61% of data breaches hit SMEs

Most data breaches you read about focus on big organisations, but a new report claims that the majority of incidents occur at small and medium-sized enterprises (SMEs). The latest European Union Agency for Network and Information Security (ENISA) Threat Landscape Report found that 61% of breaches affected organisations with fewer than 1,000 employees. The sectors most likely to be targeted … [Read more...]

Whaling attacks increased by 200% in 2017

Organisations have a hard enough time preventing phishing attacks, but they are now facing a surge in a subcategory of phishing known as ‘whaling’. According to cyber security provider Smarttech 247, the number of whaling attacks tripled in 2017, with companies of all sizes being targeted. Whaling works in much the same way as phishing, but it is specific to the workplace, with criminals either … [Read more...]

Are your employees aware of their PCI DSS obligations?

If your organisation collects cardholder data, you need to comply with the Payment Card Industry Data Security Standard (PCI DSS). The Standard was designed to help organisations manage card payments securely, and is regulated by major card brands (Visa, Mastercard, American Express, JCB and Discover). Failure to comply with the PCI DSS will lead to disciplinary action and reputational damage, but … [Read more...]

Ireland warned it is extremely vulnerable to cyber attacks

The National Cyber Security Centre (NCSC), which oversees Ireland’s cyber security, issued a warning last week that some government websites were being used to illegally mine cryptocurrency. The NCSC said that it “is aware that a number of websites using software from a third-party vendor is causing visitors to those sites to mine cryptocurrency without their express permission”. It is understood … [Read more...]

Cryptocurrency app found to contain ransomware

With the rapid growth of cryptocurrency comes a demand for digital wallets. This has led to increased criminal activity. SpriteCoin is advertised as a digital wallet to keep cryptocurrency safe but is in fact ransomware, according to cybersecurity researchers Fortinet. SpriteCoin wallet is a fake cryptocurrency app that will take over a device and install ransomware when downloaded. A ransom note … [Read more...]

Norwegian health authority hacked

  Nearly three million Norwegians have possibly had their personal information compromised following a systems breach of the Southern and Eastern Norway Regional Health Authority (Helse Sør-Øst RHF). The Norwegian healthcare sector’s national information security centre, HelseCERT, noticed that something was wrong and notified Hospital Partner HF, the company responsible for ICT operations in … [Read more...]

Netflix users targeted by another email scam

Netflix users have once again been targeted by another sophisticated email scam. The new phishing scam targets users in an attempt to harvest their credit card details. Australian cyber security company MailGuard first spotted the email, which reads: “We attempted to authorise the Amex card you have on file but were unable to do so.” The email then users to updates their details via a web … [Read more...]

Business continuity: Why organisations should plan for the worst

Targeted attacks by skilled and persistent cyber criminals are now a business reality, so organisations need to have an effective business continuity plan in place to ensure their survival. Growing concern about cyber attacks In September 2017 the European Commission reported that 80% of European organisations suffered at least one cyber security incident and the economic impact of cyber crime has … [Read more...]