in the industry.There is a tremendous opportunity for women who want to break into cybersecurity. According to Forbes Magazine, by 2021, there will be 3.5 million jobs available in cybersecurity. Cybercrime is on the rise, and companies all over the world are scrambling to fill the open positions with good cyber technicians to field the swarm of threats that are coming.Experts hope that within the next few years, that gender gap will narrow with women making up 50 percent of the (...)

#cybersecurity-field #women-in-tech #women-in-crybersecurity #tech

#5g Networks Can Change The Way We Live : For Better or Worse ?
▻https://hackernoon.com/5g-networks-can-change-the-way-we-live-for-better-or-worse-ed2b3fc6b0e6?

https://cdn-images-1.medium.com/max/1024/1*cjts5tSMbYD9IynMXIFyZA.png

Telecom cell towers (Source: iStockPhoto)The advances in wireless communications has led to an exponential growth in mobile devices i.e. smartphones. The deployment of 4G and LTE (Long Term Evolution) networks has delivered us more rich content, from video streaming to live gaming. It is taking its toll on bandwidth, which now needs to be addressed as demand grows. This time around a new class of applications that are bandwidth intensive like VR (Virtual Reality), AR (Augmented Reality) and OTT will require it. The telecom industry have specified a new standard called 5G to meet the growth of network demands. High speed data communications made possible by more bandwidth sounds like an excellent business proposition for wireless carriers to expand their networks, appease users and (...)

#healthcare #cybersecurity #internet-of-things #telecommunication

Is It Worth Investing in #cybersecurity Applications?
▻https://hackernoon.com/is-it-worth-investing-in-cybersecurity-applications-ebe77eebe87b?source=

The recent relaxation of federal regulations on #data sharing has thrust cybersecurity back to the forefront of tech conversations. This regulatory rollback combined with major data breaches at large companies has consumers more concerned than ever about their digital safety. The cybersecurity app market is booming to keep up with the new demand for apps to keep consumers safe. There are plenty of apps that provide encrypted messaging, disguised phone numbers, secure password management, and easy-to-use virtual private networks (VPNs). As with any flooding of a market, it is more important than ever to have a keen eye on quality when shopping for an app.The cybersecurity app market has become just as focused on the market share as any other app genre. With a new surge of potential (...)

#vpn #privacy #data-science

2018 In Review : #healthcare Under Attack
▻https://hackernoon.com/2018-in-review-healthcare-under-attack-e7639930c820?source=rss----3a8144

https://cdn-images-1.medium.com/max/960/0*G0nr_b6ULW8b0fQn.jpg

Radware’s ERT and Threat Research Center monitored an immense number of events over the last year, giving us a chance to review and analyze attack patterns to gain further insight into today’s trends and changes in the attack landscape. Here are some insights into what we have observed over the last year.Healthcare Under AttackOver the last decade, there has been a dramatic digital transformation within healthcare; more facilities are relying on electronic forms and online processes to help improve and streamline the patient experience. As a result, the medical industry has new responsibilities and priorities to ensure client data is kept secure and available–which unfortunately aren’t always kept up with.This year, the healthcare industry dominated news with an ever-growing list of breaches (...)

#healthcare-under-attack #hacking #cybersecurity #iot

Stop printing your personal photos via online websites
▻https://hackernoon.com/stop-printing-your-personal-photos-via-online-websites-155a9b925179?sour

https://cdn-images-1.medium.com/max/1024/1*jlF9-8LXD36IJWf9YSToaQ.png

Security Vulnerability in InkmonkThere are plenty of online shops which offer to print your photos, visiting cards and t-shirts. But do they protect the photos or personal information you share with them? We will find out.We discovered a #security vulnerability in Inkmonk.com (India’s first print marketplace) which leaks all the photos you have uploaded, via a simple API:Vulnerable APIThe ids used in the above #api is serially iterable and the response looks like this:API responseAnd if you click on one of the URLs in the above response, you will see the pictures uploaded by the users of the website. They do not require any kind of #authentication at all. Some examples below:This security bug was reported to the InkMonk on 19th November, 2017. They acknowledged the existence of the issue and (...)

#cybersecurity #marketplaces

The Hot and the Odd: A Critical View on Innovative #cybersecurity Practices for 2019
▻https://hackernoon.com/the-hot-and-the-odd-a-critical-view-on-innovative-cybersecurity-practice

https://cdn-images-1.medium.com/max/848/1*W2XdGT4HJd0WjB5zaKmoeA.jpeg

Let’s face it. The good old days of hacking are over.You may remember that period when cybercrime was the work of underfunded individuals operating on their own. Traditional cyber security measures were usually more than enough to block attacks and protect networks and users. What’s more, criminals’ core motivation, money, made their behaviors easy to predict.Thinking about it retrospectively, it wasn’t that bad, right?Today’s landscape is less straightforward. Perpetrators are organized and have access to funding and manpower to make enterprises and economies tremble. Financial incentives behind data breaches meet political ambitions. And new categories of devices mean new entry points for attacks.With thousands of threat events recorded every second and no sign of ceasefire, 2019 might be (...)

