Week in review: Winter (Olympics) is coming, and cybercriminals are also in training
- 22 January, 2018 10:32
Despite ever-present warnings, small businesses still aren’t being proactive enough about their information security and wouldn’t be able to deal in the event of an attack, new research has concluded even as APAC regional inadequacies leave companies exposed to inevitable attacks during the upcoming Pyeongchang Winter Olympics.
Following on from those damning figures, there were also concerns that Australian companies are much worse than their global peers in evaluating the business risk of data compromise – a skill essential for supporting efforts to remediate security issues.
The recent Spectre and Meltdown security flaws offer prima facie evidence as to why such risk evaluation is important. The vulnerabilities – which can be detected using the new, free InSpectre tool – reflect the need for a tightening security perimeter that is driving the popularity of Zero Trust security models, which offer new promise in tightening overall security practices.
Yet tricky manipulation of hardware registers isn’t the only threat facing businesses: c-level executives remain popular and highly exposed targets.
So, too, are customers of phone provider OnePlus, which was looking into a possible breach of payment-card details.
Also threatening overall security was new Android spyware, which triggers when an infected phone reaches a specific location and begins recording audio at that location.
The proliferation of such malware means automated testing will become even more important in helping software vendors pick up on bugs as quickly as possible – especially when writing the complex code for connected automobiles and other devices.
For administrators, the results of this testing are likely to become key elements of tools like Google’s G Suite – which got a dashboard to help keep track of new security threats. This, as the UK’s national cybersecurity centre gets into a cat-and-mouse chase with hackers using the in-memory ‘Neuron’ malware.