Tag Archives: target

Gartner Provides Seven Steps Security Leaders Can Take to Deal With Spectre and Meltdown

Security and risk management leaders must take a pragmatic and risk-based approach to the ongoing threats posed by an entirely new class of vulnerabilities, according to Gartner, Inc. "Spectre" and "Meltdown" are the code names given to different strains of a new class of attacks that target an underlying exploitable design implementation inside the majority of computer chips manufactured over the last 20 years.

Gartner Survey Finds Government CIOs Will Increase Spending on Cloud, Cybersecurity and Analytics in 2018

Cloud solutions, cybersecurity and analytics are the top technologies targeted for new and additional spending by public sector CIOs in 2018, while data center infrastructure is the most commonly targeted for cost savings, according to a survey from Gartner, Inc.

My latest Gartner research: Best Practices for Detecting and Mitigating Advanced Persistent Threats

Information security practitioners must implement specific strategic and tactical best practices to detect and mitigate advanced persistent threats and targeted malware by leveraging both existing and emerging security technologies in their security architectures. Management silos between network, edge, endpoint and data security systems can restrict an organization’s ability to prevent, detect and respond to advanced attacks. Adversaries continue to use social engineering and social networks to target sensitive roles or individuals within …

Gartner clients can access this research by clicking here.


Facebooktwittergoogle_plusredditpinterestlinkedinmail

[ISN] The Drug Cartels’ IT Guy

http://motherboard.vice.com/read/radio-silence By Brian Anderson motherboard.vice.com March 3, 2015 It could have been any other morning. Felipe del Jesús Peréz García got dressed, said goodbye to his wife and kids, and drove off to work. It would be a two hour commute from their home in Monterrey, in Northeastern Mexico’s Nuevo León state, to Reynosa, in neighboring Tamaulipas state, where Felipe, an architect, would scout possible installation sites for cell phone towers for a telecommunications company before returning that evening. That was the last time anyone saw him. Felipe’s wife, Tanya, is haunted by his disappearance. “All this time I’ve spent searching for his whereabouts,” she told me. Felipe was 26, with clear hazel eyes and a wide mouth, when he disappeared on March 19, 2013, just under two years ago. It’s a story, or lack thereof, that’s common across Mexico. People vanish, and the vast majority of cases aren’t solved for years, if they’re ever closed at all. Tanya is just one of the bereaved in an expanding web of loved ones and friends left with more questions than answers, and a collective resolve to seek justice for los desaparecidos. They’re waiting for the phone to ring. Only this story is, perhaps, not just another kidnapping. What happened to Feli​pe Peréz? One theory suggests he was abducted by a sophisticated organized crime syndicate, and then forced into a hacker brigade that builds and services the cartel’s hidden, backcountry communications infrastructure. They’re the Geek Squads to some of the biggest mafia-style organizations in the world. That’s how Tanya sees it, at least. She looks at the rash of kidnapping cases across Mexico, many of which have taken place in Tamaulipas, targeted specifically at architects, engineers, and other information technology types, and can’t help but think Felipe was one of them. Nearly 40 information technology specialists have disappeared in Mexico s​ince 2008, allegedly nabbed by one of the two dominant gangs in the region, the Cartel del Golfo or Los Zetas. […]


Facebooktwittergoogle_plusredditpinterestlinkedinmail

[ISN] Target Says Credit Card Data Breach Cost It $162M In 2013-14

http://techcrunch.com/2015/02/25/target-says-credit-card-data-breach-cost-it-162m-in-2013-14/ By Ingrid Lunden Techcrunch.com February 26, 2015 When it comes to data breaches, retailers are one of the biggest targets these days, and today we have some detail on the costs around one of the more high-profile attacks. Target today said that it has booked $162 million in expenses across 2013 and 2014 related to its data breach, in which hackers broke into the company’s network to access credit card information and other customer data, affecting some 70 million customers. The figure, revealed in the company’s Q4 earnings published today, includes $4 million in Q4, and $191 million in gross expenses for 2014, as well as $61 million gross for 2013. Target says that the gross number was offset in part by insurance receivables of $46 million for 2014 and $44 million for 2013. This is also not including whatever expenses Target may incur as a result of class action lawsuits filed after the breach, or wider damage to its reputation with customers. In January, a federal judge gave plaintiffs the nod to proceed with their class action case against the company. Overall Target posted revenues of $21.8 billion, beating analyst estimates, and adjusted earnings per share of $1.50, beating its guidance. The company also recorded a pre-tax loss of $5.1 billion related to the company pulling out of operating in Canada. In pre-market trading, the company’s shares were up a little over 1% to $77.85 per share. […]