#threat-intelligence #domain-names #artificial-intelligence #threat-hunting

#security Audits, Essential yet Neglected!
▻https://hackernoon.com/security-audits-essential-yet-neglected-130e9af974fe?source=rss----3a814

https://cdn-images-1.medium.com/max/1024/1*9JqJEFKu0Gda9pz0MkxaKw.jpeg

Image Ref. — Quill Audits“Blockchain technology is no more Nascent”, rather, its immense potential is being realised by governments and enterprises all around the globe. Traditional businesses from fields like healthcare, agriculture, finance and transportation have already integrated #blockchain in their supply chains, and made business records secure and immutable. The adoption of cryptocurrencies by governments of Ohio and Florida further strengthens my point.As we adopt something new in our lives, critics too, find their way to creep in. Rather than giving facts on the how blockchain use cases have transformed a business process, media reports have highlighted the cases where millions of dollars were stolen from a blockchain ecosystem-DAO Hack — $150 Million StolenParity — $300 Million  (...)

#cybersecurity #audit #smart-contracts

#cloud Computing Security Issues And How to Meet Them Head On
▻https://hackernoon.com/cloud-computing-security-issues-and-how-to-meet-them-head-on-5a37a45f475

https://cdn-images-1.medium.com/max/1024/1*-HzsZf4vKAbh1Ay0A0xs0Q.jpeg

As McKinsey stated, the changes in how enterprises use technology have made corporate environments harder to protect while increasing the importance of their protection at the same time. When digital data becomes more extensive, businesses are expected to become more ‘open’ and connected, even though the cybercrime landscape evolves year after year.Cost-saving, flexibility, mobility and security, to some extent, are forcing rapid cloud adoption. A focus on Platform as a Service (PaaS) and Infrastructure as a Service (IaaS) allows organisations to adopt smooth digital transformation and shorten the time to market. Supply chains are also becoming more sophisticated and interconnected. That means responsibility is shared with a vendor, but accountability is still on the business  (...)

#cybersecurity #data-security #cloud-computing #cloud-security

The Difference Between Risk Assessment & Risk Analysis
▻https://hackernoon.com/the-difference-between-risk-assessment-risk-analysis-3cc2d5529aa4?source

https://cdn-images-1.medium.com/max/768/1*gFtKbqrylP1OncGNR9ywug.jpeg

The more you delve deeper into information compliance, the more likely you are to begin humming the term risk in a manner that is akin to how Jan Brady would shout, “Marcia! Marcia! MARCIA!” You may have heard of this term a lot, to the point that it almost loses meaning. Nonetheless, you should know that the difference between risk analysis and risk assessment could be the difference between security control and data breach.Risk Assessment versus Risk AnalysisWhat Does Risk Assessment mean?Risk assessment focuses on the risks that both internal and external threats pose to your data availability, confidentiality, and integrity. To assess risks thoroughly, you have to spot all the possible events that can negatively impact your data ecosystem and data environment.Data Risks can  (...)

#assessment-vs-analysis #cybersecurity #risk-analysis #risk-assessment #it-risk-management

5 Online #security Measures to Survive as an #ebusiness
▻https://hackernoon.com/5-online-security-measures-to-survive-as-an-ebusiness-a4aa1ca7d9c8?sourc

https://cdn-images-1.medium.com/max/1024/1*pazSTVPiSkUB7w7WiDpZNA.jpeg

Cybersecurity is a broad term that encompasses all the technologies geared toward protecting networks and computers, along with the software and data kept on them. While more and more data today can be accessed via the internet, online security has become the major issue for businesses.The risks associated with online security are constantly and quickly increasing. The number of internet users steadily grows as well as the amount of information stored online. At the same time, hacking techniques evolve, including numerous social engineering tactics. As a result, online security issues are likely to become more prevalent, particularly in the business sphere.Menlo Security annual research suggests that 42% of Alexa top 100,000 websites are compromised. So what do you need to know to (...)

