Cyber risk is a business risk

 In the latest Modern Workplace episode, “Cyber Intelligence—The Human Element,” we look at how organizations not only need to look at their systems but also have to address the security threats that stem from the behavior of their own employees, who oftentimes are the source of cyber-attacks. Phil Ferraro, CISO of Nielson, explains how security is not a responsibility to be merely delegated to IT and how failures in security have a direct impact on the business.

In the past, organizations typically focused on ensuring their networks were secure. But today, so many attacks are a result of employee actions, taking advantage of human behavior because employees provide easier entry points for malicious attacks. For example, spear phishing emails are commonplace and becoming more sophisticated.

Ferraro and Dr. Jessica Barker, cyber intelligence advisor, give actionable recommendations on how to educate your employees to help prevent cyber-attacks. You’ll also see a demo of how Office 365 Advanced Threat Protectionhelps ensure that the links and attachments that employees open are safe. The Microsoft solution has been brilliantly designed to optimize security without the expense of decreased productivity.

Watch the Modern Workplace episode to learn more. And visit Modern Workplace to watch part one of the security series: “Cyber Intelligence: Help Prevent a Breach.”

Cruise firm Carnival deploys Filestream EDMS

 Carnival UK has selected Filestream’s electronic document management software (EDMS) to manage all seafarer employment agreements (SEAs) for crew working on its two famous cruise brands – Cunard Line and P&O Cruises.

Lynn Cossey, Carnival UK’s senior manager of vetting and compliance, says, “In terms of the on-boarding function, it’s a legal requirement to have accurate and signed contracts for all our seafarers when they join a ship and for the duration of their employment. Filestream allows us to store all this information centrally so it’s available both at sea and onshore.”

Continue reading

US Government Bans Kaspersky Lab Products

 The US Department of Homeland Security (DHS) has taken the unusual step of banning the use of all products and services from Russian AV vendor Kaspersky Lab within federal government agencies, citing fears over alleged ties the company has with the Russian state.

Acting secretary of homeland security, Elaine Duke, issued a Binding Operational Directive(BOD) on Wednesday which mandates that all civilian agencies identify and remove all Kaspersky Lab products within 90 days.

Continue reading

Phishers Spread Malicious Links Via Hacked LinkedIn Accounts

Researchers are warning of a new phishing campaign using hijacked LinkedIn accounts to send malicious links in private messages and InMail.

Jérôme Segura, lead malware intelligence analyst at Malwarebytes, made the discovery, revealing that the fraudulent messages sometimes come from hacked Premium accounts.

“The fraudulent message includes a reference to a shared document and a link that redirects to a phishing site for Gmail and other email providers which require potential victims to log in,” he explained.  Continue reading

UK data protection laws to be overhauled

Britons could obtain more control over what happens to personal information under proposals outlined by the government.

Citizens will be able to ask for personal data, or information posted when they were children, to be deleted.

Firms that flout the law will face bigger fines, levied by the UK’s data protection watchdog.

Continue reading