Facebooktwittergoogle_plusredditpinterestlinkedinmail

[ISN] Target Says Credit Card Data Breach Cost It $162M In 2013-14

http://techcrunch.com/2015/02/25/target-says-credit-card-data-breach-cost-it-162m-in-2013-14/ By Ingrid Lunden Techcrunch.com February 26, 2015 When it comes to data breaches, retailers are one of the biggest targets these days, and today we have some detail on the costs around one of the more high-profile attacks. Target today said that it has booked $162 million in expenses across 2013 and 2014 related to its data breach, in which hackers broke into the company’s network to access credit card information and other customer data, affecting some 70 million customers. The figure, revealed in the company’s Q4 earnings published today, includes $4 million in Q4, and $191 million in gross expenses for 2014, as well as $61 million gross for 2013. Target says that the gross number was offset in part by insurance receivables of $46 million for 2014 and $44 million for 2013. This is also not including whatever expenses Target may incur as a result of class action lawsuits filed after the breach, or wider damage to its reputation with customers. In January, a federal judge gave plaintiffs the nod to proceed with their class action case against the company. Overall Target posted revenues of $21.8 billion, beating analyst estimates, and adjusted earnings per share of $1.50, beating its guidance. The company also recorded a pre-tax loss of $5.1 billion related to the company pulling out of operating in Canada. In pre-market trading, the company’s shares were up a little over 1% to $77.85 per share. […]


Facebooktwittergoogle_plusredditpinterestlinkedinmail

[ISN] Europol disrupts cybercrime ring that infected millions of PCs

http://uk.reuters.com/article/2015/02/25/uk-cybersecurity-europe-idUKKBN0LT0U020150225 BY ANTHONY DEUTSCH AND JIM FINKLE AMSTERDAM/BOSTON Reuters.com Feb 25, 2015 (Reuters) – A cybercrime operation that stole banking information by hacking more than 3 million computers in Indonesia, India and other countries has been disrupted by European police with assistance from three technology companies, officials said on Wednesday. The European Cybercrime Centre at Europol, the European police agency, coordinated the operation out of its headquarters in The Hague, targeting the so-called Ramnit botnet, a network of computers infected with malware. Working with investigators from Germany, Italy, the Netherlands and Britain, it was assisted by AnubisNetworks, a unit of BitSight Technologies; Microsoft Corp and Symantec Corp in dismantling the server infrastructure used by the criminals, Europol said. “The criminals have lost control of the infrastructure they were using,” Paul Gillen, head of operations at Europol’s cybercrime centre, told Reuters. […]


Facebooktwittergoogle_plusredditpinterestlinkedinmail

[ISN] Hackers target Birmingham City Council website in sustained attack

http://www.birminghammail.co.uk/news/midlands-news/hackers-made-24000-attempts-attack-8705246 By Neil Elkes Birmingham Mail 24 February 2015 Hackers launched a major attack on Birmingham City Council’s computer system . The authority’s website was hit by a ‘significant attack’ receiving 24,000 hits per minute on Friday in an attempt to breach its security leading to major action to protect the data. Service Birmingham Chief Executive Tony Lubman revealed the attack while appearing before the council’s contracts and partnership committee. He told the panel how fending off attacks takes considerable resources. “Birmingham is by far the largest local authority in Europe. You represent the Government and you are therefore a target,” he said. […]


Facebooktwittergoogle_plusredditpinterestlinkedinmail