#security-measures #cybersecurity #iot

International #business and #cybersecurity
▻https://hackernoon.com/international-business-and-cybersecurity-988f37c9e663?source=rss----3a81

▻https://www.flickr.com/photos/kvinokurov/14658257525Cybersecurity

is important to every business. As soon as you collect a customer’s personal information, credit card information, or any other data, you are obligated to ensure that it is protected and used properly at all times.This is not just a moral obligation. It is a legal one, and the recent General Data Protection Regulations (GDPR) passed in the EU means companies must be even more transparent about how information they collect is stored and used.What does all this mean to an international business? It means there are challenges, including regulations in the countries where you do business, the protection of data while it is being transmitted, and the threats that are unique to individual countries and territories.Challenges of (...)

#international-business #technology

A Guide to Becoming a Cyber #security Analyst
▻https://hackernoon.com/a-guide-to-becoming-a-cyber-security-analyst-5b311be52f29?source=rss----

https://cdn-images-1.medium.com/max/656/1*4nYAgQP7q9TH9XxRzvYwlg.jpeg

Cyber Security Analysts are professionals who are responsible for monitoring computer networks by adopting various technologies and processes, and ensuring that proper systems and safeguards are in place so as to protect the personal and sensitive information and data from cyber criminals. They shield networks, data, programs and websites from various cyber threats such as malware, denial-of-service attacks, hacks and viruses.The focus of Cyber Security Analysts is a prevention of cyber-attacks more than post-incident response. They serve the purpose of providing immediate response to cyber alerts, derailing breaches before they even occur. Thus, techniques such as penetration testing and ethical #hacking are acquired by these professionals to validate the proper functioning of security  (...)

#security-analysts #cybersecurity #cyber-security-analyst

6 Measures to Eliminate #business Risks
▻https://hackernoon.com/6-measures-to-eliminate-business-risks-885be9cd56ea?source=rss----3a8144

https://cdn-images-1.medium.com/max/700/1*T3kaQgDrjm-Tw1Y-KIFIkQ.png

Image SourceThere once was a time when companies were concerned about letting their employees connect to their corporate network from home. Many articles were written on this topic, discussing the risks and how to create policies that mitigate them. This is something that still hasn’t changed today. In fact, the only real change is that employees are now using their personal laptops, tablets, wearables, and smartphones to make these connections. Experts believe the number of these devices will continue to grow exponentially, which means employees’ personal data will grow more mixed in with the business data on these devices. As an organization, you must take steps to protect everyone who’s involved here.Determining Your RisksThe first step you must take is to perform a high-level risk (...)

#cybersecurity #security #eliminate-business-risk #business-risk

Rethinking Anti-Phishing #security For #iphone #email
▻https://hackernoon.com/anti-phishing-email-security-94c832bef9a1?source=rss----3a8144eabfe3---4

https://cdn-images-1.medium.com/max/1024/1*nP_sqE9Z6mWHIuqEd4Z8Rw.png

A comparison of an email that is not protected by MetaCert and an email that is protected by MetaCertRethinking Anti-Phishing Security For iPhone Email 📫You’ve installed ProofPoint or another security solution, but phishing is still a problem. Why? In this post I will explain how and why MetaCert is rethinking email security to address this growing concern.This post is mostly for:people who worry about opening the wrong link inside an email, and;people who work in #cybersecurity or IT, and worry about other people opening the wrong link at their company.This is a long, detailed look at how, and importantly why, MetaCert is doing things differently. So if you’d like to jump straight to a 30 second video demo, here it is…▻https://medium.com/media/c89e3aa0f1c227a32231e4172a6d9c1c/hrefStatistics show (...)

#blockchain

Countering #iot Security Issues : an Enterprise Guide
▻https://hackernoon.com/countering-iot-security-issues-an-enterprise-guide-8cfef499fc92?source=r

https://cdn-images-1.medium.com/max/1024/1*u3J7JFTUsc7rouxHNJYQBQ.png

The Internet of Things (IoT) is rapidly growing in scale, with the market for IoT devices being set to double in the years between now and 2021. The pervasive nature of IoT means that enterprises are inevitably drawn into both the benefits of IoT, as well as the IoT security issues. Yet, with the right strategy, enterprises can guard against the security challenges posed by IoT.The good thing with IoT is that it can be put to work with almost any domain: healthcare, logistics, retail, insurance and banking. It helps improve decision-making, understand users better, deliver new customer value propositions, improve and optimise operations, generate income and raise the value of the business.IoT is present in every enterprise in ways that can often be missed. A recent survey found that a (...)

