Big data, big security questions

Half of enterprises today store sensitive information within big data environments (up from 31 percent in 2015). Influential agencies like ENISA warn there are considerable cyber risks from using big data tools. There is concern, for example, that such developments are a possible point of compromise and there are calls for increased vigilance and compliance.

Mobile payments and security — money walks, money talks

Once upon a time a mobile phone was something we used for talking. Today making a call ranks sixth on the list of most common uses for a mobile phone. Now there’s a new kid on the block that, in time, will push making a call even lower down the list. Mobile payment, or m-payment, is taking off. Early adopters like Starbucks already attribute significant revenue gains to their investment in mobile. Although overall mobile payments adoption and usage rates are still a fraction of standard credit/debit card transactions industry watchers expect this to change very quickly.

Internet of Things raises fresh security challenges for industry

For many years industries like oil and gas, electricity, agriculture and utilities have relied on operational communications infrastructure outside the main corporate network to collect data and provide supervisory control. Known as Supervisory Control and Data Acquisition (SCADA) systems the data they collect leads to efficient allocation of resources, monitors safety conditions and improves operational decision-making. But now, with the emergence of Internet of Things (IoT) technology, industrial organizations are eager to deploy new wireless machine-to-machine (M2M) devices to collect even more data from field assets in remote, geographically dispersed locations. The number of sensors and data points in industrial networks looks set to multiply exponentially overnight. As a consequence, there will be more access points than ever before. Security, therefore, will be an important factor in determining the overall success of IoT deployment.

Web of Spies

Ever since Edward Snowden revealed the extent of state-sponsored espionage over the Internet in 2013 businesses have been acutely aware of just how vulnerable data communications are to being intercepted. It is no coincidence that in the same period cybercriminals have also stepped up their attempts to spy on organisations. For example, the use of Advanced Persistent Threat (APT) malware and ransomware to try to capture valuable financial or customer data for financial gain has risen dramatically. While no defense method is ever 100% impregnable the risk of snooping and theft of sensitive data can be significantly reduced by encrypting it using VPNs.

Staying Safe at Wi-Fi Hotspots

Wi-Fi hotspots in coffee shops, hotels, railway stations and airports have become a welcome resource for any business traveler, providing them with a convenient means to carry on working while on the move. Employers, in turn, are increasingly happy to embrace the accompanying productivity benefits. Over 80% of enterprises now allow employees to use personal devices to connect to corporate networks.

Yet public Wi-Fi has a dubious security reputation. Even with password protection, public hotspots are an open invitation for anyone with illicit intentions to snoop and intercept data communications to their heart’s content.

Endpoint Security: The Cornerstone of the Cybersecurity Puzzle

Some enterprises occasionally fail to realize that many of the differing cybersecurity services available today aren’t optional add-ons but necessary, oftentimes critical, pieces of a complete security strategy. There are a suite of unique security protocols and services that all work together to protect a network and safeguard valuable business data from intrusion. Cybersecurity is a holistic process that requires multiple moving parts working in tandem; failure to do so could leave networks with painful vulnerabilities, not to mention wasted resources. Endpoint security is one such critical piece of the cybersecurity puzzle. While it’s difficult to rank security systems in order of importance, it’s hard to imagine any of the other measures used to secure a network being functional without this one in place. It works like this: Endpoint security is installed on a client/server and may be managed by a central server, or gateway, that runs a security program to verify a network device. VPN and anti-virus software installed on an approved system requires the user to comply with policies before accessing the network. Without the permissions, a user can’t get into the shared network. Without this safeguard in place at the outset of network access, it’s hard to imagine many of the other potential security systems being fully capable of doing their job. Endpoint security is a proactive prevention method, while almost all other security systems are reactive, after-the fact measures. Incident response, for instance, functions as damage control. If endpoint security isn’t in place, the likelihood of a data breach happening is higher all around. An incident response strategy can’t predict a security failure ahead of...