#cybersecurity #data-protection #internet-of-things #iot-security

#cybersecurity Disclosures Post-GDPR: Have We Really Accomplished Anything?
▻https://hackernoon.com/cybersecurity-disclosures-post-gdpr-have-we-really-accomplished-anything

https://cdn-images-1.medium.com/max/1024/1*7syinV6iIvuZscsEgD5htg.jpeg

Before the arrival of the General Data Protection Regulation (GDPR), analysts hailed it as a tremendous achievement in increased #privacy measures and discussed at length how companies that found themselves outside the bounds of the #gdpr were at risk of receiving significant fines.Then, businesses of all sizes — especially small ones — scrambled to get compliant before the May 2018 deadline arrived, with many admitting they still weren’t sure of the specifics surrounding GDPR.Now, approximately five months later, how much has the GDPR changed things?Regulatory Organizations Have Yet to Issue FinesFeedback from several organizations in European Union countries that issue fines for not complying with GDPR indicates they haven’t given those penalties yet.Even once they do, the process is not (...)

#data-privacy

Secure Mobile Applications Against Cyber #security Vulnerabilities
▻https://hackernoon.com/secure-mobile-applications-against-cyber-security-vulnerabilities-a6d2f6

https://cdn-images-1.medium.com/max/1000/1*VX7QT7itrM_QQyKwiQtQ2w.jpeg

We are in such an era where mobile Applications allow us to do almost everything online. According to our usability, there are many apps in the market letting us explore things from anywhere and at any time. In that case, securing applications and data against exploitation is a key responsibility of the App developer.“ These Apps provides services including banking, shopping, and even monitoring our business, home, and shop.”Traditional cyber security strategies don’t provide the necessary protection for the mobile applications. Thus, every business should focus on security and customer-convenience while consumer app development process.Mobile apps have software that connects to APIs and servers around the world. The purpose is to deliver data, services, and last but not the least value (...)

#cybersecurity #mobile-app-development #technology

Law v. Hacker ‘X’ — Attribution Task Force
▻https://hackernoon.com/law-v-hacker-x-attribution-task-force-dae60350806c?source=rss----3a8144e

https://cdn-images-1.medium.com/max/1024/1*zs9z9dHyqlNxJsca986cig.jpeg

It sounds simple enough, but a fundamental concept in #cybersecurity and digital forensics is the fact that it is sometimes extremely difficult after a cyberattack to definitively name a perpetrator.Published WIRED magazine in relation to the hacker attribution problem we face in modern day cyberwarefare.I did not plan on publishing my next chronicle for at least two weeks following my first installment of Law v. Hacker ‘X’ — which you can read here — so that I knew it set in and gained the exposure it deserved. I have been following this topic for a some time now and I could not resist the opportunity for my future friends, educators, and Googler’s to read about.Six days after the U.S. intelligence chief, Dan Coats warned Americans of a “crippling cyber attack” (two decades after the Sept. 11 (...)

#attribution-task-force #russia #law-vs-hacker-x #hacking

User Experience vs. #cybersecurity
▻https://hackernoon.com/user-experience-vs-cybersecurity-9a8b59f7573a?source=rss----3a8144eabfe3

https://cdn-images-1.medium.com/max/1024/1*5Dgf_9tmNUYcZ4JCECI1jQ.jpeg

Where do we draw the line?As UXers, we #design with users’ needs in mind (User centered design), we think from our end-users’ perspectives, and we always do our best to design the most intuitive and user-friendly products. But when it comes to simplicity and #ux vs. #security and privacy, where do we draw the line? how can we balance between the two? Is it even possible to design secured products without affecting the user-experience?A bad experienceI just came back home, and then I realized that my Android phone is lost! So I pulled my Macbook out of my bag to find my phone with Google’s Find My Device (AKA Android Device Manager). But the problem was that yesterday at work, I had to clear browser data (Front-end, Cookies and HTML+CSS reasons) and because of that, I was logged-out of my (...)

#ux-vs-cybersecurity

#media & #entertainment Vulnerabilities Exploited Again
▻https://hackernoon.com/media-entertainment-vulnerabilities-exploited-again-dce556996daa?source=

https://cdn-images-1.medium.com/max/1024/1*XKmfi26nvbf-VAozZD7SzQ.png

“The Ticketfly cyberattack is one of the first major security incidents to occur in the post-GDPR world. While the company hasn’t confirmed a breach of customer data has occurred, at face value the hacker’s claim — that he/she managed to access their database via an unpatched vulnerability or misconfiguration — is well within the realm of possibility.” — Sanjay Beri, Founder and CEO of cloud app analytics and policy firm Netskope.Concert and sporting-event ticketing website Ticketfly was the victim of a recent cyberattack that we now know took the site offline for about a week and exposed the data of approximately 27 million accounts. Eventbrite, the San-Francisco based company that owns Ticketfly, indicated that the names, phone numbers, addresses and email addresses associated with the accounts (...)

#online-security #media-vulnerabilities #cybersecurity